Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
File: U5UGCcqN1_bG-jzsrHeUIexsAQA.mft (raw, json)
Hash identifier: qorqZe5FVjoN1imt/KGcRJzWtmVmkHdgWK77Ny+mN9o=
Subject key identifier: 36:70:39:59:8C:06:1D:71:55:58:C1:D8:BC:1C:7E:1B:BF:B4:0F:E0
Authority key identifier: 53:95:06:09:CA:8D:D7:F6:C6:FA:3C:EC:AC:77:94:21:EC:6C:01:00
Certificate issuer: /CN=53950609ca8dd7f6c6fa3cecac779421ec6c0100
Certificate serial: 019CDB44DA0F6E8C132B7615E69F104E3D9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U5UGCcqN1_bG-jzsrHeUIexsAQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
Manifest number: 0720
Signing time: Wed 11 Mar 2026 05:00:48 +0000
Manifest this update: Wed 11 Mar 2026 05:00:48 +0000
Manifest next update: Thu 12 Mar 2026 05:00:48 +0000
Files and hashes: 1: U5UGCcqN1_bG-jzsrHeUIexsAQA.crl (hash: OI8rw/JQzNkgNFRUkUx3A6eGlBP35+66MARerU7C75I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:db:44:da:0f:6e:8c:13:2b:76:15:e6:9f:10:4e:3d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53950609ca8dd7f6c6fa3cecac779421ec6c0100
Validity
Not Before: Mar 11 05:00:48 2026 GMT
Not After : Mar 12 05:00:48 2026 GMT
Subject: CN=367039598c061d715558c1d8bc1c7e1bbfb40fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:78:28:4f:71:6f:99:7f:48:e5:d7:a2:00:9b:
2e:6a:8c:0f:d1:8e:3b:4b:26:83:a3:b7:23:41:9e:
56:28:49:5e:11:9c:01:72:97:02:6a:85:7b:83:19:
25:58:24:ee:1e:16:f8:8e:09:cc:95:84:e7:c1:f6:
cb:87:e1:03:ca:3c:2a:85:e8:f2:f3:57:f1:b1:a6:
ba:3b:d7:d8:6c:41:8b:e6:5d:97:9b:8c:53:6e:a8:
93:0d:4f:ef:e3:0e:56:ba:ea:5b:be:32:42:80:06:
af:bf:8c:c3:aa:cb:b9:0f:07:24:90:06:a5:a9:b7:
7c:b5:19:75:94:5c:3d:be:ab:9b:71:3d:3f:3a:24:
49:6b:76:37:38:e4:79:09:be:51:32:0b:a1:f7:6f:
3e:26:6e:fe:c0:41:ce:56:b9:2a:f0:40:09:ee:24:
42:e6:9d:38:a6:57:36:b7:0d:6c:ed:33:d9:f0:8a:
c9:bc:2c:7b:30:52:00:de:05:f3:d4:2d:0e:d1:d7:
fa:3a:89:e2:8b:2b:64:4b:7f:e8:2d:77:96:89:5f:
0d:52:89:a8:95:b5:82:a3:ac:81:c3:35:b0:76:e7:
30:5c:06:5a:bf:e1:60:af:b9:a8:65:9d:aa:f3:88:
37:64:22:fe:1e:b8:9f:32:82:dd:4f:65:69:35:30:
d0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:70:39:59:8C:06:1D:71:55:58:C1:D8:BC:1C:7E:1B:BF:B4:0F:E0
X509v3 Authority Key Identifier:
keyid:53:95:06:09:CA:8D:D7:F6:C6:FA:3C:EC:AC:77:94:21:EC:6C:01:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U5UGCcqN1_bG-jzsrHeUIexsAQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/876a65-bf54-4652-8970-801cf4fec74e/1/U5UGCcqN1_bG-jzsrHeUIexsAQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:02:f1:0c:95:78:e4:57:70:6a:ad:e6:2a:b4:76:85:85:b3:
