Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
File: OEzdzXTQQilYPSwr7tBz4AlrozU.mft (raw, json)
Hash identifier: 8aPGfVhSM8PoRm5nVIB+INhOMiA7HvKkkfqzQBfAgwA=
Subject key identifier: A6:F7:52:C4:1D:9D:E8:10:F3:39:06:05:F5:FB:79:C9:9D:D7:26:6A
Authority key identifier: 38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
Certificate issuer: /CN=384cddcd74d04229583d2c2beed073e0096ba335
Certificate serial: 019D232708FCDBA7E98C978B59F63A35F974
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
Manifest number: 08D6
Signing time: Wed 25 Mar 2026 04:00:53 +0000
Manifest this update: Wed 25 Mar 2026 04:00:53 +0000
Manifest next update: Thu 26 Mar 2026 04:00:53 +0000
Files and hashes: 1: OEzdzXTQQilYPSwr7tBz4AlrozU.crl (hash: 91us6O1K79ARQq0BtKDDxr3qY2iWjCQFb11WJTMFt7k=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:23:27:08:fc:db:a7:e9:8c:97:8b:59:f6:3a:35:f9:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384cddcd74d04229583d2c2beed073e0096ba335
Validity
Not Before: Mar 25 04:00:53 2026 GMT
Not After : Mar 26 04:00:53 2026 GMT
Subject: CN=a6f752c41d9de810f3390605f5fb79c99dd7266a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a2:fc:59:35:50:eb:ee:2f:b5:15:c8:70:31:
3d:32:b4:ff:e8:b2:fb:24:4a:83:a8:78:6b:62:80:
27:7f:9d:f1:13:d4:79:98:20:d5:fb:1d:b9:3a:84:
ca:29:ad:01:2d:3f:00:c4:93:df:b5:96:b1:c8:57:
92:3b:57:5d:18:c1:6e:25:b5:32:8d:b5:31:79:6c:
de:7a:49:13:10:02:fa:44:d9:92:60:01:e9:56:b4:
3b:82:77:bc:ca:4f:39:d6:d7:68:52:cb:16:6a:80:
eb:2f:0a:0f:8e:f2:c4:aa:12:95:c5:b6:95:4e:d0:
c1:44:78:40:df:20:79:e7:60:cb:f4:0e:34:eb:6c:
93:09:e7:7b:21:ce:4b:52:0d:dd:e0:94:fe:14:51:
09:59:26:a4:ee:d0:ea:a3:1f:06:8f:d8:0c:8b:96:
5c:65:16:b5:04:bf:5f:9c:7f:62:40:22:80:95:72:
db:12:c4:51:10:00:f6:6f:98:52:40:ef:c6:cb:a9:
93:d9:87:8c:3d:33:03:01:45:d5:e9:3d:9a:ca:f0:
b5:90:43:c1:4c:48:17:0a:9a:fa:b2:8b:2c:d8:49:
6d:be:9e:b0:82:5d:da:3b:99:4a:2b:38:7b:64:e2:
21:94:6a:47:1f:20:67:11:c1:09:e5:71:ac:16:e8:
e8:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F7:52:C4:1D:9D:E8:10:F3:39:06:05:F5:FB:79:C9:9D:D7:26:6A
X509v3 Authority Key Identifier:
keyid:38:4C:DD:CD:74:D0:42:29:58:3D:2C:2B:EE:D0:73:E0:09:6B:A3:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OEzdzXTQQilYPSwr7tBz4AlrozU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/151c3e-95d8-483b-8dc2-998ad50f4a2a/1/OEzdzXTQQilYPSwr7tBz4AlrozU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d6:28:1f:c5:0b:e0:e4:9d:29:25:5e:85:5f:3f:54:20:10:71:
