Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: bSmTZ0UppXHo7fY7C2Sel9moFJoWfTBB9LpAA4R1DYg=
Subject key identifier: EF:16:70:AB:D3:AB:97:34:0C:11:E4:E9:71:FB:80:A6:BF:4E:58:F9
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 019C98C03DC9402F9E66D05496336D212DBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 12FF
Signing time: Thu 26 Feb 2026 07:01:01 +0000
Manifest this update: Thu 26 Feb 2026 07:01:01 +0000
Manifest next update: Fri 27 Feb 2026 07:01:01 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: CQTkjOpTamMBtInRHVUED/bkxagdGQ+6nchwZyMeG7Q=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:98:c0:3d:c9:40:2f:9e:66:d0:54:96:33:6d:21:2d:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Feb 26 07:01:01 2026 GMT
Not After : Feb 27 07:01:01 2026 GMT
Subject: CN=ef1670abd3ab97340c11e4e971fb80a6bf4e58f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b3:14:9b:3e:73:0c:21:67:d2:09:f1:05:ea:
67:4e:52:31:45:25:12:cf:4b:c7:ed:3c:45:0e:2a:
24:17:de:f5:f7:36:27:05:9c:a9:d3:94:93:7e:d3:
cc:90:07:89:6b:d1:4e:42:73:5f:86:a9:98:50:4f:
fd:c0:3c:96:a9:bb:ac:26:ba:fb:b3:6d:ee:91:b6:
a1:f3:85:a7:a3:f0:07:22:5a:50:2b:9a:84:8e:a5:
e8:0b:d2:9b:5d:eb:77:54:23:2a:c1:30:2a:83:df:
ed:e3:d2:b7:4a:c2:92:2b:fe:4f:8c:90:cb:5f:6f:
50:43:c1:ac:f1:0e:1c:bc:1f:94:00:b0:ff:75:fe:
52:a3:9b:1a:88:c3:c1:92:67:5c:3e:df:2a:a1:35:
27:57:74:ff:0f:58:90:08:6c:3d:1f:8e:69:8d:cf:
ea:15:ec:67:46:4a:5b:83:e6:dc:8f:5c:26:f1:88:
cc:02:87:a5:12:33:0f:81:18:d2:d7:e5:89:12:d0:
f0:44:bc:3e:c3:a7:d7:c5:bc:47:f5:dc:11:1d:f9:
22:7a:06:73:93:de:ae:69:06:86:0c:9b:81:32:cb:
1e:6b:44:36:93:e2:b4:9c:45:53:ea:91:c1:6f:ac:
9a:fe:30:54:3e:33:94:ba:22:3c:02:b1:27:ec:80:
0c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:16:70:AB:D3:AB:97:34:0C:11:E4:E9:71:FB:80:A6:BF:4E:58:F9
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:09:f2:76:00:3e:0a:42:79:1c:b7:07:5a:bc:2c:69:2d:e8:
bd:ac:8c:34:13:bd:48:b2:14:a7:49:57:8b:3b:3c:88:f5:7a:
fb:92:fe:ea:7c:a8:01:e6:9d:c3:49:b9:13:9b:74:a2:3d:19:
89:37:7b:6d:a6:2e:62:fc:60:71:47:dd:e2:5f:ce:94:1a:bc:
4e:6a:5b:13:ff:1e:13:47:50:a8:9e:5f:46:07:ac:f9:b5:79:
e4:7e:e0:1f:40:67:20:56:20:a2:39:ac:e3:db:59:f2:8b:83:
90:67:04:39:93:52:8d:3f:b1:ce:4a:47:be:d8:6e:ee:f6:42:
40:20:29:1e:be:77:01:4c:f8:b5:79:64:d9:2d:20:3f:fe:3a:
e0:96:c2:bb:69:3b:e9:5e:7f:81:b9:71:5a:8c:10:3e:9f:52:
38:12:33:10:a4:9e:19:13:4a:db:85:b6:81:ad:3c:b4:78:a2:
9e:18:ef:39:eb:b8:bb:6c:4f:c5:9a:7f:7d:7a:cc:f4:c9:0c:
9e:a9:b3:6b:d1:18:2d:19:69:16:03:ca:12:7e:92:02:b5:10:
61:4b:e7:18:24:40:48:46:ba:96:c5:87:e9:79:6e:25:76:34:
72:66:b1:3a:79:07:26:64:32:20:57:21:a7:4c:85:ee:35:fb:
b2:a0:2a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:57:34 2026 by rpki-client