Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
File: 3tvumMupuOYloRR7s7VRl9LQoFc.mft (raw, json)
Hash identifier: yyUM6qdGQhCU1kaB4GETQFlNf9fMXhg4FoPSQ6r4T88=
Subject key identifier: C9:55:31:35:C3:74:56:7B:64:83:31:5E:E2:7D:0D:5E:DF:44:6D:C0
Authority key identifier: DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57
Certificate issuer: /CN=dedbee98cba9b8e625a1147bb3b55197d2d0a057
Certificate serial: 019CBCCD3EF43FCDB29852B745011EE3713D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
Manifest number: 08B7
Signing time: Thu 05 Mar 2026 07:01:33 +0000
Manifest this update: Thu 05 Mar 2026 07:01:33 +0000
Manifest next update: Fri 06 Mar 2026 07:01:33 +0000
Files and hashes: 1: 3tvumMupuOYloRR7s7VRl9LQoFc.crl (hash: 4WOvdUiHHEIIFJoJa77f5PEoH43pb/IEaA8S3dFTB10=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bc:cd:3e:f4:3f:cd:b2:98:52:b7:45:01:1e:e3:71:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dedbee98cba9b8e625a1147bb3b55197d2d0a057
Validity
Not Before: Mar 5 07:01:33 2026 GMT
Not After : Mar 6 07:01:33 2026 GMT
Subject: CN=c9553135c374567b6483315ee27d0d5edf446dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:fb:80:3a:c1:69:de:84:ac:c2:64:a1:86:97:
e8:0c:97:be:d0:fb:d9:d5:7b:32:eb:c5:a0:bc:34:
6d:47:82:62:ed:aa:83:f7:ef:a1:54:cc:e7:0d:e3:
ae:46:68:a0:54:8b:fa:a4:4a:87:a0:b6:fa:07:d3:
ec:0e:ab:8d:b0:f2:ff:dc:35:7b:a4:c2:2d:ed:fe:
74:41:30:ee:48:ce:76:5a:2e:84:ea:8e:6b:28:c9:
a8:a3:f0:7b:0b:36:c6:db:82:03:05:67:fd:21:c1:
c3:44:dd:d7:f0:ec:ce:e3:b6:c1:1b:98:40:98:f8:
49:e4:f9:59:2b:df:b3:50:7a:3e:2e:73:88:29:f8:
66:37:37:bc:e7:7a:1e:30:a8:f0:1c:0f:e9:cc:81:
74:b6:76:a2:27:fa:3a:46:0c:06:9a:a1:b1:43:39:
df:ed:71:20:5b:7c:25:7e:38:1a:ac:b7:04:f5:2d:
96:8e:a0:ca:a0:7b:6a:eb:0a:e5:5a:47:14:43:2e:
44:de:d3:50:a6:7b:22:c2:18:dc:d4:bc:56:db:88:
34:10:6e:e2:ec:e6:ee:a4:d2:2e:8c:fb:dd:27:11:
06:83:55:8e:78:7d:bc:27:a3:16:3b:ca:1a:12:16:
45:1e:18:8b:ca:5f:2e:db:d1:0c:f6:2c:7f:7c:1e:
8d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:55:31:35:C3:74:56:7B:64:83:31:5E:E2:7D:0D:5E:DF:44:6D:C0
X509v3 Authority Key Identifier:
keyid:DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:20:b3:39:51:18:8e:1b:91:22:5f:39:3f:67:e1:18:7f:ed:
fe:c2:ea:61:f6:08:01:f3:f9:30:9c:b5:25:4f:6b:93:4e:4d:
72:e0:5b:c0:e4:2b:b6:2d:46:89:83:ea:a6:b1:9a:d3:39:98:
