Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
File: UMrU5Xdbox7K4ibRBG89waEEgU0.mft (raw, json)
Hash identifier: PXg+M8qykTwFBJrr4Nkea5SyyrqkgAdvfx3L5/fVTSA=
Subject key identifier: 4B:6A:58:D2:63:D7:B9:C2:F7:F3:95:01:59:76:52:A2:F0:65:AD:59
Authority key identifier: 50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
Certificate issuer: /CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Certificate serial: 0199FB7CFD83FF618C6994ECC82E4E489C71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
Manifest number: 0677
Signing time: Sun 19 Oct 2025 08:01:36 +0000
Manifest this update: Sun 19 Oct 2025 08:01:36 +0000
Manifest next update: Mon 20 Oct 2025 08:01:36 +0000
Files and hashes: 1: UMrU5Xdbox7K4ibRBG89waEEgU0.crl (hash: 3Qx7aNQBrZoWRlJ15KTWcHuMwMCknRkD4ZzJKLCsi0g=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:7c:fd:83:ff:61:8c:69:94:ec:c8:2e:4e:48:9c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50cad4e5775ba31ecae226d1046f3dc1a104814d
Validity
Not Before: Oct 19 08:01:36 2025 GMT
Not After : Oct 20 08:01:36 2025 GMT
Subject: CN=4b6a58d263d7b9c2f7f39501597652a2f065ad59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:69:1a:e3:d4:44:3b:af:4c:1a:4a:6c:cd:b1:
60:1f:49:78:45:70:89:ba:fb:3d:5c:64:94:8c:a3:
68:72:2e:0b:66:90:f4:e0:62:64:b7:0e:41:33:ae:
35:d5:56:51:a8:45:51:c4:b4:48:03:01:c6:77:64:
69:83:ed:a1:70:5c:e2:ad:09:29:ea:55:b6:50:9e:
97:2a:bd:6e:ca:07:0a:11:c0:b2:a7:30:0a:32:dd:
bc:52:e0:00:83:4e:5a:0c:b5:60:e8:f4:4f:0b:7b:
1d:94:7c:fb:fe:20:1a:02:94:39:27:f8:85:9f:b0:
ff:e0:d8:96:11:c4:98:18:86:28:99:2b:f6:15:12:
e4:73:ee:40:d0:8b:6c:c8:46:54:3c:21:61:21:ac:
40:3c:19:af:bb:ff:ff:01:a5:3a:88:2b:c8:17:bf:
17:a5:9d:57:b2:43:a1:ed:41:b6:54:a7:75:a9:21:
7c:03:f6:61:69:06:b2:57:c9:73:59:c8:0f:35:95:
3a:86:3f:af:9d:a8:b7:9f:ae:07:ab:cf:6b:96:a8:
6b:0e:ab:38:a2:4c:d2:6d:04:47:19:24:6d:f1:74:
38:cb:ed:92:d0:3b:fa:a9:c1:aa:ef:0e:c3:dd:d7:
c0:75:f4:24:9d:85:35:25:88:ca:ea:14:1f:1e:88:
22:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6A:58:D2:63:D7:B9:C2:F7:F3:95:01:59:76:52:A2:F0:65:AD:59
X509v3 Authority Key Identifier:
keyid:50:CA:D4:E5:77:5B:A3:1E:CA:E2:26:D1:04:6F:3D:C1:A1:04:81:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMrU5Xdbox7K4ibRBG89waEEgU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8a2085-a6c3-4fde-8dba-6639bca7a1b0/1/UMrU5Xdbox7K4ibRBG89waEEgU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:92:ff:1b:b9:30:5f:1d:8c:3e:5e:28:d8:8c:f1:76:a8:05:
0e:ee:79:9c:6a:70:ca:c3:a3:0a:19:bf:3b:8c:87:9b:d0:c0:
14:f5:5d:ed:7e:eb:35:94:42:9e:62:b7:d2:42:3f:b1:fb:c2:
e9:be:51:d4:2f:f8:a9:f4:80:a4:68:1f:86:0c:91:f4:93:d7:
50:d9:d4:27:59:de:7e:3d:84:5c:69:b7:cd:a0:ff:13:df:8e:
1a:37:75:94:45:50:09:2c:e9:0d:ee:a4:f8:57:48:55:88:33:
92:13:ce:a2:fb:0e:e4:24:69:8a:1a:79:86:07:e7:08:38:30:
9f:3a:ec:55:af:95:df:de:e9:26:2e:c1:aa:4c:45:a8:ca:cc:
1b:39:8f:18:c6:63:97:95:09:0a:50:70:27:07:c1:b6:b4:21:
3e:ae:27:6b:29:44:bf:5f:c6:0a:20:87:79:88:65:ec:51:05:
57:c7:1e:d5:19:8a:20:e9:fe:16:86:f8:d5:0f:30:4f:de:2c:
3f:8e:30:8c:26:da:28:83:e9:b8:a7:63:b8:aa:dd:c3:16:7c:
b4:23:e8:9c:d5:1a:b3:75:2d:2f:36:86:00:ee:dc:cc:cd:34:
74:5e:b5:ff:e8:02:13:a1:9f:16:e6:90:4a:d1:a7:1a:37:bd:
9c:bc:84:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:46:02 2025 by rpki-client