Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
File: lnRtO9Pi3eYWQCDesLXYkixkdm0.mft (raw, json)
Hash identifier: /aEEkDZwJ8C/TH7CbwV7Mf14rYB5kbmUNq6ky4uUuK4=
Subject key identifier: D3:DB:72:3A:54:C9:CB:83:D1:89:86:0C:EA:B2:6A:B3:34:72:9A:50
Authority key identifier: 96:74:6D:3B:D3:E2:DD:E6:16:40:20:DE:B0:B5:D8:92:2C:64:76:6D
Certificate issuer: /CN=96746d3bd3e2dde6164020deb0b5d8922c64766d
Certificate serial: 019CADFE1323C06E5090CBD2CB4EA4DCB92A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lnRtO9Pi3eYWQCDesLXYkixkdm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
Manifest number: 04FD
Signing time: Mon 02 Mar 2026 10:00:35 +0000
Manifest this update: Mon 02 Mar 2026 10:00:35 +0000
Manifest next update: Tue 03 Mar 2026 10:00:35 +0000
Files and hashes: 1: lnRtO9Pi3eYWQCDesLXYkixkdm0.crl (hash: 4wZoPayfOlV0XiD9sXx11y29BAltMcQiZL7Rde9W5Ck=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:13:23:c0:6e:50:90:cb:d2:cb:4e:a4:dc:b9:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96746d3bd3e2dde6164020deb0b5d8922c64766d
Validity
Not Before: Mar 2 10:00:35 2026 GMT
Not After : Mar 3 10:00:35 2026 GMT
Subject: CN=d3db723a54c9cb83d189860ceab26ab334729a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:25:f3:af:04:70:a6:ed:a0:9c:6a:39:6c:2c:
4c:eb:a4:69:e0:7f:d4:15:5f:03:c3:a9:13:08:8a:
75:88:52:26:4a:5f:05:5b:5f:08:fc:fb:4a:37:fa:
a3:9f:be:b0:ea:0e:c2:97:5e:ff:71:72:53:19:84:
b7:82:3c:a0:13:8d:a2:eb:1a:3e:1f:bd:7c:bc:c5:
92:1b:8b:0a:51:16:19:96:5c:de:bd:e9:b4:f4:19:
2d:54:4f:f0:8a:31:a4:b0:0a:13:a0:c9:b1:b3:63:
17:b8:e0:2d:fe:63:96:f6:a7:29:b8:fa:b2:47:cb:
51:79:11:d9:de:6f:e6:5e:09:7b:a2:1f:30:dc:81:
f8:80:8f:17:e8:5c:27:27:34:85:0d:6a:05:20:1a:
7c:06:48:7a:7b:c2:7e:24:df:8c:16:b1:bf:af:41:
f0:f0:75:88:64:75:dc:e2:51:a2:46:8b:d1:0f:00:
7d:4a:aa:3f:be:c4:f1:6e:a9:d3:d6:3b:47:b8:ed:
cd:3d:65:6a:3a:65:0e:b3:cc:5a:0a:ca:23:1e:45:
f7:df:71:af:23:f0:f1:ec:94:a4:75:c3:70:ac:74:
d9:39:ec:7f:06:f4:7d:80:76:af:44:c9:d4:d6:2e:
09:33:d7:fa:c8:4e:bb:8e:cf:2b:18:88:9d:5f:12:
61:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:DB:72:3A:54:C9:CB:83:D1:89:86:0C:EA:B2:6A:B3:34:72:9A:50
X509v3 Authority Key Identifier:
keyid:96:74:6D:3B:D3:E2:DD:E6:16:40:20:DE:B0:B5:D8:92:2C:64:76:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lnRtO9Pi3eYWQCDesLXYkixkdm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/e1f171-a889-4395-9cfc-0805419d721a/1/lnRtO9Pi3eYWQCDesLXYkixkdm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:9d:25:26:61:f3:dd:23:44:e0:d4:eb:25:e7:af:84:4b:f8:
3f:16:98:c3:57:cb:ab:d7:97:0a:0c:30:bf:13:b3:e5:ca:2a:
5e:52:74:69:73:85:60:16:09:ad:e3:62:d7:b8:e1:10:42:0b:
d6:d7:1d:34:70:a8:37:ad:44:e2:4f:fb:da:9c:d8:e3:09:4c:
03:66:7a:03:2b:31:e1:9b:43:b8:56:0b:a3:97:e5:22:6e:ea:
4e:5f:8c:42:d8:69:cc:b9:ea:14:0d:1a:a6:58:ae:32:d9:15:
88:aa:ef:b8:3d:ac:2c:a3:0d:1e:be:c0:8f:45:a8:36:01:ac:
81:87:16:28:0d:8f:f9:b9:99:32:a0:36:4e:ac:6c:16:00:62:
a2:94:80:a2:76:6d:2f:b1:59:4b:2a:65:7b:a7:2b:dc:51:52:
f1:52:31:fa:c8:b5:af:23:20:9e:6d:9e:6a:85:a3:5f:9b:c5:
91:87:4d:40:2c:9b:c9:90:d1:d1:5c:c4:7f:a3:03:61:89:64:
2b:b9:22:ee:3c:e0:e8:f5:be:82:27:94:b3:e2:65:be:89:42:
41:ff:1d:41:15:f9:78:9a:da:c0:c3:09:2d:58:0f:bc:56:4a:
4a:19:dd:21:a7:6c:22:4f:7e:c7:09:49:b1:39:da:8d:0c:3c:
e3:59:90:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:01:36 2026 by rpki-client