Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/5b1129-21dd-4ea5-9648-5f16de5c8658/1/zRvlrhITa5bNnXilwkykct6Ixlg.mft
File: zRvlrhITa5bNnXilwkykct6Ixlg.mft (raw, json)
Hash identifier: kOK+Lc04B/wL+F9VfUpDk5nXMxdEFdD5ora4RJSU3nc=
Subject key identifier: C2:4B:FC:BA:63:AD:C2:F6:2E:51:1B:C2:BE:BE:9A:C6:48:33:11:48
Authority key identifier: CD:1B:E5:AE:12:13:6B:96:CD:9D:78:A5:C2:4C:A4:72:DE:88:C6:58
Certificate issuer: /CN=cd1be5ae12136b96cd9d78a5c24ca472de88c658
Certificate serial: 0199793C93700C175869EEFC7A3BF4CEDCE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRvlrhITa5bNnXilwkykct6Ixlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/5b1129-21dd-4ea5-9648-5f16de5c8658/1/zRvlrhITa5bNnXilwkykct6Ixlg.mft
Manifest number: 08D1
Signing time: Wed 24 Sep 2025 01:00:36 +0000
Manifest this update: Wed 24 Sep 2025 01:00:36 +0000
Manifest next update: Thu 25 Sep 2025 01:00:36 +0000
Files and hashes: 1: zRvlrhITa5bNnXilwkykct6Ixlg.crl (hash: qySrkP4+SlQYDd2Ui0t7XRzhPQmoOSMZRWxH0xIJhMg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:79:3c:93:70:0c:17:58:69:ee:fc:7a:3b:f4:ce:dc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1be5ae12136b96cd9d78a5c24ca472de88c658
Validity
Not Before: Sep 24 01:00:36 2025 GMT
Not After : Sep 25 01:00:36 2025 GMT
Subject: CN=c24bfcba63adc2f62e511bc2bebe9ac648331148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9e:ec:a0:d3:2c:31:c5:62:fa:09:ac:ac:08:
26:85:0a:ad:cf:80:f1:38:2f:88:5f:ff:29:3a:f1:
47:07:75:ef:1c:8b:9e:74:ca:c3:aa:9b:ef:f7:e6:
0d:86:fe:77:2c:be:19:b4:62:2a:d0:cf:38:ed:81:
02:ba:67:39:fa:d9:6c:cd:a6:0c:5a:12:80:d3:b2:
86:67:24:b8:ba:cf:f4:60:06:e3:29:0b:18:49:66:
51:99:e8:af:4d:4d:1e:41:9b:0f:6e:95:d3:ed:ce:
06:1e:cd:bb:8b:8f:19:71:ff:a5:bf:e5:49:ed:b0:
94:27:61:cf:8c:08:2d:34:c3:07:44:5b:3d:56:f1:
b2:8d:9c:a1:ab:30:0d:7a:da:b8:c6:90:6b:6e:55:
4e:cc:d4:00:61:a9:9f:8d:a1:71:41:16:c9:74:38:
d0:d2:7e:ef:67:3b:f5:ec:ba:75:52:36:66:21:29:
b0:3e:ee:d8:3a:40:10:43:56:70:bb:0d:d8:f0:a9:
45:2e:c0:5f:56:68:8a:e7:a4:a2:7d:4f:b6:6f:a3:
9f:99:04:68:be:75:6d:de:70:24:71:46:f9:d4:a6:
a5:e6:b7:12:c3:49:aa:fd:c5:b0:71:f5:ba:49:cb:
b2:a0:b9:01:5f:be:23:a3:d5:b2:80:b9:3d:67:93:
fd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:4B:FC:BA:63:AD:C2:F6:2E:51:1B:C2:BE:BE:9A:C6:48:33:11:48
X509v3 Authority Key Identifier:
keyid:CD:1B:E5:AE:12:13:6B:96:CD:9D:78:A5:C2:4C:A4:72:DE:88:C6:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRvlrhITa5bNnXilwkykct6Ixlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/5b1129-21dd-4ea5-9648-5f16de5c8658/1/zRvlrhITa5bNnXilwkykct6Ixlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/5b1129-21dd-4ea5-9648-5f16de5c8658/1/zRvlrhITa5bNnXilwkykct6Ixlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:70:94:aa:4a:c9:cd:05:38:c6:c2:b5:4c:a5:ed:40:88:38:
b4:b6:13:78:8a:80:5d:ad:2c:15:c0:28:73:5f:8e:c9:84:9b:
5c:cf:76:0b:7c:ab:c6:10:8a:20:45:e7:8a:d2:d0:79:71:c5:
bb:62:64:6d:bf:b0:01:ae:8e:63:54:9a:33:cf:19:52:24:5c:
b9:e0:b6:d9:58:54:94:4d:43:da:54:d6:b6:53:f0:71:ab:00:
af:53:f0:00:e0:5a:a6:8f:4a:b2:44:27:8b:55:14:8d:19:2e:
3f:13:fb:d6:c2:bf:57:d9:bb:1f:10:18:a2:bb:30:e4:af:35:
45:c5:23:87:40:df:d4:95:51:37:1e:4a:3a:80:6f:22:43:59:
db:68:89:b2:2e:5a:64:fb:f2:f7:ae:90:43:13:72:cf:8a:71:
0b:a6:21:36:42:22:1d:b9:20:1c:40:cf:42:df:57:93:a9:eb:
a7:8e:54:ac:43:a8:6c:60:f9:ff:4b:31:ce:1a:42:f4:78:ff:
70:35:6c:31:d3:55:14:01:6b:ca:91:59:ad:08:ba:27:66:2d:
bf:0e:04:73:b3:90:9f:11:91:d7:bc:f4:f3:ef:0a:9f:ce:a7:
ad:41:be:34:df:41:09:32:e4:83:11:84:6e:66:ff:64:48:c5:
f2:6c:15:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:29:46 2026 by rpki-client