36:c7:22:0f:99:0c:e0:4f:ee:74:6f:62:5c:f9:ad:90:4b:9f:
6b:93:c5:f3:84:49:a0:d3:96:40:2a:01:ec:7d:03:ca:25:21:
61:b1:0e:25:8c:89:f2:85:56:b7:b4:9b:32:7d:5f:24:1e:59:
df:c0:c4:e9:a8:a3:ae:81:14:20:c1:f2:da:b5:1f:89:ff:c3:
ac:f0:94:ba:27:49:a0:2a:e1:7f:a5:47:a5:13:8a:e7:2d:b3:
22:41:21:ac:1f:0c:3c:20:33:30:76:29:c0:a5:10:b9:e1:2c:
2e:06:3c:b0:d2:b3:cc:53:aa:10:7e:36:60:7b:eb:4a:36:3b:
a4:a9:52:da:34:f7:61:8c:7d:6c:71:6f:9b:09:d6:f5:15:05:
c7:99:62:ed:bf:42:08:a7:fb:ff:b2:99:28:3a:a7:22:3f:34:
a6:04:be:e1:3c:f0:f6:93:13:1d:9c:1b:3f:30:74:6c:b4:87:
5a:25:85:a2:a2:e0:1e:e4:8e:f3:38:1a:6d:b8:41:e1:9f:18:
c0:36:66:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZy8zT70P82ymFK3RQEe43E9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZGJlZTk4Y2JhOWI4ZTYyNWExMTQ3YmIzYjU1MTk3ZDJk
MGEwNTcwHhcNMjYwMzA1MDcwMTMzWhcNMjYwMzA2MDcwMTMzWjAzMTEwLwYDVQQD
EyhjOTU1MzEzNWMzNzQ1NjdiNjQ4MzMxNWVlMjdkMGQ1ZWRmNDQ2ZGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fuAOsFp3oSswmShhpfoDJe+0PvZ
1Xsy68WgvDRtR4Ji7aqD9++hVMznDeOuRmigVIv6pEqHoLb6B9PsDquNsPL/3DV7
pMIt7f50QTDuSM52Wi6E6o5rKMmoo/B7CzbG24IDBWf9IcHDRN3X8OzO47bBG5hA
mPhJ5PlZK9+zUHo+LnOIKfhmNze853oeMKjwHA/pzIF0tnaiJ/o6RgwGmqGxQznf
7XEgW3wlfjgarLcE9S2WjqDKoHtq6wrlWkcUQy5E3tNQpnsiwhjc1LxW24g0EG7i
7ObupNIujPvdJxEGg1WOeH28J6MWO8oaEhZFHhiLyl8u29EM9ix/fB6NuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMlVMTXDdFZ7ZIMxXuJ9DV7fRG3AMB8GA1UdIwQY
MBaAFN7b7pjLqbjmJaEUe7O1UZfS0KBXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3R2dW1NdXB1T1lsb1JSN3M3VlJsOUxRb0ZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8wZWY2NzgtNzg3MC00ZTA4LWFiMjUt
MThmMGI4MGYyNTBkLzEvM3R2dW1NdXB1T1lsb1JSN3M3VlJsOUxRb0ZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC8wZWY2NzgtNzg3MC00ZTA4LWFiMjUtMThmMGI4MGYyNTBk
LzEvM3R2dW1NdXB1T1lsb1JSN3M3VlJsOUxRb0ZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjiCzOVEY
jhuRIl85P2fhGH/t/sLqYfYIAfP5MJy1JU9rk05NcuBbwOQrti1GiYPqprGa0zmY
NsciD5kM4E/udG9iXPmtkEufa5PF84RJoNOWQCoB7H0DyiUhYbEOJYyJ8oVWt7Sb
Mn1fJB5Z38DE6aijroEUIMHy2rUfif/DrPCUuidJoCrhf6VHpROK5y2zIkEhrB8M
PCAzMHYpwKUQueEsLgY8sNKzzFOqEH42YHvrSjY7pKlS2jT3YYx9bHFvmwnW9RUF
x5li7b9CCKf7/7KZKDqnIj80pgS+4Tzw9pMTHZwbPzB0bLSHWiWFoqLgHuSO8zga
bbhB4Z8YwDZmVw==
-----END CERTIFICATE-----
Generated at Fri Apr 17 12:24:26 2026 by rpki-client