Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
File: g4heOKx3ysBEgptTyzslq-Yen2Q.mft (raw, json)
Hash identifier: NkCHLih3SoJtKwaQbnnVaghxzZ5t+DRVLjjlkPICwgU=
Subject key identifier: AC:DD:8F:FB:75:B2:49:D9:79:CB:7E:E3:10:24:A5:A1:04:B9:29:53
Authority key identifier: 83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
Certificate issuer: /CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Certificate serial: 019D4C90D211D5F2939503ED1B99E3CFD8B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
Manifest number: 08AC
Signing time: Thu 02 Apr 2026 05:00:52 +0000
Manifest this update: Thu 02 Apr 2026 05:00:52 +0000
Manifest next update: Fri 03 Apr 2026 05:00:52 +0000
Files and hashes: 1: g4heOKx3ysBEgptTyzslq-Yen2Q.crl (hash: lXvpHnv+zeXdo+vA6siCYVzfgEx6Xc8n9hjk/J4sUhw=)
2: uEbtYSs7oUq_8j5NRnUv73UK0pM.roa (hash: Poyt01XokZPztwUN5koWpemxrQ6OZRRxyOTp253pBsA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:4c:90:d2:11:d5:f2:93:95:03:ed:1b:99:e3:cf:d8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83885e38ac77cac044829b53cb3b25abe61e9f64
Validity
Not Before: Apr 2 05:00:52 2026 GMT
Not After : Apr 3 05:00:52 2026 GMT
Subject: CN=acdd8ffb75b249d979cb7ee31024a5a104b92953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:02:60:ad:9f:04:51:9b:f4:3a:bd:b7:91:03:
8f:b2:d3:5d:5f:57:84:13:94:cd:55:14:db:d9:97:
97:f0:12:f5:aa:56:cb:f0:df:6f:22:84:a2:c5:53:
58:b0:a0:fc:f9:ae:b2:74:2d:53:99:82:28:5c:a0:
36:49:72:ab:66:0c:92:fb:3f:53:ad:ae:b4:0c:70:
84:f7:45:12:e7:b7:a3:55:b0:f5:ab:3d:5e:4f:68:
da:51:d0:6e:c5:0f:46:f3:1c:70:13:1c:d7:d7:32:
d8:b4:29:2b:cb:86:44:0d:7e:dd:34:bf:1a:96:98:
51:22:e7:35:56:07:8d:73:8f:af:e4:0b:be:52:8e:
4b:e4:43:c1:9c:78:8c:18:ff:70:fe:47:5e:85:5e:
03:40:8f:93:d3:a8:62:e4:fa:35:29:20:cc:8f:6f:
f9:34:07:a4:9e:a7:80:4f:af:15:d7:1d:11:30:be:
ec:d9:d5:ff:30:2e:3b:b9:21:d2:05:23:d5:9e:ee:
e0:49:65:06:74:ad:25:8b:f1:38:d2:61:79:d5:3b:
aa:10:d2:7d:e5:6b:74:11:33:a9:aa:ef:bb:ec:8a:
47:36:62:d9:74:a8:a4:38:9b:03:f0:11:d8:b5:10:
47:cb:eb:d3:33:a1:b0:fb:c3:58:11:6a:25:24:c5:
c7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:DD:8F:FB:75:B2:49:D9:79:CB:7E:E3:10:24:A5:A1:04:B9:29:53
X509v3 Authority Key Identifier:
keyid:83:88:5E:38:AC:77:CA:C0:44:82:9B:53:CB:3B:25:AB:E6:1E:9F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g4heOKx3ysBEgptTyzslq-Yen2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/463686-ce48-487c-bc3d-a2f59eae86d0/1/g4heOKx3ysBEgptTyzslq-Yen2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:ec:6c:b3:98:47:7d:8c:31:b8:42:04:fb:86:0e:55:d4:5e:
87:10:4f:51:a5:f8:67:f6:61:c5:c7:67:f2:75:2f:48:8d:87:
e2:89:e1:1c:4d:59:2a:16:df:48:da:c3:3a:49:86:05:9e:24:
40:0b:00:7f:27:c7:78:50:d3:c6:94:3c:2e:b8:b2:3f:df:ba:
b5:33:8f:8e:9c:ff:22:50:5d:2b:8e:b6:be:df:71:f6:84:27:
9a:29:4f:d7:e9:58:2a:af:53:a8:3c:17:47:dd:6b:3f:f4:6d:
6c:2e:bb:cc:d7:80:16:6e:2c:34:9a:3d:03:0f:ed:b0:ad:cf:
38:0b:27:a0:11:b3:d0:e7:e4:bf:fd:71:24:ac:09:44:51:35:
ad:7c:db:1f:4a:6a:2b:76:3d:b0:83:57:a9:c8:58:29:41:eb:
d8:cd:62:f6:f4:5c:f7:20:c7:28:ed:df:93:7e:00:a8:0e:bf:
1d:8b:7c:b2:69:06:8b:61:61:34:f8:15:6c:89:4d:d5:34:2e:
cb:50:94:b8:29:e6:aa:35:98:d7:bb:a7:df:39:a8:dc:00:56:
b3:3c:f8:0e:bf:10:c0:90:00:ec:a6:00:84:4e:ec:3b:4e:40:
5a:12:af:e7:be:dc:42:1b:34:81:b8:24:6f:27:ee:83:6d:46:
7c:a5:1f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:23:02 2026 by rpki-client