Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
File: kpZChU_lYFL93BRr9y57xpSFC2M.mft (raw, json)
Hash identifier: 7yyCQFwny7hgxKil3aelVlb2gmvKXqKZ3xCC2MWUw9Q=
Subject key identifier: E6:3E:0F:A8:28:B0:17:E8:B1:DB:59:84:FF:0F:16:A8:27:31:13:8E
Authority key identifier: 92:96:42:85:4F:E5:60:52:FD:DC:14:6B:F7:2E:7B:C6:94:85:0B:63
Certificate issuer: /CN=929642854fe56052fddc146bf72e7bc694850b63
Certificate serial: 019D1F1342770D834BBD2A7A5911C0034E3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpZChU_lYFL93BRr9y57xpSFC2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
Manifest number: 096B
Signing time: Tue 24 Mar 2026 09:00:48 +0000
Manifest this update: Tue 24 Mar 2026 09:00:48 +0000
Manifest next update: Wed 25 Mar 2026 09:00:48 +0000
Files and hashes: 1: kpZChU_lYFL93BRr9y57xpSFC2M.crl (hash: I54ci9a4FKXpwAB+LWl4rowDGFnDs/6+do/IG1jk9Ic=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1f:13:42:77:0d:83:4b:bd:2a:7a:59:11:c0:03:4e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=929642854fe56052fddc146bf72e7bc694850b63
Validity
Not Before: Mar 24 09:00:48 2026 GMT
Not After : Mar 25 09:00:48 2026 GMT
Subject: CN=e63e0fa828b017e8b1db5984ff0f16a82731138e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d1:9c:97:b1:be:17:89:fb:22:8e:90:1d:00:
ae:0f:3d:7f:1d:90:dc:90:63:fa:1f:3c:7a:a3:88:
f2:f6:bd:e7:bf:c4:ef:55:6a:87:97:11:3f:53:aa:
60:44:75:2b:39:1c:b5:cf:6f:d1:44:c3:39:dd:a0:
b8:5e:ca:38:f0:4e:ff:e1:de:ad:af:97:10:7e:b3:
82:45:8e:fc:eb:52:b5:e3:ec:b2:b0:8f:7d:7d:6b:
b8:09:9f:ca:66:ac:c8:bb:04:0b:91:09:ec:e3:a3:
4e:42:3e:6b:a5:c1:de:53:e1:28:9b:d0:34:90:4b:
84:bd:fb:f9:c9:cc:a1:ac:ab:84:f4:23:ef:a9:80:
20:ba:fe:bf:c8:5a:3a:95:e8:e9:38:11:eb:97:4f:
6e:ed:00:60:58:47:02:87:79:26:5c:ba:f0:4e:ac:
64:be:5d:a6:d7:ba:fe:6f:b7:2a:1f:d1:82:f7:71:
32:dc:52:d2:55:88:76:6c:e9:40:88:f8:d4:f1:54:
bb:c8:91:08:f5:f3:58:3f:2b:a0:aa:ff:03:bd:55:
63:bc:08:53:90:6e:ed:3a:4c:13:11:dc:e6:50:15:
b4:23:4f:da:2a:2f:82:32:a7:55:a8:f9:63:c1:a9:
d5:aa:29:25:ec:84:85:ef:84:f1:d8:b5:46:3d:f4:
ca:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3E:0F:A8:28:B0:17:E8:B1:DB:59:84:FF:0F:16:A8:27:31:13:8E
X509v3 Authority Key Identifier:
keyid:92:96:42:85:4F:E5:60:52:FD:DC:14:6B:F7:2E:7B:C6:94:85:0B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpZChU_lYFL93BRr9y57xpSFC2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1b01d8-9b31-4f08-a1c5-e91648ec7de5/1/kpZChU_lYFL93BRr9y57xpSFC2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:9c:c1:e2:6e:96:f6:cd:8b:a6:ef:1c:d4:50:83:01:eb:fe:
9f:7e:75:41:93:1d:8b:17:90:11:7b:72:84:df:ab:30:5e:08:
bd:a0:12:b1:ea:25:2a:8a:a0:34:ab:1b:44:e9:32:68:33:15:
8c:c8:ba:bd:fb:2a:de:4d:f4:f6:fc:aa:7e:7b:35:c2:3f:32:
5e:05:e8:46:bb:e6:f8:f0:45:fd:15:70:2d:44:44:aa:f7:1e:
7e:6f:5c:0f:dd:2a:b4:8a:6f:e5:45:13:21:0e:84:2f:fc:fa:
f3:f2:d5:4e:5c:63:a6:a7:36:62:62:0f:8a:28:18:34:95:c9:
aa:02:8a:23:f2:98:77:23:ec:c5:fe:c2:1f:a6:c2:f3:88:d9:
02:0f:db:ea:8b:24:c5:aa:f9:83:aa:0d:02:b7:b2:35:f3:a8:
bd:6f:57:51:a1:fa:db:e5:e4:a1:a2:df:72:30:3e:db:72:67:
cf:cb:09:86:6b:3d:28:60:48:b0:7f:1a:c9:a1:dd:48:51:a7:
30:27:85:1f:2f:fe:de:b6:d7:d0:2c:be:50:02:8f:01:05:17:
10:6f:19:65:a4:ec:e0:e5:58:1b:26:ae:58:97:2c:49:c1:b4:
b5:8d:41:51:8a:b5:63:62:af:74:c6:04:66:53:1a:19:7b:7a:
79:41:e0:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:59:01 2026 by rpki-client