Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/23ca21-bceb-433e-b7d9-7b003984b863/1/lHXt3Klbc2ZTpMn52RVA0tPvtT0.mft
File: lHXt3Klbc2ZTpMn52RVA0tPvtT0.mft (raw, json)
Hash identifier: WcmuNWtkKxBzb6DgKyeG9Gc4Y7tJ2bwdnya9eDJ5Ero=
Subject key identifier: D1:73:2F:F0:33:9A:75:C1:E3:4F:DE:8F:F8:40:9E:B8:14:66:A6:E0
Authority key identifier: 94:75:ED:DC:A9:5B:73:66:53:A4:C9:F9:D9:15:40:D2:D3:EF:B5:3D
Certificate issuer: /CN=9475eddca95b736653a4c9f9d91540d2d3efb53d
Certificate serial: 019D66BE8A2D64B0A6799D2A5098A9719041
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHXt3Klbc2ZTpMn52RVA0tPvtT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/23ca21-bceb-433e-b7d9-7b003984b863/1/lHXt3Klbc2ZTpMn52RVA0tPvtT0.mft
Manifest number: 04E4
Signing time: Tue 07 Apr 2026 07:00:56 +0000
Manifest this update: Tue 07 Apr 2026 07:00:56 +0000
Manifest next update: Wed 08 Apr 2026 07:00:56 +0000
Files and hashes: 1: lHXt3Klbc2ZTpMn52RVA0tPvtT0.crl (hash: oo97iYV7nP6m+9537LTYywIjAXeSDeQ6qIO9FBbQnps=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:66:be:8a:2d:64:b0:a6:79:9d:2a:50:98:a9:71:90:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9475eddca95b736653a4c9f9d91540d2d3efb53d
Validity
Not Before: Apr 7 07:00:56 2026 GMT
Not After : Apr 8 07:00:56 2026 GMT
Subject: CN=d1732ff0339a75c1e34fde8ff8409eb81466a6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0f:0c:a7:35:81:93:47:f2:d1:c7:ed:c4:45:
c0:03:fa:e4:9a:ae:ea:90:e7:78:37:03:24:e4:8e:
57:b6:c8:aa:7e:ce:46:15:ff:19:9a:d8:e1:08:ad:
7a:a8:90:cd:d5:da:54:0a:b1:0e:04:fb:a2:59:ee:
9d:a2:76:ef:e1:e5:27:bc:5f:70:b9:e2:4a:e6:b3:
a4:90:ec:94:dc:9a:16:b1:14:7c:83:7c:dd:30:e0:
78:15:58:23:f7:09:ed:d1:65:d4:8b:9c:01:cd:d3:
a9:f1:8e:b7:5d:49:90:65:65:11:6b:37:7f:e6:6c:
41:80:d6:21:b9:d7:ba:ff:66:fb:5b:de:41:3a:97:
bb:3d:a2:cf:b1:2b:4e:41:e6:f0:d7:86:11:63:c3:
f5:42:bf:3b:ee:0d:00:bf:7e:74:49:f9:d4:00:8b:
cb:e1:6f:bd:f6:0f:e4:85:6a:a2:88:ba:26:2f:99:
50:47:ac:46:40:39:1c:20:c3:db:1b:ca:f8:c1:f3:
15:99:fe:ef:92:cb:1d:3b:8a:f5:f2:30:31:30:d8:
84:44:52:17:77:3d:8e:2e:f3:ad:24:ca:4e:8c:bb:
4c:d0:59:9c:41:4a:f0:56:f9:7f:5c:2e:72:fc:d7:
0b:59:4f:4e:fa:90:10:4b:b4:b1:1d:d9:6e:0a:40:
f1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:73:2F:F0:33:9A:75:C1:E3:4F:DE:8F:F8:40:9E:B8:14:66:A6:E0
X509v3 Authority Key Identifier:
keyid:94:75:ED:DC:A9:5B:73:66:53:A4:C9:F9:D9:15:40:D2:D3:EF:B5:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHXt3Klbc2ZTpMn52RVA0tPvtT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23ca21-bceb-433e-b7d9-7b003984b863/1/lHXt3Klbc2ZTpMn52RVA0tPvtT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/23ca21-bceb-433e-b7d9-7b003984b863/1/lHXt3Klbc2ZTpMn52RVA0tPvtT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:3c:08:5b:b1:b5:7a:30:f2:d2:9c:93:c5:05:c8:60:6c:4e:
f1:eb:6f:c0:06:46:5a:f5:00:02:59:46:5c:a9:02:1b:71:6f:
49:4e:f2:ca:91:28:07:a3:f6:48:2b:e4:8a:12:be:de:53:45:
17:b7:ce:65:b2:dd:f1:fb:03:4d:b0:57:cf:bc:8b:90:3f:5a:
81:e1:c4:5a:d2:49:5a:63:c6:fe:52:fe:08:41:a0:6c:2c:cb:
44:5e:f3:ca:84:e7:bc:88:4f:70:b8:8c:29:ba:0b:10:90:10:
42:84:b0:e3:01:62:be:5d:07:f9:26:ae:66:a7:28:4b:11:26:
3c:82:c0:ff:7c:fb:03:a5:d8:db:ab:8d:30:13:6b:b9:e4:0c:
98:4d:22:5e:b0:02:83:d0:70:eb:83:7f:39:44:b3:2f:ec:e0:
06:ab:b0:b1:4f:ff:b1:bd:07:50:e8:b6:de:aa:e9:35:d2:bd:
c3:8f:76:79:fd:29:54:35:f3:92:ea:1b:e3:66:65:f0:54:87:
9f:86:29:03:2f:ce:35:02:86:05:c9:fc:d0:87:85:9c:ec:47:
1c:39:18:91:75:ce:21:3b:a1:06:fe:d9:34:6b:1f:97:ad:19:
2b:8b:51:65:b1:6b:a4:3b:66:2a:ca:28:b3:9b:64:d0:ac:ee:
65:96:b7:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:26:04 2026 by rpki-client