06:f0:24:b8:b6:07:a0:7a:4e:c2:99:9b:f6:5a:a9:50:b7:a7:
4d:06:96:f1:61:94:b2:0a:51:27:48:96:be:df:26:57:86:be:
ed:96:16:90:0f:d9:ca:bc:fd:a5:7c:de:fb:cc:9a:82:96:02:
c7:27:e1:8b:54:ee:15:a1:8a:e7:eb:4a:e1:cf:4c:27:c7:98:
23:bf:d0:5a:bb:42:35:24:af:6d:b5:89:c8:2e:fd:13:a9:20:
5e:e9:74:98:2a:dd:08:49:02:4a:96:3f:dc:95:5c:e2:53:5d:
9e:41:01:a7:f9:72:f1:5c:30:41:b1:d6:79:ee:ad:fc:40:18:
7f:aa:cc:de:94:56:2b:c7:e2:2c:50:70:2c:e4:ae:41:d2:64:
d9:c4:97:94:b7:d1:3e:9c:8a:bc:08:0e:fd:21:7c:f9:0c:39:
0a:de:31:cd:31:10:85:65:32:4b:1c:55:e3:a8:50:8e:1e:49:
ab:02:a9:b5:2b:3e:44:9e:d3:5e:72:8e:a0:eb:34:95:b1:1c:
7a:5c:87:6f:98:ab:1d:74:c7:d9:2e:2a:38:13:51:50:3b:5d:
8b:87:e0:1d:42:5b:19:97:72:5d:6b:48:3c:9f:dd:3e:23:45:
48:a4:7f:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0jJwj826fpjJeLWfY6Nfl0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NGNkZGNkNzRkMDQyMjk1ODNkMmMyYmVlZDA3M2UwMDk2
YmEzMzUwHhcNMjYwMzI1MDQwMDUzWhcNMjYwMzI2MDQwMDUzWjAzMTEwLwYDVQQD
EyhhNmY3NTJjNDFkOWRlODEwZjMzOTA2MDVmNWZiNzljOTlkZDcyNjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1qL8WTVQ6+4vtRXIcDE9MrT/6LL7
JEqDqHhrYoAnf53xE9R5mCDV+x25OoTKKa0BLT8AxJPftZaxyFeSO1ddGMFuJbUy
jbUxeWzeekkTEAL6RNmSYAHpVrQ7gne8yk851tdoUssWaoDrLwoPjvLEqhKVxbaV
TtDBRHhA3yB552DL9A4062yTCed7Ic5LUg3d4JT+FFEJWSak7tDqox8Gj9gMi5Zc
ZRa1BL9fnH9iQCKAlXLbEsRREAD2b5hSQO/Gy6mT2YeMPTMDAUXV6T2ayvC1kEPB
TEgXCpr6soss2Eltvp6wgl3aO5lKKzh7ZOIhlGpHHyBnEcEJ5XGsFujopwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKb3UsQdnegQ8zkGBfX7ecmd1yZqMB8GA1UdIwQY
MBaAFDhM3c100EIpWD0sK+7Qc+AJa6M1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzIt
OTk4YWQ1MGY0YTJhLzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC8xNTFjM2UtOTVkOC00ODNiLThkYzItOTk4YWQ1MGY0YTJh
LzEvT0V6ZHpYVFFRaWxZUFN3cjd0Qno0QWxyb3pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1igfxQvg
5J0pJV6FXz9UIBBxBvAkuLYHoHpOwpmb9lqpULenTQaW8WGUsgpRJ0iWvt8mV4a+
7ZYWkA/Zyrz9pXze+8yagpYCxyfhi1TuFaGK5+tK4c9MJ8eYI7/QWrtCNSSvbbWJ
yC79E6kgXul0mCrdCEkCSpY/3JVc4lNdnkEBp/ly8VwwQbHWee6t/EAYf6rM3pRW
K8fiLFBwLOSuQdJk2cSXlLfRPpyKvAgO/SF8+Qw5Ct4xzTEQhWUySxxV46hQjh5J
qwKptSs+RJ7TXnKOoOs0lbEcelyHb5irHXTH2S4qOBNRUDtdi4fgHUJbGZdyXWtI
PJ/dPiNFSKR/8Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:29:48 2026 by rpki-client