Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: xGA2oUwYdLO5W9hUsjEQjgdlAUu9UzeZge3db9bdtQI=
Subject key identifier: 2C:25:15:5F:92:22:04:74:53:F5:1F:38:9C:F2:8D:8F:BD:16:9A:3B
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 019CB76F9872D6597751DDC00C18B0EB085A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 04D2
Signing time: Wed 04 Mar 2026 06:01:09 +0000
Manifest this update: Wed 04 Mar 2026 06:01:09 +0000
Manifest next update: Thu 05 Mar 2026 06:01:09 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: 4upqBAZsFC5Z0PP/YuHewZN9F55vmdAZX79iMYbxbyM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b7:6f:98:72:d6:59:77:51:dd:c0:0c:18:b0:eb:08:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Mar 4 06:01:09 2026 GMT
Not After : Mar 5 06:01:09 2026 GMT
Subject: CN=2c25155f9222047453f51f389cf28d8fbd169a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c1:a3:ed:50:07:ba:80:5b:24:7c:a9:96:14:
ec:84:f1:83:3c:b0:14:75:1a:ed:90:38:28:68:77:
5d:8e:90:46:ae:22:d1:b3:9c:40:12:6c:3f:f2:e8:
02:e2:d8:eb:d3:9c:94:34:c3:47:b8:a9:88:8a:d2:
65:be:f2:a6:85:3c:b1:81:f5:6d:90:da:fb:90:48:
a2:22:43:86:b9:46:df:98:99:59:4a:6c:04:c2:79:
69:1b:44:8e:34:cf:86:57:e5:1b:d9:ae:cf:3d:64:
03:3c:e8:ce:0e:b4:ac:69:50:eb:8d:da:7e:85:dd:
cb:ec:ca:64:6f:02:ac:62:59:47:5d:12:47:2b:56:
d7:cd:cc:4e:f5:6f:b1:dc:03:f9:97:15:c7:1a:cc:
c5:ab:b1:2c:a1:c6:f6:21:d2:36:92:62:a7:14:ae:
6d:e0:34:a3:5b:55:08:ad:d8:09:d2:58:5f:15:ab:
d2:4e:e1:d3:e5:05:91:b0:8f:f1:fa:19:d5:00:9a:
a7:d6:93:e6:aa:46:d6:d4:9f:81:5a:d3:12:9f:9e:
88:b2:44:b0:4d:d2:9c:c4:61:8d:5d:09:45:d4:c7:
f3:1e:1a:4c:28:11:e9:22:b5:ae:d7:03:e7:a8:50:
18:de:aa:f0:15:35:c3:93:5b:6b:81:ff:8a:43:c8:
e6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:25:15:5F:92:22:04:74:53:F5:1F:38:9C:F2:8D:8F:BD:16:9A:3B
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:1d:1a:5e:f5:2b:21:b4:5d:95:85:9b:07:14:36:02:86:39:
97:a3:bf:f8:ea:25:3e:2e:25:14:65:29:2f:d6:ac:d1:d6:8c:
bd:a6:6b:b0:83:8f:56:0a:54:ac:3b:9d:99:ce:ff:3f:60:80:
7e:d4:c6:7f:7d:a1:10:13:15:24:e6:2e:4f:08:6a:2c:41:3f:
4e:b8:6c:fe:25:3c:96:a9:ba:f5:ee:66:74:ce:19:9e:d7:4d:
77:78:f3:cd:5a:67:20:94:f6:22:c1:ec:af:45:a4:ea:13:d5:
27:57:99:55:e0:44:fa:20:71:8c:3e:f6:54:a1:02:f2:94:eb:
4e:2d:a8:2b:72:b8:73:92:dd:0c:b4:c7:95:36:06:d9:2e:89:
b3:d0:58:84:30:f8:b0:17:e0:13:63:74:cf:ab:3e:9d:e9:73:
2b:a8:ae:0c:46:5a:2a:49:75:2d:85:0f:e0:b1:d0:bf:81:fa:
60:2e:7c:57:c7:01:00:50:41:db:e6:8d:68:2e:a3:e3:62:35:
4d:3c:91:4e:46:66:9d:14:f9:d7:6b:96:26:8b:54:7d:49:93:
05:74:40:6f:f9:b0:27:79:87:ce:09:69:76:af:88:3e:13:0c:
fe:8a:6e:2a:f4:b9:ec:c7:20:12:21:ec:1a:2e:3f:bf:01:d9:
b1:54:f9:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZy3b5hy1ll3Ud3ADBiw6whaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkN2I2NGRkODE4OGM1MjZlYjVlYjQ1ZWE4MWVhNmE4YWY5
YzU5ZTkwHhcNMjYwMzA0MDYwMTA5WhcNMjYwMzA1MDYwMTA5WjAzMTEwLwYDVQQD
EygyYzI1MTU1ZjkyMjIwNDc0NTNmNTFmMzg5Y2YyOGQ4ZmJkMTY5YTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAocGj7VAHuoBbJHyplhTshPGDPLAU
dRrtkDgoaHddjpBGriLRs5xAEmw/8ugC4tjr05yUNMNHuKmIitJlvvKmhTyxgfVt
kNr7kEiiIkOGuUbfmJlZSmwEwnlpG0SONM+GV+Ub2a7PPWQDPOjODrSsaVDrjdp+
hd3L7MpkbwKsYllHXRJHK1bXzcxO9W+x3AP5lxXHGszFq7Esocb2IdI2kmKnFK5t
4DSjW1UIrdgJ0lhfFavSTuHT5QWRsI/x+hnVAJqn1pPmqkbW1J+BWtMSn56IskSw
TdKcxGGNXQlF1MfzHhpMKBHpIrWu1wPnqFAY3qrwFTXDk1trgf+KQ8jm7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCwlFV+SIgR0U/UfOJzyjY+9Fpo7MB8GA1UdIwQY
MBaAFA17ZN2BiMUm6160XqgepqivnFnpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgt
MzNkMzEyOTNmMGUxLzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9iYzkxZDItZTIwOS00YTFkLTlmNzgtMzNkMzEyOTNmMGUx
LzEvRFh0azNZR0l4U2JyWHJSZXFCNm1xSy1jV2VrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsR0aXvUr
IbRdlYWbBxQ2AoY5l6O/+OolPi4lFGUpL9as0daMvaZrsIOPVgpUrDudmc7/P2CA
ftTGf32hEBMVJOYuTwhqLEE/Trhs/iU8lqm69e5mdM4ZntdNd3jzzVpnIJT2IsHs
r0Wk6hPVJ1eZVeBE+iBxjD72VKEC8pTrTi2oK3K4c5LdDLTHlTYG2S6Js9BYhDD4
sBfgE2N0z6s+nelzK6iuDEZaKkl1LYUP4LHQv4H6YC58V8cBAFBB2+aNaC6j42I1
TTyRTkZmnRT512uWJotUfUmTBXRAb/mwJ3mHzglpdq+IPhMM/opuKvS57McgEiHs
Gi4/vwHZsVT5Lg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:41:24 2026 by rpki-client