Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft
File: tsaaSiFb3h0yk03chd6vj9nJRHk.mft (raw, json)
Hash identifier: uugS8yLGeJ401f/gV65lEjUamQRUepyZK39ZwRcTnnY=
Subject key identifier: 8B:5B:A1:69:10:E2:72:10:08:6A:84:8E:9C:3C:E9:77:93:D4:CA:C6
Authority key identifier: B6:C6:9A:4A:21:5B:DE:1D:32:93:4D:DC:85:DE:AF:8F:D9:C9:44:79
Certificate issuer: /CN=b6c69a4a215bde1d32934ddc85deaf8fd9c94479
Certificate serial: 019BC609A8FF47F9D84E7B9C203989B85376
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tsaaSiFb3h0yk03chd6vj9nJRHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft
Manifest number: 0F7B
Signing time: Fri 16 Jan 2026 09:01:20 +0000
Manifest this update: Fri 16 Jan 2026 09:01:20 +0000
Manifest next update: Sat 17 Jan 2026 09:01:20 +0000
Files and hashes: 1: tsaaSiFb3h0yk03chd6vj9nJRHk.crl (hash: q+ZcqpAn1M90bVJ3tkFOhS6SZJzO2uqmzu/Got2gvgo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:c6:09:a8:ff:47:f9:d8:4e:7b:9c:20:39:89:b8:53:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6c69a4a215bde1d32934ddc85deaf8fd9c94479
Validity
Not Before: Jan 16 09:01:20 2026 GMT
Not After : Jan 17 09:01:20 2026 GMT
Subject: CN=8b5ba16910e27210086a848e9c3ce97793d4cac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:04:07:a3:89:03:06:b4:26:7c:4f:94:2c:6b:
d6:7d:df:34:c8:7c:2f:2b:ba:66:b9:d4:dc:01:94:
ea:98:58:d3:3a:82:5c:9b:ac:de:a1:06:82:c5:05:
6f:c6:26:5e:67:5e:0c:db:0b:82:98:23:d7:27:43:
9b:fc:c8:7d:d8:59:c8:08:d2:21:04:bf:87:6b:1e:
cd:61:00:f5:ff:08:5c:cd:c3:29:30:9b:36:52:d7:
a4:91:8b:22:86:f9:34:c1:4e:2b:6f:9d:17:a7:4e:
35:57:8e:71:75:49:34:1a:be:a8:22:c2:58:94:e9:
ee:d5:62:93:38:d9:59:b7:74:f1:6e:bd:40:45:46:
c5:6e:ec:63:12:4c:31:f2:3a:b0:4e:e2:b0:b1:a6:
13:a7:9c:9b:3f:4a:e0:9b:01:40:46:75:83:5a:54:
39:f4:d7:56:9e:0a:da:47:45:18:e7:39:ca:ff:a7:
fc:57:98:47:2c:f9:18:21:da:74:74:d2:bc:bf:fd:
aa:77:50:26:29:30:52:1f:35:bc:39:a3:9e:ee:d3:
14:90:58:11:f2:b9:7f:3d:f7:5a:f0:08:1d:9d:21:
40:de:2a:f5:ce:6b:a9:61:77:21:76:27:e2:cf:05:
24:66:08:0b:70:81:9c:7d:09:a3:a2:b1:e4:c5:e5:
df:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5B:A1:69:10:E2:72:10:08:6A:84:8E:9C:3C:E9:77:93:D4:CA:C6
X509v3 Authority Key Identifier:
keyid:B6:C6:9A:4A:21:5B:DE:1D:32:93:4D:DC:85:DE:AF:8F:D9:C9:44:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tsaaSiFb3h0yk03chd6vj9nJRHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/577a7b-5dcc-43a7-a89c-e3bc6b499e7b/1/tsaaSiFb3h0yk03chd6vj9nJRHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c3:05:da:08:a2:f8:b7:20:df:e9:39:db:23:fb:2e:46:81:
af:42:b5:dc:ca:24:0a:73:a6:d8:9f:36:85:29:81:44:fe:4d:
cb:fb:1b:53:9f:cd:48:7a:43:fd:34:af:a0:de:bd:cd:13:3f:
14:f3:36:71:01:c5:e6:e5:33:b7:bc:fa:7c:05:05:f4:79:17:
8d:ac:fe:03:15:4f:62:03:f4:5f:2e:37:10:f6:3a:38:f8:f0:
bc:c4:68:1a:b8:e0:08:18:6a:b5:0c:8c:3c:be:c3:d0:ee:4c:
f1:0e:55:82:4e:dd:47:0f:7b:b8:72:7e:f5:1c:fd:31:9f:83:
a9:18:e0:40:b1:a2:b9:df:e8:68:a0:ca:fe:e1:9c:64:1f:e9:
03:e1:69:d3:6e:5a:6b:7c:bf:74:24:dd:d6:37:b4:bd:5a:ce:
1b:90:49:89:01:0d:60:33:6c:96:fc:1b:58:54:d6:3d:8c:a8:
8c:fd:26:f8:69:b2:fa:ef:0c:25:1b:dd:62:3f:38:3c:af:d4:
ba:ee:e3:aa:29:cc:b6:27:7b:9a:86:2c:b0:2c:c9:8d:37:83:
f6:22:85:b6:d7:c2:f8:49:53:c4:11:98:d7:6e:57:38:72:a8:
21:d7:ac:04:01:26:27:b0:4e:4a:08:82:93:b8:a0:db:fa:d3:
57:39:09:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:47:20 2026 by rpki-client