Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
File: KNX3dyLGFlf4HJ965JznKbWA9ng.mft (raw, json)
Hash identifier: M17MfCe6AZLYZ7ftaMZEXF1Qj46tCXwDPfhumNIVLbI=
Subject key identifier: F6:F2:D7:F9:9F:4B:51:AC:0B:C2:8B:7E:FB:7A:7E:B2:DA:64:77:55
Authority key identifier: 28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
Certificate issuer: /CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Certificate serial: 019E013E89D78433E06C33FAD758FD632E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
Manifest number: 18F4
Signing time: Thu 07 May 2026 07:02:16 +0000
Manifest this update: Thu 07 May 2026 07:02:16 +0000
Manifest next update: Fri 08 May 2026 07:02:16 +0000
Files and hashes: 1: KNX3dyLGFlf4HJ965JznKbWA9ng.crl (hash: /JAwiS4c/4lGQLhO+5p4eBCuskqid+kFwDLiJOYV7co=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:01:3e:89:d7:84:33:e0:6c:33:fa:d7:58:fd:63:2e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28d5f77722c61657f81c9f7ae49ce729b580f678
Validity
Not Before: May 7 07:02:16 2026 GMT
Not After : May 8 07:02:16 2026 GMT
Subject: CN=f6f2d7f99f4b51ac0bc28b7efb7a7eb2da647755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:5f:28:b2:6c:55:b4:35:4b:18:30:11:97:
e0:ce:9f:d4:e9:81:75:12:af:fe:ed:49:a3:23:a3:
f5:e7:48:42:8d:5b:31:52:66:40:5a:9f:bb:da:fd:
50:e2:79:26:1b:f7:29:20:56:57:96:66:37:fc:0a:
5a:6b:b2:30:f5:fa:2f:58:a7:bb:a4:f2:0d:73:9f:
53:fb:42:33:51:9d:ca:54:a4:87:0d:37:4d:f9:73:
22:79:47:38:0c:da:b0:c4:0e:8b:b5:8b:69:f0:92:
4b:e7:f3:e9:ac:64:44:22:31:c8:70:61:51:52:64:
af:c4:50:c0:30:ca:e4:87:c2:9d:a1:a9:38:b5:26:
ea:8e:86:25:2a:cf:7f:07:56:52:4b:ff:72:7d:05:
48:b6:43:75:ba:fb:01:40:54:2f:31:a0:d0:5f:e8:
52:f5:37:fd:4f:67:04:06:ba:c4:2f:47:83:20:a8:
b0:b4:43:c2:4c:22:be:67:2e:75:bb:6a:ec:f9:26:
af:2e:df:9b:aa:81:09:db:6a:fd:df:09:74:bb:e0:
8e:4f:3f:07:96:5d:d3:2d:b8:8e:58:60:ed:87:c0:
ee:45:59:22:66:89:7c:f7:4b:34:9a:34:90:69:c9:
ca:3a:1c:90:f3:61:2d:67:64:fd:f0:bf:8c:ff:35:
cb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F2:D7:F9:9F:4B:51:AC:0B:C2:8B:7E:FB:7A:7E:B2:DA:64:77:55
X509v3 Authority Key Identifier:
keyid:28:D5:F7:77:22:C6:16:57:F8:1C:9F:7A:E4:9C:E7:29:B5:80:F6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KNX3dyLGFlf4HJ965JznKbWA9ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/9e81f3-2e02-4857-af49-61be8a06f3af/1/KNX3dyLGFlf4HJ965JznKbWA9ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b8:88:5d:af:d7:9d:42:d6:77:35:ff:5a:36:0a:98:11:6c:
40:d9:57:7e:da:ac:54:93:d4:17:d6:48:d2:9d:af:a4:2f:1d:
4b:b0:92:55:28:1f:67:d6:9b:f2:df:1c:7b:b9:f6:63:06:25:
43:6b:08:c1:26:9d:54:31:f4:6c:43:d6:8a:4c:f4:f8:91:e6:
3b:2f:08:d3:0e:4c:13:6c:26:db:94:c1:30:f1:5e:97:f5:cf:
ef:0d:0e:a0:a5:81:db:3f:fd:ae:b3:df:e6:41:95:63:39:9b:
8c:29:7a:8b:5d:a3:02:d9:c5:33:a1:20:39:05:9e:e5:0f:e8:
f2:af:e4:0b:84:82:75:1f:87:39:95:a5:60:d4:1b:67:9c:39:
d4:c9:57:53:f0:b5:1d:c5:7a:65:34:eb:97:2d:4a:ed:8f:19:
60:fe:b1:2c:7f:fe:3d:8c:a4:37:dd:92:51:08:4a:cb:d3:6a:
bf:75:92:6e:88:b2:0c:df:ea:92:55:64:df:60:ee:cd:05:ea:
c9:14:2a:37:06:b9:74:5e:43:53:23:f9:9e:36:7b:59:63:b3:
23:17:66:a8:74:a9:f1:ae:84:d8:40:a1:18:54:1b:2c:7e:d6:
70:32:23:15:a6:6b:95:e5:30:b5:fe:df:85:98:f5:62:d2:41:
97:3e:7a:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 00:53:51 2026 by rpki-client