Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
File: MQitUnxyDreXB7P7excsiLczsTM.mft (raw, json)
Hash identifier: YXKdm5Oq/ZNhgSQyGhLNX6dy54FfyrolRN2EvneLKP0=
Subject key identifier: C5:DD:4B:28:DC:77:EF:65:09:BF:27:10:C7:DC:0B:1E:18:4C:FB:A7
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 0199183FE8C3C49747785778336856ECB10E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
Manifest number: 0EF1
Signing time: Fri 05 Sep 2025 05:01:05 +0000
Manifest this update: Fri 05 Sep 2025 05:01:05 +0000
Manifest next update: Sat 06 Sep 2025 05:01:05 +0000
Files and hashes: 1: MQitUnxyDreXB7P7excsiLczsTM.crl (hash: LWtioKfEJUP1uANj2vx1xU8Zno6fwa8DedqTmUfZjC4=)
2: OGw2yB1lmfdeIQ__eoRb9wYC8RQ.roa (hash: JOUk6p+/wA2qQIBr9IDvKPlXjqY5EY6hF28kxv/1jpc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:18:3f:e8:c3:c4:97:47:78:57:78:33:68:56:ec:b1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: Sep 5 05:01:05 2025 GMT
Not After : Sep 6 05:01:05 2025 GMT
Subject: CN=c5dd4b28dc77ef6509bf2710c7dc0b1e184cfba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:35:f2:32:1c:b4:8d:5c:73:bc:a3:66:79:
e5:23:90:d3:19:13:e9:d6:6a:fc:b4:a6:f7:84:06:
8d:3e:e9:45:45:12:a0:91:74:0e:88:d3:10:e0:dc:
9a:fe:b2:32:07:a0:69:9f:2e:b4:3f:04:3b:3d:65:
3e:e7:6d:aa:69:be:ef:76:88:cb:1c:2d:4a:a8:3b:
b1:85:27:ef:f7:12:69:46:d9:82:28:67:d3:8c:04:
0f:3f:e9:ba:17:80:ba:f0:ed:d6:22:00:2d:d1:d6:
8e:0b:2f:55:08:5f:45:08:49:b6:21:94:3d:cc:e1:
3e:fd:37:26:fa:42:d3:7b:16:06:b6:e9:d6:6a:92:
2a:b8:d2:0d:19:6e:3a:aa:51:69:0b:3f:c4:e9:15:
c0:77:9b:00:f7:d7:35:cf:7f:eb:e6:1a:9f:ff:07:
4d:0b:76:0a:5d:a7:33:1c:6b:78:99:74:60:4e:68:
d0:67:be:fe:2f:bf:01:3d:de:6d:7b:8d:02:9a:fd:
28:e2:c2:81:c7:d6:ca:4f:0c:3e:81:4d:fe:4c:b3:
53:8d:b5:90:61:4c:70:da:c6:0b:2a:d9:46:4f:17:
3d:e4:e7:63:93:4c:ab:9c:b2:63:ef:3e:59:55:e3:
ff:6f:55:49:ac:01:1a:eb:7d:56:98:72:e1:1b:c3:
d6:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:DD:4B:28:DC:77:EF:65:09:BF:27:10:C7:DC:0B:1E:18:4C:FB:A7
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:6e:e4:40:be:fa:77:3a:94:59:68:4f:a8:62:b9:8d:70:c7:
54:e0:34:c4:94:8b:3d:19:6b:00:46:02:ed:18:e1:93:da:eb:
38:17:ca:55:8a:f4:c9:23:62:90:d5:29:d1:ee:6f:c2:ed:5e:
db:6f:30:f3:e2:10:8e:c5:81:ae:32:1d:c6:1e:53:06:b3:81:
3e:0b:36:65:dc:63:32:87:ae:80:25:d8:78:fd:0b:5f:41:de:
cf:37:25:ff:86:3a:c5:cf:56:8e:37:16:cb:90:9a:6c:0c:de:
e2:93:1e:b5:8c:b2:f9:ca:ef:bb:20:65:3a:36:f3:5d:78:88:
e8:dc:4e:13:6b:a7:87:05:08:9d:2e:71:78:bb:ea:2d:1f:d0:
50:3c:2c:c6:6e:df:5c:98:3e:c6:26:b7:f2:74:6d:61:01:f0:
2a:3c:4d:52:a2:94:f7:d5:40:19:2a:5f:22:c6:f3:7d:ac:e6:
1c:82:2d:bf:5c:69:69:cb:ab:dc:04:23:e4:18:55:81:ac:2a:
09:b5:36:22:b5:6f:be:80:b5:ef:65:42:e1:e2:96:dd:d2:c4:
4b:6f:6a:09:b8:7f:50:c9:88:ef:9e:a9:e7:1c:17:ac:f9:79:
8f:af:d9:1f:09:58:0b:92:57:4b:d1:88:49:63:39:75:13:df:
b0:f5:e4:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkYP+jDxJdHeFd4M2hW7LEOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxMDhhZDUyN2M3MjBlYjc5NzA3YjNmYjdiMTcyYzg4Yjcz
M2IxMzMwHhcNMjUwOTA1MDUwMTA1WhcNMjUwOTA2MDUwMTA1WjAzMTEwLwYDVQQD
EyhjNWRkNGIyOGRjNzdlZjY1MDliZjI3MTBjN2RjMGIxZTE4NGNmYmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApV818jIctI1cc7yjZnnlI5DTGRPp
1mr8tKb3hAaNPulFRRKgkXQOiNMQ4Nya/rIyB6Bpny60PwQ7PWU+522qab7vdojL
HC1KqDuxhSfv9xJpRtmCKGfTjAQPP+m6F4C68O3WIgAt0daOCy9VCF9FCEm2IZQ9
zOE+/Tcm+kLTexYGtunWapIquNINGW46qlFpCz/E6RXAd5sA99c1z3/r5hqf/wdN
C3YKXaczHGt4mXRgTmjQZ77+L78BPd5te40Cmv0o4sKBx9bKTww+gU3+TLNTjbWQ
YUxw2sYLKtlGTxc95Odjk0yrnLJj7z5ZVeP/b1VJrAEa631WmHLhG8PWfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMXdSyjcd+9lCb8nEMfcCx4YTPunMB8GA1UdIwQY
MBaAFDEIrVJ8cg63lwez+3sXLIi3M7EzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTVFpdFVueHlEcmVYQjdQN2V4Y3NpTGN6c1RNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zMzJjMjMtZDc5My00NTUzLTg0ZWEt
YWZhOTliM2ZmZmUzLzEvTVFpdFVueHlEcmVYQjdQN2V4Y3NpTGN6c1RNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8zMzJjMjMtZDc5My00NTUzLTg0ZWEtYWZhOTliM2ZmZmUz
LzEvTVFpdFVueHlEcmVYQjdQN2V4Y3NpTGN6c1RNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe27kQL76
dzqUWWhPqGK5jXDHVOA0xJSLPRlrAEYC7Rjhk9rrOBfKVYr0ySNikNUp0e5vwu1e
228w8+IQjsWBrjIdxh5TBrOBPgs2ZdxjMoeugCXYeP0LX0Hezzcl/4Y6xc9WjjcW
y5CabAze4pMetYyy+crvuyBlOjbzXXiI6NxOE2unhwUInS5xeLvqLR/QUDwsxm7f
XJg+xia38nRtYQHwKjxNUqKU99VAGSpfIsbzfazmHIItv1xpacur3AQj5BhVgawq
CbU2IrVvvoC172VC4eKW3dLES29qCbh/UMmI756p5xwXrPl5j6/ZHwlYC5JXS9GI
SWM5dRPfsPXkFg==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:05:54 2025 by rpki-client