62:06:15:ac:9e:4f:3b:b7:4c:e6:da:3c:ea:4b:da:1f:2a:f9:
62:9b:9d:6e:1a:9a:2d:a3:5d:85:53:52:cd:5a:2b:74:0f:13:
7c:12:ba:6a:3b:af:35:e6:e6:24:32:0a:69:2b:72:aa:a3:57:
57:a8:e6:30:53:7b:19:73:13:44:93:fd:b2:72:25:a2:c2:10:
ea:ba:fa:98:5b:11:70:32:e3:2b:6c:d7:e0:0e:5a:ab:b2:39:
7f:b1:01:2b:34:d1:6b:43:b6:89:e0:da:c2:fa:9e:4d:cb:4a:
15:ed:66:fc:16:95:da:a5:cc:9c:89:e3:07:b1:0e:fa:b5:50:
9f:93:51:4d:eb:37:19:a5:30:5c:c7:7b:b7:cf:8a:7a:e8:d1:
0c:14:1d:a8:fb:d3:27:17:5d:66:4d:ce:34:f4:ff:61:1c:36:
11:68:fa:ec:e8:51:4b:23:65:1d:38:c1:2b:78:82:a6:cf:7b:
bf:a0:5b:de:06:33:58:e8:88:96:73:08:cc:68:cb:6b:8d:07:
b1:09:3b:83:f4:74:f3:63:6f:ff:9c:27:3a:0c:33:34:0f:f2:
81:1a:33:15:65:f9:91:63:78:0a:3f:02:b3:7f:09:b6:a8:35:
2a:9f:4c:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzbRNoPbowTK3YV5p8QTj2dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzOTUwNjA5Y2E4ZGQ3ZjZjNmZhM2NlY2FjNzc5NDIxZWM2
YzAxMDAwHhcNMjYwMzExMDUwMDQ4WhcNMjYwMzEyMDUwMDQ4WjAzMTEwLwYDVQQD
EygzNjcwMzk1OThjMDYxZDcxNTU1OGMxZDhiYzFjN2UxYmJmYjQwZmUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXgoT3FvmX9I5deiAJsuaowP0Y47
SyaDo7cjQZ5WKEleEZwBcpcCaoV7gxklWCTuHhb4jgnMlYTnwfbLh+EDyjwqhejy
81fxsaa6O9fYbEGL5l2Xm4xTbqiTDU/v4w5WuupbvjJCgAavv4zDqsu5DwckkAal
qbd8tRl1lFw9vqubcT0/OiRJa3Y3OOR5Cb5RMguh928+Jm7+wEHOVrkq8EAJ7iRC
5p04plc2tw1s7TPZ8IrJvCx7MFIA3gXz1C0O0df6OoniiytkS3/oLXeWiV8NUomo
lbWCo6yBwzWwducwXAZav+Fgr7moZZ2q84g3ZCL+HrifMoLdT2VpNTDQkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDZwOVmMBh1xVVjB2Lwcfhu/tA/gMB8GA1UdIwQY
MBaAFFOVBgnKjdf2xvo87Kx3lCHsbAEAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVTVVR0NjcU4xX2JHLWp6c3JIZVVJZXhzQVFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi84NzZhNjUtYmY1NC00NjUyLTg5NzAt
ODAxY2Y0ZmVjNzRlLzEvVTVVR0NjcU4xX2JHLWp6c3JIZVVJZXhzQVFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi84NzZhNjUtYmY1NC00NjUyLTg5NzAtODAxY2Y0ZmVjNzRl
LzEvVTVVR0NjcU4xX2JHLWp6c3JIZVVJZXhzQVFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAegLxDJV4
5Fdwaq3mKrR2hYWzYgYVrJ5PO7dM5to86kvaHyr5YpudbhqaLaNdhVNSzVordA8T
fBK6ajuvNebmJDIKaStyqqNXV6jmMFN7GXMTRJP9snIlosIQ6rr6mFsRcDLjK2zX
4A5aq7I5f7EBKzTRa0O2ieDawvqeTctKFe1m/BaV2qXMnInjB7EO+rVQn5NRTes3
GaUwXMd7t8+KeujRDBQdqPvTJxddZk3ONPT/YRw2EWj67OhRSyNlHTjBK3iCps97
v6Bb3gYzWOiIlnMIzGjLa40HsQk7g/R082Nv/5wnOgwzNA/ygRozFWX5kWN4Cj8C
s38Jtqg1Kp9MyA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:25:33 2026 by rpki-client