Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
File: y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft (raw, json)
Hash identifier: f+jp0taYsKY318zFeGZw/gSH5M1Tp3o88H4EHH41sGk=
Subject key identifier: 44:1A:A7:B1:5B:A9:1F:32:F2:F3:88:D0:0C:CA:D4:87:67:4C:48:1D
Authority key identifier: CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
Certificate issuer: /CN=cb608201f88aeae9486b9fa87189d796c54027dd
Certificate serial: 019AA45B92360DD302D5CA5D00A7E3E60915
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
Manifest number: 07C2
Signing time: Fri 21 Nov 2025 03:00:55 +0000
Manifest this update: Fri 21 Nov 2025 03:00:55 +0000
Manifest next update: Sat 22 Nov 2025 03:00:55 +0000
Files and hashes: 1: y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl (hash: yRu7Vd1rzvXJtZzUgrVW38/CM86lqoS1jvFP4iv2eNY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:a4:5b:92:36:0d:d3:02:d5:ca:5d:00:a7:e3:e6:09:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb608201f88aeae9486b9fa87189d796c54027dd
Validity
Not Before: Nov 21 03:00:55 2025 GMT
Not After : Nov 22 03:00:55 2025 GMT
Subject: CN=441aa7b15ba91f32f2f388d00ccad487674c481d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:bf:78:55:07:47:1a:4c:3b:e4:b9:58:a8:
fd:e3:e1:bf:af:4d:ed:89:12:d1:77:00:89:68:1e:
72:6d:d7:f6:1d:b0:7f:51:59:c9:a1:87:74:7c:1d:
f8:a2:18:8f:df:7d:11:8e:97:f7:3e:3c:e7:1c:6e:
4e:00:a2:7b:b8:4b:de:c6:48:44:61:4e:e7:04:1f:
55:48:13:bf:40:d3:d5:fa:3d:41:ea:5d:b6:ee:bf:
36:f2:51:12:74:91:87:fa:f5:a0:51:8b:6f:a3:c4:
14:8b:e9:3e:8a:5a:08:51:30:00:cc:9b:f3:64:43:
4d:44:a8:5c:25:2a:cc:70:0b:a1:c5:db:52:18:84:
d6:22:07:22:6c:2f:31:8d:a9:90:27:a0:c5:5c:ea:
d3:dd:7e:8e:e6:74:b9:e0:99:8b:fd:16:6a:9b:7b:
95:38:84:29:e7:ac:fb:95:ba:e0:ae:0b:ae:e8:80:
fc:69:9f:50:57:46:15:1f:6e:f6:ca:5d:b9:a3:4c:
1e:2d:2c:93:04:cb:94:eb:5e:e2:24:2b:b3:28:e9:
e1:d1:82:91:ba:e7:bc:19:f5:61:59:d2:25:f2:2c:
4f:95:3a:81:99:11:60:ca:14:2b:5c:84:3e:26:b0:
13:7f:12:fc:a3:3c:ca:8c:ef:5a:42:b4:26:ab:94:
68:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:1A:A7:B1:5B:A9:1F:32:F2:F3:88:D0:0C:CA:D4:87:67:4C:48:1D
X509v3 Authority Key Identifier:
keyid:CB:60:82:01:F8:8A:EA:E9:48:6B:9F:A8:71:89:D7:96:C5:40:27:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2CCAfiK6ulIa5-ocYnXlsVAJ90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/ff10a5-2fa3-4942-b2a9-bfe52b4af8b7/1/y2CCAfiK6ulIa5-ocYnXlsVAJ90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:29:53:64:f3:05:df:38:8d:86:35:95:c5:6d:82:c4:0f:c8:
1b:5b:bb:67:24:75:86:e1:c4:d3:f6:67:25:43:5a:5e:b5:48:
b7:6c:de:cd:40:6d:57:e3:f6:d6:f9:34:c8:12:d8:2a:09:08:
06:a4:8f:3a:25:88:5c:d7:e1:49:ac:28:d6:4d:c4:98:5a:0a:
f2:50:8c:e5:38:1f:6b:ba:e7:6f:75:1c:8e:74:37:4b:10:89:
1e:ee:2f:de:6d:db:20:7d:76:21:2f:33:8d:7a:f0:27:48:a8:
0e:68:89:f5:95:fb:3e:a4:1d:5d:79:0a:c3:20:e7:23:20:8d:
38:3e:03:7a:07:f6:47:1f:c1:04:b1:c1:ef:6d:4c:48:eb:34:
78:1f:24:d8:d1:39:84:ae:65:79:28:b2:03:69:16:ff:d5:9b:
46:9b:a0:d1:20:d9:7e:d3:75:5b:1a:5f:88:c0:a6:6c:61:98:
a3:36:e2:bb:7d:21:e3:ad:9d:34:54:12:5e:d9:f1:a5:2e:fc:
2f:e9:05:ae:5d:9a:33:ad:6c:16:be:ee:8a:1c:39:9a:5c:3e:
a4:a8:1e:09:1a:75:42:f3:4f:08:d5:f7:05:59:20:4b:64:99:
c6:3b:9e:a2:8a:b1:bb:23:97:e8:95:ca:27:48:32:37:7e:6a:
62:ea:26:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:01:45 2026 by rpki-client