Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft
File: Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft (raw, json)
Hash identifier: TN5KfAswaqc1uddNaxQwOBVLm6uQoG/jmMBrYLXTMvQ=
Subject key identifier: D8:13:23:99:20:19:2B:CE:95:51:51:07:CF:10:8A:E7:4B:B5:42:E7
Authority key identifier: 5E:A8:79:0A:08:C8:E0:D8:45:88:D9:4D:1A:51:BC:A9:AB:E7:58:1D
Certificate issuer: /CN=5ea8790a08c8e0d84588d94d1a51bca9abe7581d
Certificate serial: 019D65747F840FEA7D83F7AAA7FB17A94FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xqh5CgjI4NhFiNlNGlG8qavnWB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft
Manifest number: 16B5
Signing time: Tue 07 Apr 2026 01:00:26 +0000
Manifest this update: Tue 07 Apr 2026 01:00:26 +0000
Manifest next update: Wed 08 Apr 2026 01:00:26 +0000
Files and hashes: 1: Xqh5CgjI4NhFiNlNGlG8qavnWB0.crl (hash: eTXi4MVQWaD/BKoLQSjytTPq/hhmZ4hodPF5hIw8L9w=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:65:74:7f:84:0f:ea:7d:83:f7:aa:a7:fb:17:a9:4f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea8790a08c8e0d84588d94d1a51bca9abe7581d
Validity
Not Before: Apr 7 01:00:26 2026 GMT
Not After : Apr 8 01:00:26 2026 GMT
Subject: CN=d813239920192bce95515107cf108ae74bb542e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b5:fd:fe:0c:24:23:da:a6:eb:d5:cc:c3:08:
49:97:96:7a:0f:70:9a:01:ec:ab:27:e9:b8:f9:6d:
96:c7:6d:d7:bd:94:d0:02:19:e5:7a:af:08:54:cd:
b7:76:90:30:4c:70:0e:a4:e1:bd:25:70:e4:be:84:
9a:29:15:10:1e:60:4d:04:14:3c:d9:22:a1:30:af:
d0:23:ab:78:6a:10:72:6e:af:9d:f3:66:69:65:86:
05:21:e9:25:b9:cc:2d:e7:69:4b:ad:0f:e1:b5:3a:
86:dc:6e:ac:f4:48:b4:22:5c:71:f7:8a:3c:6b:9c:
03:b4:ab:42:f3:fe:a8:92:0e:23:5a:00:c3:8d:56:
8a:e4:45:3c:af:62:16:52:08:64:1d:0e:6a:41:ba:
66:bc:44:fa:19:45:d8:f7:b3:d3:78:65:ec:57:b2:
3d:ba:a0:e7:b2:e6:62:30:fd:b3:2e:44:5f:09:c6:
1a:7f:c7:61:78:6a:3d:2b:76:ac:88:af:c2:58:c5:
86:34:de:c4:48:6e:62:64:f6:8e:c2:5b:53:c0:44:
ff:2a:1b:63:e5:1e:aa:ab:52:79:f7:fd:cb:81:c3:
6e:78:8f:96:f3:39:ff:e7:bf:c9:e3:48:0e:48:5c:
63:53:b0:db:52:6b:10:cc:36:11:94:d8:27:7a:ca:
5c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:13:23:99:20:19:2B:CE:95:51:51:07:CF:10:8A:E7:4B:B5:42:E7
X509v3 Authority Key Identifier:
keyid:5E:A8:79:0A:08:C8:E0:D8:45:88:D9:4D:1A:51:BC:A9:AB:E7:58:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xqh5CgjI4NhFiNlNGlG8qavnWB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c06a23-0163-47a5-8608-30c0a111cd55/1/Xqh5CgjI4NhFiNlNGlG8qavnWB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:6b:3f:6b:65:c8:e0:89:fb:db:8d:54:d4:fd:be:03:10:76:
eb:48:d9:4e:a6:d5:f1:9e:51:2f:55:f2:11:c4:27:cd:23:e1:
50:56:2e:d0:0a:3a:08:dc:a6:44:59:05:4a:73:da:df:cc:5d:
e0:5f:5f:77:c1:5a:bf:d5:54:0b:45:c9:3a:e7:38:f3:7b:23:
87:97:f6:1c:5e:18:d2:33:dd:c8:ac:64:cf:a3:fa:d8:cb:d1:
2b:23:d1:d5:fe:4d:f5:8c:b1:12:4b:f6:f6:23:53:c5:80:b0:
e0:1e:7d:67:f3:15:d1:b2:bc:66:58:fa:d9:c3:5d:fb:c6:38:
5e:e6:3f:c3:d2:e9:0e:6c:83:a1:fb:0a:00:5d:f5:8d:74:d9:
e0:9c:b7:02:44:c1:2d:39:77:ab:8f:38:01:05:8e:11:d2:6b:
cf:9a:59:0f:23:a9:e6:ff:71:3a:d0:23:f8:df:51:6a:48:d8:
b1:2b:4a:0e:cf:42:35:a9:42:90:92:d9:c7:f2:2f:bf:f8:b1:
51:ce:72:c6:20:28:0a:0c:ac:94:fa:c7:79:f2:17:d8:9b:e0:
0a:17:ef:a1:f5:cc:00:04:ac:a0:94:e2:2a:82:11:50:5b:2f:
0d:c2:ae:8c:64:9f:9b:f4:5d:a4:66:a3:88:0f:a2:a9:46:5f:
e6:89:b7:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ1ldH+ED+p9g/eqp/sXqU+sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlYTg3OTBhMDhjOGUwZDg0NTg4ZDk0ZDFhNTFiY2E5YWJl
NzU4MWQwHhcNMjYwNDA3MDEwMDI2WhcNMjYwNDA4MDEwMDI2WjAzMTEwLwYDVQQD
EyhkODEzMjM5OTIwMTkyYmNlOTU1MTUxMDdjZjEwOGFlNzRiYjU0MmU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLX9/gwkI9qm69XMwwhJl5Z6D3Ca
AeyrJ+m4+W2Wx23XvZTQAhnleq8IVM23dpAwTHAOpOG9JXDkvoSaKRUQHmBNBBQ8
2SKhMK/QI6t4ahBybq+d82ZpZYYFIeklucwt52lLrQ/htTqG3G6s9Ei0Ilxx94o8
a5wDtKtC8/6okg4jWgDDjVaK5EU8r2IWUghkHQ5qQbpmvET6GUXY97PTeGXsV7I9
uqDnsuZiMP2zLkRfCcYaf8dheGo9K3asiK/CWMWGNN7ESG5iZPaOwltTwET/Khtj
5R6qq1J59/3LgcNueI+W8zn/57/J40gOSFxjU7DbUmsQzDYRlNgnespcrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgTI5kgGSvOlVFRB88QiudLtULnMB8GA1UdIwQY
MBaAFF6oeQoIyODYRYjZTRpRvKmr51gdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9jMDZhMjMtMDE2My00N2E1LTg2MDgt
MzBjMGExMTFjZDU1LzEvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9jMDZhMjMtMDE2My00N2E1LTg2MDgtMzBjMGExMTFjZDU1
LzEvWHFoNUNnakk0TmhGaU5sTkdsRzhxYXZuV0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALGs/a2XI
4In7241U1P2+AxB260jZTqbV8Z5RL1XyEcQnzSPhUFYu0Ao6CNymRFkFSnPa38xd
4F9fd8Fav9VUC0XJOuc483sjh5f2HF4Y0jPdyKxkz6P62MvRKyPR1f5N9YyxEkv2
9iNTxYCw4B59Z/MV0bK8Zlj62cNd+8Y4XuY/w9LpDmyDofsKAF31jXTZ4Jy3AkTB
LTl3q484AQWOEdJrz5pZDyOp5v9xOtAj+N9RakjYsStKDs9CNalCkJLZx/Ivv/ix
Uc5yxiAoCgyslPrHefIX2JvgChfvofXMAASsoJTiKoIRUFsvDcKujGSfm/RdpGaj
iA+iqUZf5om3kQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 20:44:29 2026 by rpki-client