Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
File: vJjaCfCkWkCPW38brm2R4zM9VzI.mft (raw, json)
Hash identifier: DAiK9fbrKl8tZQYwXIz6Tqr3l3UeX3w34857DMBQAVU=
Subject key identifier: 36:D6:43:39:F2:B0:24:E2:D8:92:2A:B0:A3:5C:69:0B:A4:28:F5:11
Authority key identifier: BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
Certificate issuer: /CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Certificate serial: 019C0C6B9E8A5848C800C3CF275B59BD0A9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
Manifest number: 17F3
Signing time: Fri 30 Jan 2026 01:01:45 +0000
Manifest this update: Fri 30 Jan 2026 01:01:45 +0000
Manifest next update: Sat 31 Jan 2026 01:01:45 +0000
Files and hashes: 1: 78NuSpQqrDEZ-qY_A2_BkTIpsDc.roa (hash: 8/Lz/iZIiZw+jOB00gHnI49aRc61xdiGR4bGgOxYbjk=)
2: vJjaCfCkWkCPW38brm2R4zM9VzI.crl (hash: 8tdhrrbwd+jPhYxzwE+fn9YCsr1MLTIC5vWtTpboFys=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:0c:6b:9e:8a:58:48:c8:00:c3:cf:27:5b:59:bd:0a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Validity
Not Before: Jan 30 01:01:45 2026 GMT
Not After : Jan 31 01:01:45 2026 GMT
Subject: CN=36d64339f2b024e2d8922ab0a35c690ba428f511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8b:d9:6e:2a:cf:d4:ae:e7:bc:55:46:81:fa:
bd:d9:1e:4c:7a:fb:52:64:3c:0d:22:ba:e1:42:26:
74:e5:d5:8f:1f:1b:6e:a1:66:7a:ed:f9:77:69:11:
be:d4:18:e0:8e:3c:3c:d4:e4:83:4c:fc:88:4e:70:
fc:ad:d3:b6:cd:53:01:4f:1d:98:ff:ff:11:dc:cc:
09:bc:b9:d7:48:44:ce:f4:ec:a5:b0:32:25:2a:18:
b4:74:09:02:ba:ec:27:1b:f2:04:38:d7:cc:64:e6:
8f:dd:80:fd:12:a7:d6:47:ef:cb:6a:a5:5d:83:c3:
df:52:fa:b1:63:de:ae:8d:0f:9a:70:91:92:f3:35:
9e:83:95:23:90:c6:34:74:44:f3:56:ad:f6:db:38:
fc:03:35:42:68:f3:eb:cc:f0:33:11:b4:be:c1:68:
98:6c:d7:ba:8b:5d:d3:d3:6d:21:ed:81:71:11:2d:
78:cb:f9:41:89:30:e7:31:28:04:4a:a3:91:d2:0d:
79:c0:7a:6b:9b:90:a6:80:ce:47:c7:54:4a:e2:29:
7f:2e:ad:5a:45:e5:db:1f:26:a5:bf:4d:d6:51:46:
70:a0:c2:d3:66:f2:02:9c:c4:35:08:6e:0d:02:e9:
72:4b:9e:f9:0a:5b:1a:66:41:f9:c0:cf:56:88:9a:
be:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D6:43:39:F2:B0:24:E2:D8:92:2A:B0:A3:5C:69:0B:A4:28:F5:11
X509v3 Authority Key Identifier:
keyid:BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a3:a2:50:79:d7:06:25:27:b2:ec:14:08:5e:a5:94:f0:19:
73:15:bd:98:14:97:28:32:0d:4e:b6:34:e5:7e:62:69:d1:01:
8e:ae:cd:a9:89:df:1e:73:31:7b:88:51:8b:3c:b9:00:5e:b5:
52:1d:ef:63:61:1a:a7:9e:1b:0c:b4:2a:d0:69:a8:12:31:97:
f8:7e:81:3f:f5:58:fc:25:11:22:d0:b0:a2:5d:e0:8b:ab:5c:
a0:1e:f1:16:b4:45:95:1f:52:50:63:75:b6:eb:1a:21:70:9a:
01:e6:7d:71:29:44:ad:cf:9e:25:04:2b:f6:3a:d7:d1:62:50:
21:06:66:a8:9b:0b:f9:d1:0b:a3:b8:86:8d:6a:19:49:19:55:
73:2e:40:0e:ed:3e:95:71:24:84:5e:02:f0:96:75:95:88:31:
41:3b:e3:f5:0e:90:96:db:01:d6:8c:27:f9:34:c7:d3:5e:fe:
cc:14:b8:33:f4:15:34:17:9b:23:39:6a:35:db:4a:cd:35:d5:
fc:9f:11:7c:d7:8d:ff:db:c7:fe:82:52:38:1b:a8:d0:29:21:
07:fc:c9:85:3c:c0:22:02:96:ca:0c:86:c2:c9:da:3a:2f:57:
eb:fc:89:8d:a5:b1:3e:ed:62:09:14:e1:e8:f0:34:69:02:92:
62:06:df:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 08:10:13 2026 by rpki-client