Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
File: ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft (raw, json)
Hash identifier: fiCzz6QJaP3rAZKGRJFsHS0nES33uPrOa08eadu/F5Q=
Subject key identifier: 75:97:53:CF:5C:72:81:B5:FD:C7:01:11:65:A0:50:9E:25:27:86:45
Authority key identifier: 82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
Certificate issuer: /CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Certificate serial: 019B066BD4B4AFB583E1803C1C24C2478CB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
Manifest number: 075F
Signing time: Wed 10 Dec 2025 04:01:28 +0000
Manifest this update: Wed 10 Dec 2025 04:01:28 +0000
Manifest next update: Thu 11 Dec 2025 04:01:28 +0000
Files and hashes: 1: fdOHadbduUc9htmWTS-jPq_zv2U.roa (hash: gZYnTf+6Tdj5UA3epTVfXJljvvit6fFaXTM2YVnS+ZA=)
2: ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl (hash: mwOInZ/vP/B7NFs9WlC6EhwDm1K7gUN7cYaGRoOxA1o=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:06:6b:d4:b4:af:b5:83:e1:80:3c:1c:24:c2:47:8c:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Validity
Not Before: Dec 10 04:01:28 2025 GMT
Not After : Dec 11 04:01:28 2025 GMT
Subject: CN=759753cf5c7281b5fdc7011165a0509e25278645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:5e:72:c9:9e:36:59:c5:3f:7a:a9:16:a8:f4:
d1:1b:4e:e1:91:16:16:b8:a7:c0:24:a7:d2:c7:4d:
25:20:dc:47:c7:07:6f:5c:58:01:79:ae:6e:55:e4:
1f:c1:e9:63:88:31:4e:e7:aa:dc:51:3a:33:d9:f2:
08:72:27:58:1d:c7:df:83:46:b9:e6:7b:a9:83:57:
b8:bd:ab:cb:8f:fc:6a:c4:a8:f4:08:40:d3:45:07:
d7:b2:5c:24:d2:6c:15:f4:4f:71:2b:37:f1:e3:69:
c9:87:70:9c:da:0a:e4:79:d9:44:e2:89:52:16:05:
3e:ea:5b:90:dc:80:17:26:c1:4a:40:06:52:b0:87:
8c:1a:f5:74:8e:be:17:e7:b4:1e:e2:2b:6b:c4:ef:
68:9c:16:93:f4:59:91:6c:ae:92:a4:e8:b6:98:5c:
2b:ea:51:4a:98:32:a6:6e:eb:34:94:8c:8c:bb:d4:
f3:ba:94:b0:db:f3:9d:27:b9:57:04:cb:32:cb:33:
6f:ce:78:3f:e9:b3:87:39:19:5e:e7:3b:1e:dc:83:
9e:80:c8:6e:df:5a:1a:d5:52:5b:c9:8d:61:9b:99:
49:98:54:7d:91:f5:33:e3:db:e5:27:91:96:b3:69:
6a:1a:6e:2a:3e:17:9f:c9:e6:7e:9e:12:89:25:06:
3c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:97:53:CF:5C:72:81:B5:FD:C7:01:11:65:A0:50:9E:25:27:86:45
X509v3 Authority Key Identifier:
keyid:82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:83:3e:1f:ba:03:f7:92:c8:ab:d6:1e:86:99:31:bc:ae:de:
4a:4f:1e:e1:1e:65:c6:13:38:af:8b:83:d6:29:6a:40:16:18:
be:20:70:9e:b8:ed:49:73:57:00:4a:7c:e1:33:fd:44:5c:2a:
48:09:b1:26:cb:a3:95:a2:28:17:27:49:ca:16:57:35:9c:97:
32:eb:93:9c:3f:b8:80:c2:de:73:96:cf:ab:fc:7d:6a:26:f0:
6d:41:26:73:2c:f3:7e:79:89:79:c1:3e:5e:4f:6c:47:ac:2e:
65:da:c1:15:bb:ac:8e:e7:a2:e5:7c:67:91:8b:b9:c0:79:27:
2d:b7:90:f4:30:c5:61:32:a4:9b:5d:44:63:63:9c:bd:e7:f5:
23:17:e5:6f:07:fd:47:24:58:42:93:b1:be:6a:92:1f:70:27:
cd:1f:52:19:bb:16:60:ad:b1:57:d4:eb:db:5c:f4:c3:1f:b0:
88:07:25:49:e5:99:74:77:fa:8e:e2:6d:d3:8f:9b:a7:61:19:
c4:81:b2:00:fe:8a:0a:b5:c7:a6:fb:6e:55:fa:5a:4e:e1:09:
a5:fb:63:59:db:b7:1c:ab:26:18:6c:b6:2d:d8:e2:5a:c8:04:
69:d1:2c:f8:46:03:b0:ac:32:46:31:83:b0:5d:eb:6f:50:d9:
9c:20:8c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 06:19:25 2026 by rpki-client