Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/49fe06-36f1-411c-85c3-79afd1188d37/1/36U2RiiDKd9mVeJT5WsihIG-lZY.mft
File: 36U2RiiDKd9mVeJT5WsihIG-lZY.mft (raw, json)
Hash identifier: 5HMJdFJMexxxG2nP8bz3pbcc8rHRYoBDbQw6v58wljo=
Subject key identifier: 77:81:13:0A:58:57:06:94:EB:2D:B0:76:E5:88:53:5B:53:18:A2:BC
Authority key identifier: DF:A5:36:46:28:83:29:DF:66:55:E2:53:E5:6B:22:84:81:BE:95:96
Certificate issuer: /CN=dfa53646288329df6655e253e56b228481be9596
Certificate serial: 0199D16E185F75124B93FDABED95C423AB86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36U2RiiDKd9mVeJT5WsihIG-lZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/49fe06-36f1-411c-85c3-79afd1188d37/1/36U2RiiDKd9mVeJT5WsihIG-lZY.mft
Manifest number: 036E
Signing time: Sat 11 Oct 2025 04:01:17 +0000
Manifest this update: Sat 11 Oct 2025 04:01:17 +0000
Manifest next update: Sun 12 Oct 2025 04:01:17 +0000
Files and hashes: 1: 36U2RiiDKd9mVeJT5WsihIG-lZY.crl (hash: Rt+ZLEwRXO4k0OxwMphFqspIxw15l1RiqucGXPfcTWM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:d1:6e:18:5f:75:12:4b:93:fd:ab:ed:95:c4:23:ab:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa53646288329df6655e253e56b228481be9596
Validity
Not Before: Oct 11 04:01:17 2025 GMT
Not After : Oct 12 04:01:17 2025 GMT
Subject: CN=7781130a58570694eb2db076e588535b5318a2bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1b:d8:29:a4:c1:2b:43:aa:4a:14:f5:14:21:
71:59:3d:08:0a:b5:38:63:c7:82:46:82:75:3d:b4:
bd:cc:0e:15:4c:c0:7d:c2:36:af:d1:b5:15:b9:09:
0d:68:4f:e3:9b:91:bb:63:28:cb:95:12:0d:91:07:
f4:8a:f1:d8:41:9f:aa:22:a2:af:c2:e0:7f:14:84:
27:20:04:d3:a5:bd:c7:1d:64:a0:b8:0a:03:90:04:
b3:b6:59:36:bb:10:7e:3f:31:d4:3a:4d:74:6a:03:
eb:cf:f1:a1:b2:d9:3b:f6:34:04:2c:25:ab:21:36:
b0:5e:2a:83:92:9a:8b:d1:37:68:d0:5e:d1:e6:60:
21:dd:0b:95:51:ab:2f:8b:a5:1f:1a:d2:0c:62:d2:
1c:d7:00:0d:d6:2e:01:78:ca:f1:d5:0f:39:52:e7:
d2:a3:4e:18:6e:81:a8:aa:00:82:d8:b3:a5:ae:86:
68:bd:84:e6:88:e6:d8:dc:9d:8b:8c:3c:f6:94:74:
81:21:32:48:c6:81:ad:67:ae:ac:ee:85:58:71:4c:
57:fb:df:db:b9:6f:2a:85:af:b6:e4:3f:0a:78:7e:
4b:fc:6f:8d:cb:18:e5:3c:37:64:f0:49:72:9c:97:
a6:0d:6c:22:4f:5c:43:e9:31:ff:52:59:87:19:ad:
97:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:81:13:0A:58:57:06:94:EB:2D:B0:76:E5:88:53:5B:53:18:A2:BC
X509v3 Authority Key Identifier:
keyid:DF:A5:36:46:28:83:29:DF:66:55:E2:53:E5:6B:22:84:81:BE:95:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36U2RiiDKd9mVeJT5WsihIG-lZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/49fe06-36f1-411c-85c3-79afd1188d37/1/36U2RiiDKd9mVeJT5WsihIG-lZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/49fe06-36f1-411c-85c3-79afd1188d37/1/36U2RiiDKd9mVeJT5WsihIG-lZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:a4:95:5a:26:c0:e1:f1:10:6a:3d:1f:e1:66:eb:60:ad:54:
