Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
File: Of-PwW6S-8wHnYDWvj197fHQZo8.mft (raw, json)
Hash identifier: +s7tvLaG/kOpA4K2gJAzJMe1cAWzvmMIcSllfshiawA=
Subject key identifier: 3A:95:6E:66:D3:5C:A4:57:4D:EE:76:34:0A:3E:B4:BA:D0:58:4A:1E
Authority key identifier: 39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F
Certificate issuer: /CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
Certificate serial: 019CB1360B84BDC907A4775445D32944B435
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
Manifest number: 0CC1
Signing time: Tue 03 Mar 2026 01:00:34 +0000
Manifest this update: Tue 03 Mar 2026 01:00:34 +0000
Manifest next update: Wed 04 Mar 2026 01:00:34 +0000
Files and hashes: 1: Of-PwW6S-8wHnYDWvj197fHQZo8.crl (hash: 5BE9znWsxBuT4uuXMnwUWlJmfyjgdIyXSsrMVl67ZFA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b1:36:0b:84:bd:c9:07:a4:77:54:45:d3:29:44:b4:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
Validity
Not Before: Mar 3 01:00:34 2026 GMT
Not After : Mar 4 01:00:34 2026 GMT
Subject: CN=3a956e66d35ca4574dee76340a3eb4bad0584a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:74:4d:4d:39:1d:42:88:20:c5:11:5c:ee:68:
d2:78:a6:5f:5b:7a:5a:8d:4f:9d:76:91:aa:44:35:
47:d2:0e:c8:1f:45:b0:19:31:95:63:c0:e6:28:f0:
95:a7:57:ea:fe:99:ce:b3:df:b8:6b:a0:12:e6:8b:
70:88:5d:41:69:76:8a:16:8d:7f:49:eb:f0:14:8b:
fa:8e:5c:4c:03:6e:3c:90:69:e8:27:b6:7a:da:5d:
68:bf:9e:02:ac:80:e4:a1:53:65:4c:b1:0c:8c:d3:
d9:ff:6c:e7:9b:e4:e9:e1:fc:7a:d4:9a:1b:e0:10:
ef:be:89:10:76:2c:3f:0c:ab:6c:4c:34:87:14:de:
17:a2:56:c3:1b:11:0d:0e:46:71:fb:b1:b3:22:27:
55:1d:f7:9c:a5:59:9e:b9:8e:8f:aa:aa:7b:24:48:
64:1e:df:56:5d:dc:f4:8a:0b:46:53:10:e7:fc:9a:
93:4f:50:ff:76:e9:52:7b:94:9a:de:d1:7e:9d:9b:
43:c1:bd:70:60:b7:29:14:9c:65:09:06:ba:f7:cc:
06:4f:2d:3c:95:25:d1:ac:0a:ea:a4:50:70:ef:4f:
42:8c:95:24:8b:4e:96:38:f7:c5:d7:c9:db:a5:18:
15:f9:17:d6:db:fe:92:7a:58:1f:65:d2:5c:40:73:
27:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:95:6E:66:D3:5C:A4:57:4D:EE:76:34:0A:3E:B4:BA:D0:58:4A:1E
X509v3 Authority Key Identifier:
keyid:39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:6a:92:e7:59:1d:00:75:e0:b3:41:a8:30:97:7a:27:64:18:
5d:82:e5:ee:6e:31:40:3d:2c:d4:37:57:2e:fb:3b:26:97:54:
36:a8:9d:bc:4d:32:e3:b7:08:5c:54:50:8e:c4:7d:8c:4b:19:
7a:fb:ee:e2:fa:d1:d5:bb:04:91:bd:f4:3b:d7:fe:a1:86:e9:
1b:d8:8e:4e:eb:66:37:cb:09:dd:0e:4c:cd:ad:a9:b6:9a:77:
e2:77:e9:99:c0:ab:34:b5:4c:1b:69:9e:41:9c:56:d7:cb:ff:
cd:54:fe:08:aa:b3:ed:c8:92:ff:c3:b1:be:9d:bc:32:7d:8f:
83:ea:d0:c5:5b:79:ff:9a:1b:b7:dc:10:f1:0d:b2:a2:f9:3c:
ba:bb:f1:6b:f2:d6:30:90:b8:9b:d5:88:17:0e:8d:24:3a:03:
58:56:6e:87:41:80:6d:21:d5:bf:60:07:f2:e5:e9:92:fc:fc:
4c:6d:de:4f:d7:14:59:20:32:9d:0f:c1:73:c9:ea:a0:b5:93:
16:f7:1c:e0:e0:c4:95:67:d3:7d:e8:55:e7:d9:9e:d1:a1:45:
16:4f:ee:2f:94:c5:75:03:94:5a:02:d7:91:77:d5:27:27:ef:
31:05:99:f5:30:54:83:61:38:6c:ef:f2:e8:89:3d:3d:3e:d9:
3f:26:25:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:42:33 2026 by rpki-client