Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
File: cs3rVmQuM1iXcef9pxu3HgF_nZY.mft (raw, json)
Hash identifier: VDWi558KSgwa/eIKJU6z7U0nUxK8aYapJqt+simv+i0=
Subject key identifier: 1F:6A:C6:2E:EF:81:29:59:21:E1:DA:D2:BD:14:94:58:98:80:4C:2B
Authority key identifier: 72:CD:EB:56:64:2E:33:58:97:71:E7:FD:A7:1B:B7:1E:01:7F:9D:96
Certificate issuer: /CN=72cdeb56642e33589771e7fda71bb71e017f9d96
Certificate serial: 019CDAD6ED7AF4304FF12F28641476F3520B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cs3rVmQuM1iXcef9pxu3HgF_nZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
Manifest number: 0D7C
Signing time: Wed 11 Mar 2026 03:00:44 +0000
Manifest this update: Wed 11 Mar 2026 03:00:44 +0000
Manifest next update: Thu 12 Mar 2026 03:00:44 +0000
Files and hashes: 1: cs3rVmQuM1iXcef9pxu3HgF_nZY.crl (hash: Xygfn6cdsssqOsLUawVOyXXcTjvxIVcffFJDM3uk+M0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:da:d6:ed:7a:f4:30:4f:f1:2f:28:64:14:76:f3:52:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cdeb56642e33589771e7fda71bb71e017f9d96
Validity
Not Before: Mar 11 03:00:44 2026 GMT
Not After : Mar 12 03:00:44 2026 GMT
Subject: CN=1f6ac62eef81295921e1dad2bd14945898804c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:11:f1:14:2b:fd:62:6f:dc:b8:78:14:ef:fd:
26:3a:0a:cd:e0:28:be:a4:e0:6e:38:fd:07:37:9a:
bc:fc:50:b9:64:40:b5:6d:a1:46:a2:56:88:8e:51:
69:0c:ac:6c:ce:79:af:07:a4:c1:26:ba:c5:d4:14:
ca:88:88:d4:17:11:41:fa:d5:1d:1f:f1:62:e7:ad:
95:ab:77:50:aa:39:96:62:f8:f5:1d:03:4a:6a:85:
6b:34:df:b6:b7:70:5c:21:bc:25:dd:d9:03:21:d2:
41:ce:c7:18:80:39:0e:28:7e:27:e4:e0:1d:a2:ef:
f2:92:09:ad:c8:8a:b8:f0:bd:ac:58:92:7c:72:59:
44:68:2d:7f:b0:cd:02:4e:ef:a7:81:86:d6:97:56:
a9:cc:f8:52:b2:69:0e:8e:cc:0e:db:49:ae:8f:bc:
72:ca:07:9d:68:85:a8:3f:1e:96:ec:63:45:7d:0c:
42:38:f2:63:d3:71:31:41:e2:1c:ff:04:59:ce:e4:
df:85:bc:a0:dc:dd:e9:24:5a:2f:6b:07:ae:7a:9d:
21:5f:36:2b:8f:28:ea:17:1a:41:92:13:8b:f6:71:
06:83:2b:5c:61:7e:17:ab:c1:48:c9:4d:c1:62:7d:
ab:55:99:fa:9c:a2:9b:31:05:5b:f5:48:f1:85:cf:
f3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:6A:C6:2E:EF:81:29:59:21:E1:DA:D2:BD:14:94:58:98:80:4C:2B
X509v3 Authority Key Identifier:
keyid:72:CD:EB:56:64:2E:33:58:97:71:E7:FD:A7:1B:B7:1E:01:7F:9D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cs3rVmQuM1iXcef9pxu3HgF_nZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/3c8448-af4a-4b48-a72a-e82774a16a57/1/cs3rVmQuM1iXcef9pxu3HgF_nZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:1d:6a:cc:40:db:71:14:f3:a6:62:06:70:dc:be:a3:f3:91:
b1:7a:fb:b8:f5:aa:58:dc:9b:df:e5:3b:32:15:cb:87:c3:23:
67:8c:19:88:43:ff:77:f5:a5:53:ce:b7:ee:58:c7:0d:ad:d8:
7e:e1:77:e6:d0:55:4c:15:e7:61:9c:ce:6a:24:23:b9:fa:21:
00:c7:fe:e1:80:e3:b2:ec:6a:12:9f:de:52:49:7b:fa:1a:93:
6f:24:d0:71:0a:78:c6:d1:94:0c:59:4b:20:d8:c8:7d:07:73:
39:38:f1:84:52:71:4b:a5:8b:7e:14:fd:93:67:5a:fd:62:7c:
6c:6f:85:e9:56:2b:cb:13:69:48:2c:cf:c3:8b:ff:d3:ef:6d:
c7:3f:fa:e7:6b:69:25:75:5d:2e:1d:fe:0a:e7:96:32:00:fa:
c9:cd:27:16:64:23:af:3f:3a:16:ac:f7:74:c1:34:77:b2:e6:
cb:ed:88:50:01:5b:dc:6b:4e:37:27:89:4c:91:6f:34:32:5c:
f9:55:65:ae:a6:d7:42:91:84:3f:61:97:ba:b9:e9:25:26:2d:
cb:c5:ce:5a:ec:5e:e5:3c:c7:49:05:c6:c6:93:40:d7:1c:56:
4d:e1:e0:c3:50:2e:8b:fe:ab:44:79:08:37:ba:07:2e:1c:97:
9f:55:98:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:52:50 2026 by rpki-client