Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json)
Hash identifier: pQf5P0INhumYDqKr/boyNl9627m6MRauBWre9TU2YLY=
Subject key identifier: 79:70:66:28:98:F5:6A:40:1C:A9:6A:EF:9A:4C:CD:03:4A:C1:20:F1
Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6
Certificate serial: 019D1A23C31A420686BA731D3178B16EE1D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
Manifest number: 07BF
Signing time: Mon 23 Mar 2026 10:00:44 +0000
Manifest this update: Mon 23 Mar 2026 10:00:44 +0000
Manifest next update: Tue 24 Mar 2026 10:00:44 +0000
Files and hashes: 1: QVPA9s4tMBXLDCjD1TGmG3LpMQ0.roa (hash: cGmcjeeQyG7f4OMZt/MKW/jCa9uPzECH8kzxaZlj2k4=)
2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: YsZRsKcFnGp+6nhAXMEc0ppDmuZWtLMsmGowXOr5W/0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1a:23:c3:1a:42:06:86:ba:73:1d:31:78:b1:6e:e1:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6
Validity
Not Before: Mar 23 10:00:44 2026 GMT
Not After : Mar 24 10:00:44 2026 GMT
Subject: CN=7970662898f56a401ca96aef9a4ccd034ac120f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:89:e4:7d:b3:6e:91:2f:54:48:40:d2:de:a3:
58:3c:f6:bc:7b:3b:bd:78:cb:6d:d8:9d:52:a6:89:
8f:55:24:96:e3:a7:8a:d6:97:41:a5:03:df:b2:6d:
8d:2b:21:92:75:79:1e:64:82:7c:e7:27:52:50:74:
f6:d4:89:b9:d1:47:0e:2b:4f:c3:76:1e:30:90:d8:
6f:2f:12:1b:03:64:52:7d:2c:7b:b4:e8:5c:6d:66:
be:21:40:ad:80:d7:56:17:c5:99:0d:ad:63:b6:07:
56:9a:1f:6e:49:1f:60:5f:1c:cf:65:c5:f4:9d:c2:
b6:d7:21:b9:8b:22:f1:36:d6:7e:9c:4a:8a:9b:02:
8b:c1:70:0d:e8:e9:24:f1:ac:bf:fa:9e:ec:bf:3e:
39:0e:2f:23:d2:35:4b:65:4c:6b:91:ec:68:55:b1:
a7:62:61:ed:90:dc:c4:3b:72:07:72:e6:71:ad:d0:
fb:8d:06:07:f7:22:40:0f:d1:84:dd:da:6d:0e:d1:
0b:60:87:f2:d1:ab:6e:c6:cc:be:cc:b0:d5:26:08:
72:cd:54:47:ee:1a:56:13:f2:08:87:a2:e9:5e:4a:
1d:9a:81:36:5e:97:18:d4:f1:ec:f1:c2:ad:81:16:
28:74:87:18:e5:f9:72:f6:42:d0:99:ac:2b:4b:da:
4e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:70:66:28:98:F5:6A:40:1C:A9:6A:EF:9A:4C:CD:03:4A:C1:20:F1
X509v3 Authority Key Identifier:
keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:2e:a8:c3:2c:9e:ad:97:03:0c:da:4b:85:67:4f:ac:c9:33:
2d:80:d8:dc:c1:54:1e:a7:eb:da:27:c6:a2:60:68:6b:18:a1:
a6:f8:83:b0:ab:ef:0e:e5:a9:f1:1b:2b:ba:fd:3b:07:ca:9d:
49:9c:01:be:53:8b:34:df:dd:c3:fd:71:9b:fe:a3:53:85:8e:
17:3e:43:0b:3f:a0:5a:58:9c:50:e5:7b:99:70:c2:51:3f:57:
64:62:82:36:12:9a:c1:bd:3c:31:d3:27:a1:75:78:da:3e:ed:
0e:f5:f4:ed:7e:da:ca:5c:bd:dd:6a:5e:c3:ef:04:68:ae:c2:
be:7a:da:2e:c6:d9:79:d8:e0:d5:72:e9:6c:32:eb:c7:70:80:
0a:17:6d:c5:e4:77:5f:3e:46:e4:c6:af:92:d3:5b:2c:db:78:
85:5a:6c:9f:d7:79:a7:75:87:86:86:97:96:26:91:45:60:64:
21:14:a6:9f:86:a1:66:71:42:5a:06:54:75:68:70:89:43:fb:
b2:bb:50:b9:0d:88:8d:d8:65:90:f8:49:3a:0d:ca:a7:01:42:
97:b0:50:63:c8:95:a1:39:9d:42:87:65:9f:18:c2:79:63:df:
c1:88:0e:42:5a:f6:4a:3c:d2:65:f5:92:b1:ee:b4:9e:46:80:
e7:65:42:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:50:25 2026 by rpki-client