Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
File: 98_k1DTTh2RAV9JB6sb2nT7oHBI.mft (raw, json)
Hash identifier: aX3JwFbOmQCA7hShNMF1zyls4hN5/6G4jyjuYXyh5Co=
Subject key identifier: 22:DF:BE:C3:CF:ED:8D:23:19:8F:E5:DC:11:39:4C:6F:E4:C3:21:2E
Authority key identifier: F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12
Certificate issuer: /CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
Certificate serial: 019EFD27D99CC6FF84161EF0F28209AA0124
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
Manifest number: 0B9F
Signing time: Thu 25 Jun 2026 05:01:47 +0000
Manifest this update: Thu 25 Jun 2026 05:01:47 +0000
Manifest next update: Fri 26 Jun 2026 05:01:47 +0000
Files and hashes: 1: 98_k1DTTh2RAV9JB6sb2nT7oHBI.crl (hash: ZcxqjXWVobWtY3rUSMcXl0AUIYRfDejl02julyYC384=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fd:27:d9:9c:c6:ff:84:16:1e:f0:f2:82:09:aa:01:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
Validity
Not Before: Jun 25 05:01:47 2026 GMT
Not After : Jun 26 05:01:47 2026 GMT
Subject: CN=22dfbec3cfed8d23198fe5dc11394c6fe4c3212e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f7:92:ae:58:32:65:d6:52:ff:10:83:dd:8d:
d5:29:de:4f:0e:ef:3b:b7:79:33:ed:ee:34:08:72:
61:be:8e:08:c2:94:c3:80:7c:14:43:7f:c5:a1:a8:
cf:d7:7d:eb:23:d4:b5:58:e9:86:d4:b7:84:a5:d2:
37:41:9d:2d:ad:11:b4:c2:28:f9:72:b2:63:ea:e0:
c8:3a:c7:40:ba:ac:9f:dc:19:c7:0b:5f:36:04:2b:
89:6c:c5:e6:9c:df:f2:4d:a8:9d:2f:75:0c:50:4d:
38:6f:56:05:68:ce:12:ec:6d:85:1d:78:89:e9:d4:
68:9d:59:28:5b:ac:6f:de:46:d3:e6:4c:32:c5:e9:
d4:d3:2a:45:7c:b5:91:ea:8f:11:23:a4:ba:73:c4:
ad:d3:5c:70:f6:e4:69:09:59:cc:13:c7:7a:89:d5:
bd:c3:73:15:ca:68:51:fd:3b:24:02:cc:e0:55:71:
52:12:a5:36:d8:fd:86:a7:99:87:8b:f9:03:ce:a7:
d8:8b:fe:4b:2e:c6:53:b8:82:8a:16:ee:7a:46:a4:
be:c3:b6:a1:5a:95:4e:32:09:30:f2:a3:f3:e7:4f:
28:06:9e:80:40:46:2f:85:5f:02:c3:52:df:b3:20:
78:ee:7f:81:cc:69:08:75:fc:83:ac:f5:27:55:81:
c5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DF:BE:C3:CF:ED:8D:23:19:8F:E5:DC:11:39:4C:6F:E4:C3:21:2E
X509v3 Authority Key Identifier:
keyid:F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:60:f9:ec:b0:8e:0d:68:77:c9:c8:b5:f4:13:13:12:a5:04:
e7:bc:78:b0:2f:fd:c2:ff:59:16:62:43:99:63:b7:80:78:6d:
f9:0f:77:7d:6e:6c:32:31:93:6b:3b:64:34:fc:2d:98:95:93:
ce:f7:5b:7b:43:34:72:44:f5:09:75:22:87:9f:5a:0f:a9:15:
4b:d6:c7:dd:d4:89:33:f7:26:cb:23:30:26:de:f9:58:b0:7c:
86:8c:5c:cd:ff:cc:66:4c:39:28:1b:fa:cc:7b:d2:5b:95:3f:
98:33:d8:a7:37:ef:25:04:e2:63:1d:54:1f:d2:b4:d1:f4:63:
8c:24:7c:dd:4e:3a:9b:dc:4d:af:d9:8d:f6:d6:c9:ff:e1:59:
ab:cc:24:03:c8:03:f1:cb:88:0e:81:c1:53:b0:43:68:e8:f3:
4b:b4:73:fa:0f:3c:a8:c8:8a:84:43:92:bf:48:c4:4c:27:cf:
95:26:57:ac:42:ce:7b:15:6d:71:f1:fd:5c:92:e1:b8:93:68:
d4:0a:5d:09:68:23:9d:cf:63:4e:02:97:35:61:38:77:22:5d:
d5:a4:06:99:4b:a1:8d:7f:f2:b2:18:65:7b:10:a2:8b:a1:f6:
6c:86:6a:db:7e:82:09:a8:ea:07:5a:2d:83:2d:a2:af:a0:81:
75:85:02:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:49 2026 by rpki-client