Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
File: JfgKOI5PDiZBTOq-q036hBkdgUA.mft (raw, json)
Hash identifier: UJZOKaQQEToo41ZdNOSQR0V+ey+/TLmyIQGfGoFqUUo=
Subject key identifier: 7A:58:90:BC:37:43:0D:91:D0:30:FF:30:E1:30:53:B5:34:01:50:21
Authority key identifier: 25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
Certificate issuer: /CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Certificate serial: 019BF83F5247350C419531B285ABB2DD366A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
Manifest number: 16F1
Signing time: Mon 26 Jan 2026 03:00:57 +0000
Manifest this update: Mon 26 Jan 2026 03:00:57 +0000
Manifest next update: Tue 27 Jan 2026 03:00:57 +0000
Files and hashes: 1: JfgKOI5PDiZBTOq-q036hBkdgUA.crl (hash: L4yTFuGj9Zv6K+5d6i0VVmfqctf2T5FFRgkoUc7HOMk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:f8:3f:52:47:35:0c:41:95:31:b2:85:ab:b2:dd:36:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Validity
Not Before: Jan 26 03:00:57 2026 GMT
Not After : Jan 27 03:00:57 2026 GMT
Subject: CN=7a5890bc37430d91d030ff30e13053b534015021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:78:27:64:be:01:cf:80:dc:44:4d:67:4c:a0:
c5:57:5a:4d:63:04:0f:aa:6c:c3:47:8d:a9:e2:bb:
74:50:bf:b0:b0:65:5c:08:24:8a:91:37:65:4d:74:
2e:9a:e6:df:e4:da:7a:92:88:20:d1:2f:e4:f2:e8:
80:49:12:7b:cd:36:48:00:44:d4:94:1f:be:1a:63:
79:74:82:f4:49:f0:60:36:e3:c2:9d:de:44:74:66:
d1:c5:fb:a3:33:02:84:9f:f8:87:ca:72:59:23:04:
5a:f6:cc:50:b9:9c:bd:20:07:c9:ad:bd:2b:e8:07:
d7:d9:bd:02:49:ef:49:eb:9c:a8:23:58:4e:8f:e9:
32:b5:31:84:9b:08:cb:9a:d3:2f:8a:27:b0:5d:39:
6d:74:5f:07:d3:b3:76:98:5e:6a:11:a8:5a:98:be:
cf:e8:8d:54:a2:98:16:0f:e7:36:21:b6:1d:14:53:
10:58:35:a1:f2:1a:8a:65:c6:27:ec:94:21:75:3b:
2e:75:73:bd:b8:e5:48:0f:a2:54:f4:da:20:91:f5:
e6:17:1e:0a:8c:04:a3:74:fc:ac:5c:0e:30:6c:7f:
8d:82:f8:70:91:7d:25:2f:7a:9d:ff:3d:42:37:b9:
30:ef:c7:22:38:f5:d5:92:4a:d0:09:e2:f1:dc:e0:
f5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:58:90:BC:37:43:0D:91:D0:30:FF:30:E1:30:53:B5:34:01:50:21
X509v3 Authority Key Identifier:
keyid:25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:b4:66:3c:14:da:17:89:ea:b7:62:b5:d5:a7:f0:58:97:69:
dd:75:e0:61:8d:53:0d:98:87:99:8b:1b:f9:67:e8:1e:89:a3:
8e:73:cb:92:68:81:e8:b8:55:1f:b2:8f:2d:9d:5b:84:14:80:
7b:8b:d9:3d:5c:8a:f6:dc:b0:4e:df:80:c4:a3:60:65:c5:cb:
bd:73:cf:6a:d7:9f:0c:b6:e9:f1:3b:51:42:83:2c:aa:60:49:
8f:c3:8f:c7:29:43:c6:57:a9:a3:64:7b:f9:4b:ea:23:27:04:
59:fc:7e:99:09:45:3a:1a:40:e2:f0:88:ae:21:6e:fa:61:56:
9e:1a:ac:2a:52:1d:08:ae:9a:a0:ca:26:4e:be:85:4d:6a:fd:
4b:92:46:bf:05:a3:9d:f0:2d:46:4f:d4:ad:9a:70:2c:49:bb:
5f:0d:90:ae:ec:d5:f0:8d:f4:12:c4:9e:3b:42:a5:e4:ae:f5:
87:17:0e:54:80:7e:af:e9:62:f2:bc:20:e6:06:90:6c:d0:a5:
08:5c:4f:2f:f8:31:75:4c:1f:83:d8:0c:c3:ed:22:bd:87:52:
76:23:2a:42:d0:ed:1d:df:88:67:65:5d:7d:31:04:16:23:72:
05:8f:5c:12:1e:5f:01:21:31:57:99:66:54:3f:a6:fe:26:e0:
65:5f:aa:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZv4P1JHNQxBlTGyhauy3TZqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ZjgwYTM4OGU0ZjBlMjY0MTRjZWFiZWFiNGRmYTg0MTkx
ZDgxNDAwHhcNMjYwMTI2MDMwMDU3WhcNMjYwMTI3MDMwMDU3WjAzMTEwLwYDVQQD
Eyg3YTU4OTBiYzM3NDMwZDkxZDAzMGZmMzBlMTMwNTNiNTM0MDE1MDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XgnZL4Bz4DcRE1nTKDFV1pNYwQP
qmzDR42p4rt0UL+wsGVcCCSKkTdlTXQumubf5Np6kogg0S/k8uiASRJ7zTZIAETU
lB++GmN5dIL0SfBgNuPCnd5EdGbRxfujMwKEn/iHynJZIwRa9sxQuZy9IAfJrb0r
6AfX2b0CSe9J65yoI1hOj+kytTGEmwjLmtMviiewXTltdF8H07N2mF5qEahamL7P
6I1UopgWD+c2IbYdFFMQWDWh8hqKZcYn7JQhdTsudXO9uOVID6JU9NogkfXmFx4K
jASjdPysXA4wbH+NgvhwkX0lL3qd/z1CN7kw78ciOPXVkkrQCeLx3OD1bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHpYkLw3Qw2R0DD/MOEwU7U0AVAhMB8GA1UdIwQY
MBaAFCX4CjiOTw4mQUzqvqtN+oQZHYFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmZnS09JNVBEaVpCVE9xLXEwMzZoQmtkZ1VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yMGNmYTQtZTA4Yi00YjcwLTkzNjIt
OTdkYzdiNTM1YjFkLzEvSmZnS09JNVBEaVpCVE9xLXEwMzZoQmtkZ1VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS8yMGNmYTQtZTA4Yi00YjcwLTkzNjItOTdkYzdiNTM1YjFk
LzEvSmZnS09JNVBEaVpCVE9xLXEwMzZoQmtkZ1VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgbRmPBTa
F4nqt2K11afwWJdp3XXgYY1TDZiHmYsb+WfoHomjjnPLkmiB6LhVH7KPLZ1bhBSA
e4vZPVyK9tywTt+AxKNgZcXLvXPPatefDLbp8TtRQoMsqmBJj8OPxylDxlepo2R7
+UvqIycEWfx+mQlFOhpA4vCIriFu+mFWnhqsKlIdCK6aoMomTr6FTWr9S5JGvwWj
nfAtRk/UrZpwLEm7Xw2QruzV8I30EsSeO0Kl5K71hxcOVIB+r+li8rwg5gaQbNCl
CFxPL/gxdUwfg9gMw+0ivYdSdiMqQtDtHd+IZ2VdfTEEFiNyBY9cEh5fASExV5lm
VD+m/ibgZV+qVw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 19:26:21 2026 by rpki-client