Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
File: HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft (raw, json)
Hash identifier: +4MnjsmK/PFD8VlGEvymhHUrZ8HMfC/1uVjJulINzGE=
Subject key identifier: A7:70:FF:4C:67:D7:02:40:11:DA:8A:0D:B6:B3:1F:B9:5C:29:A8:C5
Authority key identifier: 1C:D2:E7:8A:09:7F:29:0F:C2:FC:AF:5D:9C:7D:88:FC:C8:7B:D4:52
Certificate issuer: /CN=1cd2e78a097f290fc2fcaf5d9c7d88fcc87bd452
Certificate serial: 019A8F1E13604640872188391A2C72456A28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNLnigl_KQ_C_K9dnH2I_Mh71FI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
Manifest number: 0385
Signing time: Mon 17 Nov 2025 00:01:44 +0000
Manifest this update: Mon 17 Nov 2025 00:01:44 +0000
Manifest next update: Tue 18 Nov 2025 00:01:44 +0000
Files and hashes: 1: HNLnigl_KQ_C_K9dnH2I_Mh71FI.crl (hash: 9ucwJ30+nNlx84+Zx1Fh8Tx/cXc74s4co7xAQ7mwDN0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:8f:1e:13:60:46:40:87:21:88:39:1a:2c:72:45:6a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cd2e78a097f290fc2fcaf5d9c7d88fcc87bd452
Validity
Not Before: Nov 17 00:01:44 2025 GMT
Not After : Nov 18 00:01:44 2025 GMT
Subject: CN=a770ff4c67d7024011da8a0db6b31fb95c29a8c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2d:5d:8c:2f:7e:c3:46:23:54:b0:56:73:c2:
13:46:f5:5d:30:17:52:67:9c:c4:a7:12:d7:8b:c3:
80:1a:30:3f:9a:d6:02:d6:13:39:89:bc:f3:a3:a8:
0a:df:20:14:e7:f8:7d:53:d6:47:81:26:ad:90:37:
ba:19:ac:83:2e:e4:91:33:6a:76:6d:93:35:97:83:
f9:4e:a7:b1:25:ec:95:bf:04:f9:32:ce:c9:1c:fd:
11:6d:c5:3d:37:85:d0:56:f5:26:ef:43:41:90:67:
ab:34:d6:8c:b4:a2:15:f1:a5:f2:6b:3d:64:d6:fb:
45:59:90:e8:b8:47:d8:4d:6e:3c:07:89:cc:52:28:
0b:58:76:e0:94:c0:77:26:95:b4:1c:89:e0:ae:f4:
13:1e:f8:ad:c0:6a:c0:28:ab:d0:cd:26:45:f1:9c:
c2:45:be:8a:c1:d6:07:93:21:e0:54:3d:b7:33:96:
c7:4d:f1:f6:0e:c1:a6:71:f0:65:39:89:23:0e:32:
86:77:e7:e8:f9:86:8b:58:2d:16:a4:89:d4:e0:1a:
84:62:36:39:0d:46:ff:97:f8:af:e9:34:75:ba:51:
8c:d2:34:d9:38:88:53:68:30:60:1a:58:23:4f:8d:
14:6e:c7:b2:6d:4d:e4:f0:e2:65:1b:64:d6:ab:d5:
17:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:70:FF:4C:67:D7:02:40:11:DA:8A:0D:B6:B3:1F:B9:5C:29:A8:C5
X509v3 Authority Key Identifier:
keyid:1C:D2:E7:8A:09:7F:29:0F:C2:FC:AF:5D:9C:7D:88:FC:C8:7B:D4:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNLnigl_KQ_C_K9dnH2I_Mh71FI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5efcbb-3d40-4fe3-b8eb-06c0f2a1757f/1/HNLnigl_KQ_C_K9dnH2I_Mh71FI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:e9:ee:b5:5b:23:36:0d:53:a5:a2:ca:d7:8e:9a:56:4f:68:
b6:0f:61:bd:e2:b1:42:58:18:50:e2:ff:62:5d:e8:07:73:80:
06:16:cd:02:43:94:85:ce:ea:a1:9d:ed:94:78:60:8c:82:0f:
8b:c6:2b:c7:06:07:db:91:a8:aa:25:45:02:a0:fe:15:95:c6:
9c:5d:d4:fa:f6:d9:43:23:94:f9:b9:06:5e:2f:93:33:6a:a8:
a2:4c:4a:93:f1:97:9a:6c:21:ed:ff:7c:38:c2:a5:10:b6:12:
9e:34:9d:da:07:51:ce:31:19:db:19:a6:cb:8d:9d:10:5f:9b:
d0:39:34:3a:3b:f6:e3:c8:1a:2b:99:99:b0:61:10:1e:37:f4:
1d:4c:96:77:f5:db:5c:14:09:bf:3e:78:a5:d9:77:b7:6e:6c:
a7:e0:95:dd:72:22:56:a8:94:71:a0:e7:ee:ad:e4:be:de:85:
ad:4d:69:ec:23:0e:6f:31:28:d6:e6:31:a8:9b:72:fd:66:fc:
43:f3:9c:67:39:bb:c5:74:7e:11:13:c8:1f:6d:e7:67:09:a2:
5e:8d:a7:66:e4:13:00:8d:96:15:fd:b0:c9:52:30:f2:06:33:
b3:c8:4c:86:6c:7b:34:f0:2f:4e:63:7d:cd:0c:d0:60:62:8a:
38:6c:9b:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:21 2026 by rpki-client