c3:96:e7:67:8d:4e:87:e7:51:dc:1c:2e:a8:93:bc:df:05:5a:
7c:8d:83:fa:29:c8:e5:d0:f5:ce:07:2b:9d:5e:40:22:ec:ec:
fb:48:55:4b:38:1a:ff:96:34:81:83:62:2e:81:1c:2b:7c:82:
49:89:2f:2d:55:50:bc:cb:a0:04:cb:01:d8:0c:37:d7:4f:bb:
67:2d:9a:1d:33:7a:3a:84:32:80:34:eb:44:6f:4f:24:35:6d:
11:79:e1:2d:93:ec:39:5c:87:3f:e1:4a:40:fc:4c:35:8d:3c:
f6:7e:86:0c:4d:72:21:d4:8f:ad:e1:18:91:28:b9:4d:41:de:
11:dd:c5:1b:f0:e6:24:0e:dc:e0:45:b3:14:63:f9:a0:b5:7d:
98:50:56:90:4e:94:56:10:ff:fb:e8:12:c3:03:15:62:d5:e9:
71:86:f5:ca:f6:93:ce:f7:2c:b8:5e:e5:27:59:a9:1c:ea:a6:
57:87:46:c6:0c:d4:c7:9f:5c:41:9c:5f:da:ff:53:b7:1f:20:
58:02:16:8e:c1:be:d6:b5:91:e7:72:0b:a6:8c:9f:84:36:a2:
e4:5c:04:f4:5e:fa:ec:e4:95:b9:b7:5f:07:96:22:be:80:49:
21:4d:4b:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZnRbhhfdRJLk/2r7ZXEI6uGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmYTUzNjQ2Mjg4MzI5ZGY2NjU1ZTI1M2U1NmIyMjg0ODFi
ZTk1OTYwHhcNMjUxMDExMDQwMTE3WhcNMjUxMDEyMDQwMTE3WjAzMTEwLwYDVQQD
Eyg3NzgxMTMwYTU4NTcwNjk0ZWIyZGIwNzZlNTg4NTM1YjUzMThhMmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthvYKaTBK0OqShT1FCFxWT0ICrU4
Y8eCRoJ1PbS9zA4VTMB9wjav0bUVuQkNaE/jm5G7YyjLlRINkQf0ivHYQZ+qIqKv
wuB/FIQnIATTpb3HHWSguAoDkASztlk2uxB+PzHUOk10agPrz/Ghstk79jQELCWr
ITawXiqDkpqL0Tdo0F7R5mAh3QuVUasvi6UfGtIMYtIc1wAN1i4BeMrx1Q85UufS
o04YboGoqgCC2LOlroZovYTmiObY3J2LjDz2lHSBITJIxoGtZ66s7oVYcUxX+9/b
uW8qha+25D8KeH5L/G+NyxjlPDdk8ElynJemDWwiT1xD6TH/UlmHGa2XeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHeBEwpYVwaU6y2wduWIU1tTGKK8MB8GA1UdIwQY
MBaAFN+lNkYogynfZlXiU+VrIoSBvpWWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMzZVMlJpaURLZDltVmVKVDVXc2loSUctbFpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi80OWZlMDYtMzZmMS00MTFjLTg1YzMt
NzlhZmQxMTg4ZDM3LzEvMzZVMlJpaURLZDltVmVKVDVXc2loSUctbFpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi80OWZlMDYtMzZmMS00MTFjLTg1YzMtNzlhZmQxMTg4ZDM3
LzEvMzZVMlJpaURLZDltVmVKVDVXc2loSUctbFpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXqSVWibA
4fEQaj0f4WbrYK1Uw5bnZ41Oh+dR3BwuqJO83wVafI2D+inI5dD1zgcrnV5AIuzs
+0hVSzga/5Y0gYNiLoEcK3yCSYkvLVVQvMugBMsB2Aw310+7Zy2aHTN6OoQygDTr
RG9PJDVtEXnhLZPsOVyHP+FKQPxMNY089n6GDE1yIdSPreEYkSi5TUHeEd3FG/Dm
JA7c4EWzFGP5oLV9mFBWkE6UVhD/++gSwwMVYtXpcYb1yvaTzvcsuF7lJ1mpHOqm
V4dGxgzUx59cQZxf2v9Ttx8gWAIWjsG+1rWR53ILpoyfhDai5FwE9F767OSVubdf
B5YivoBJIU1Lxw==
-----END CERTIFICATE-----
Generated at Tue Oct 28 02:04:23 2025 by rpki-client