Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
File: HzkK-DPX1CaQQsJJvPSWSFcglbY.mft (raw, json)
Hash identifier: DAt0wPgO2lXJd4h02JQ3hSlSWRwxDWerFJ9p+yjtSz8=
Subject key identifier: 1D:7F:36:FA:C1:58:EB:24:31:D8:CA:77:73:D1:45:AF:B2:71:A9:68
Authority key identifier: 1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
Certificate issuer: /CN=1f390af833d7d4269042c249bcf49648572095b6
Certificate serial: 019CDBB2AA4ADD307A8F946799227024651D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
Manifest number: 12FE
Signing time: Wed 11 Mar 2026 07:00:45 +0000
Manifest this update: Wed 11 Mar 2026 07:00:45 +0000
Manifest next update: Thu 12 Mar 2026 07:00:45 +0000
Files and hashes: 1: HzkK-DPX1CaQQsJJvPSWSFcglbY.crl (hash: ilJqnuTN4i7TjIfqnabeVPdoxerw8Ub3KmZ/Iwg8O4E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:db:b2:aa:4a:dd:30:7a:8f:94:67:99:22:70:24:65:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f390af833d7d4269042c249bcf49648572095b6
Validity
Not Before: Mar 11 07:00:45 2026 GMT
Not After : Mar 12 07:00:45 2026 GMT
Subject: CN=1d7f36fac158eb2431d8ca7773d145afb271a968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:10:c9:f4:b6:52:4a:cc:d7:0f:36:1a:e2:
e3:f7:df:33:9a:51:90:75:a3:31:04:30:a8:f5:39:
74:f2:24:31:f2:37:5d:71:fa:5c:4e:75:30:3f:41:
da:ed:11:9b:a2:5d:0c:5b:0c:0c:c9:7f:a2:70:e3:
61:91:80:f5:3c:20:75:93:e0:10:28:3a:e6:d8:44:
6c:c7:46:0f:a2:b5:61:4a:fb:82:f8:f3:6d:4a:c1:
67:5b:86:3b:b9:a5:a0:da:43:42:1d:ef:58:46:0f:
36:41:08:cf:e3:a3:b8:e8:a7:b1:9a:16:06:8d:a1:
73:9d:96:bf:4a:03:3f:17:17:9a:30:8c:db:ad:70:
53:c2:73:65:c0:c7:69:75:05:ea:3f:7e:0f:89:8c:
0a:97:05:2b:8f:92:28:c3:e9:13:c5:16:0c:a4:20:
2a:bb:63:18:04:a4:60:b2:c0:98:67:81:68:32:94:
ec:6a:9b:2d:66:d7:56:6d:b5:1b:c3:b9:cd:02:fa:
68:59:15:3f:68:25:76:5e:ca:db:2c:e2:a0:8f:05:
7f:7c:cf:b9:cf:7f:19:bc:ec:7b:3f:f6:ae:bd:1a:
24:36:1e:3e:c7:f0:73:17:89:b9:2f:b0:18:1a:cb:
c3:23:20:a9:8e:23:08:56:31:73:b1:45:ab:5f:3b:
dc:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7F:36:FA:C1:58:EB:24:31:D8:CA:77:73:D1:45:AF:B2:71:A9:68
X509v3 Authority Key Identifier:
keyid:1F:39:0A:F8:33:D7:D4:26:90:42:C2:49:BC:F4:96:48:57:20:95:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzkK-DPX1CaQQsJJvPSWSFcglbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ba3048-6224-4a97-ba31-d758372cf8f0/1/HzkK-DPX1CaQQsJJvPSWSFcglbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:11:33:10:6c:68:8e:68:87:2a:77:03:4a:78:d3:b8:a8:5a:
24:ff:ea:1b:43:7f:31:e2:52:35:49:4a:af:61:4d:ad:d6:a1:
0e:d7:f5:9f:32:97:ec:5a:3e:11:88:ef:62:cd:36:e6:57:73:
d9:ac:3a:f9:5e:75:7e:7e:99:dd:4d:6f:6b:6a:9a:68:16:20:
5e:e7:fa:9b:96:7b:d9:d0:15:17:47:ae:5b:1f:07:79:2c:20:
02:b4:e1:69:f9:cc:5f:69:16:a8:af:b7:8a:c9:cd:ef:db:9a:
1e:ef:4c:77:0b:1f:5c:b4:7f:2b:8f:2a:14:5c:ea:f2:b5:4e:
1b:36:c8:a6:52:ed:b0:4b:3a:69:ad:46:ac:47:fe:9f:1d:b2:
ce:dc:38:83:b9:4e:49:bb:61:b9:a7:67:3f:39:ed:57:a7:72:
f7:d2:02:3d:aa:81:86:10:44:83:a3:be:55:db:54:4e:5e:37:
a4:6f:42:75:41:55:77:df:4d:b0:b2:31:31:9a:8d:90:0e:4d:
70:0a:fd:d8:55:d3:29:16:a7:8e:5c:17:fc:5c:7f:8d:35:1a:
cd:51:24:4e:dc:59:2f:3b:20:28:c5:85:73:64:18:34:3a:43:
9c:d2:c5:ee:13:d9:ad:f5:46:d7:62:9e:00:30:e6:6e:78:78:
dd:7c:21:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:35:15 2026 by rpki-client