Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
File: uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft (raw, json)
Hash identifier: Nv3vLIOx2Wt2t8wd8KOX0hWYMZe/te9VmLIQ8hfUH4k=
Subject key identifier: A5:4E:C1:7C:E3:9E:61:CF:70:5E:C1:21:37:A5:3F:5F:B7:3E:FA:D1
Authority key identifier: B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
Certificate issuer: /CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Certificate serial: 019C8A96D5B66F3435BB9798F7AA9F9EF92B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
Manifest number: 1286
Signing time: Mon 23 Feb 2026 13:01:06 +0000
Manifest this update: Mon 23 Feb 2026 13:01:06 +0000
Manifest next update: Tue 24 Feb 2026 13:01:06 +0000
Files and hashes: 1: uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl (hash: RpOf1yu6s3AGFXSKbQL/DutcXod+n+Gy61DVqlZvVvU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:8a:96:d5:b6:6f:34:35:bb:97:98:f7:aa:9f:9e:f9:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85e0be6b7279cdecf78bdd64105f8443d0c0c02
Validity
Not Before: Feb 23 13:01:06 2026 GMT
Not After : Feb 24 13:01:06 2026 GMT
Subject: CN=a54ec17ce39e61cf705ec12137a53f5fb73efad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3d:f6:8a:3e:4a:fd:d5:dd:82:81:19:98:be:
67:12:9d:03:69:91:78:15:ea:fd:fe:0d:90:f7:14:
89:66:ca:7c:ec:12:8b:c0:76:c8:d5:df:4d:41:98:
27:09:db:4a:99:ed:5d:31:99:7d:2e:2e:1e:8d:48:
40:65:76:96:5e:8f:dd:89:80:32:7d:82:94:2d:ae:
fd:a6:25:b7:ec:28:ef:da:f7:79:79:fa:34:b4:4e:
ae:39:99:19:cf:6b:e2:e2:10:b5:5b:5b:29:7f:fb:
d9:7f:73:93:a0:a3:94:9f:44:15:53:81:bd:da:5c:
96:a6:16:7a:7f:73:62:bc:f6:6a:ad:f3:72:66:7a:
29:54:c6:cc:f2:d3:51:a1:6f:64:fb:28:cc:e5:73:
63:7b:87:b8:e4:7c:57:da:3c:f7:9f:f6:18:42:3b:
41:cb:4c:85:39:00:ce:c3:11:6b:f4:98:8a:bd:2b:
c5:59:a5:a1:6c:99:5c:93:80:41:9a:dc:dc:dc:d5:
31:c8:da:f7:de:21:10:f0:3a:71:ff:ff:36:e9:45:
5c:45:e5:41:78:83:1e:c3:39:47:39:5c:82:af:29:
12:7c:a2:5a:da:42:3e:1f:a9:28:9e:09:7f:10:c0:
20:06:ff:65:97:ab:2f:8c:74:76:e4:59:97:11:58:
a2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:4E:C1:7C:E3:9E:61:CF:70:5E:C1:21:37:A5:3F:5F:B7:3E:FA:D1
X509v3 Authority Key Identifier:
keyid:B8:5E:0B:E6:B7:27:9C:DE:CF:78:BD:D6:41:05:F8:44:3D:0C:0C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF4L5rcnnN7PeL3WQQX4RD0MDAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/6e1f38-6807-4866-a9ed-43bf1c43ec0f/1/uF4L5rcnnN7PeL3WQQX4RD0MDAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:d6:2c:5b:1b:c0:60:fc:08:44:42:b8:8a:33:bd:b5:a3:83:
22:77:06:d9:ed:74:7a:e0:04:ed:ba:36:d2:f5:a7:df:b3:c3:
1a:da:f8:ae:e5:a0:b2:0d:b4:c0:cb:c8:48:5e:df:61:02:36:
ca:1a:4b:17:39:85:73:23:2d:0c:5c:69:cd:80:8e:98:01:cd:
53:51:55:3a:b3:9f:0e:3c:1d:23:07:f0:a9:c0:3c:3f:0c:b2:
4e:e6:c5:53:a1:75:44:e0:bc:b3:eb:83:1f:d0:e4:1c:50:72:
56:73:4f:98:74:e0:cb:64:1b:97:49:3b:2e:1b:39:93:5e:a8:
0d:c9:8e:6c:2f:14:82:59:5b:ab:92:99:54:01:35:61:34:08:
00:c3:b8:bc:60:64:b1:bf:7d:6e:8c:5a:8e:5b:9f:bb:53:a0:
99:9c:da:3a:a3:20:8c:82:c4:28:b9:6a:ac:67:f9:b0:e5:40:
93:e9:a7:3b:21:bb:6d:58:9f:17:26:90:b8:fa:88:4b:ef:f4:
d5:69:5d:93:73:5e:e8:f2:da:56:40:36:86:4f:32:64:b0:16:
00:3c:2b:eb:6e:79:c3:d6:b1:fa:d7:a5:bc:91:9e:27:3b:b9:
8d:81:97:c7:85:5e:cf:1e:ed:82:b7:de:29:a1:f2:40:37:cf:
f9:64:5d:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyKltW2bzQ1u5eY96qfnvkrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NWUwYmU2YjcyNzljZGVjZjc4YmRkNjQxMDVmODQ0M2Qw
YzBjMDIwHhcNMjYwMjIzMTMwMTA2WhcNMjYwMjI0MTMwMTA2WjAzMTEwLwYDVQQD
EyhhNTRlYzE3Y2UzOWU2MWNmNzA1ZWMxMjEzN2E1M2Y1ZmI3M2VmYWQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoz32ij5K/dXdgoEZmL5nEp0DaZF4
Fer9/g2Q9xSJZsp87BKLwHbI1d9NQZgnCdtKme1dMZl9Li4ejUhAZXaWXo/diYAy
fYKULa79piW37Cjv2vd5efo0tE6uOZkZz2vi4hC1W1spf/vZf3OToKOUn0QVU4G9
2lyWphZ6f3NivPZqrfNyZnopVMbM8tNRoW9k+yjM5XNje4e45HxX2jz3n/YYQjtB
y0yFOQDOwxFr9JiKvSvFWaWhbJlck4BBmtzc3NUxyNr33iEQ8Dpx//826UVcReVB
eIMewzlHOVyCrykSfKJa2kI+H6kongl/EMAgBv9ll6svjHR25FmXEViilQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKVOwXzjnmHPcF7BITelP1+3PvrRMB8GA1UdIwQY
MBaAFLheC+a3J5zez3i91kEF+EQ9DAwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQt
NDNiZjFjNDNlYzBmLzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC82ZTFmMzgtNjgwNy00ODY2LWE5ZWQtNDNiZjFjNDNlYzBm
LzEvdUY0TDVyY25uTjdQZUwzV1FRWDRSRDBNREFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQdYsWxvA
YPwIREK4ijO9taODIncG2e10euAE7bo20vWn37PDGtr4ruWgsg20wMvISF7fYQI2
yhpLFzmFcyMtDFxpzYCOmAHNU1FVOrOfDjwdIwfwqcA8PwyyTubFU6F1ROC8s+uD
H9DkHFByVnNPmHTgy2Qbl0k7Lhs5k16oDcmObC8Ugllbq5KZVAE1YTQIAMO4vGBk
sb99boxajlufu1OgmZzaOqMgjILEKLlqrGf5sOVAk+mnOyG7bVifFyaQuPqIS+/0
1Wldk3Ne6PLaVkA2hk8yZLAWADwr6255w9ax+telvJGeJzu5jYGXx4Vezx7tgrfe
KaHyQDfP+WRdjg==
-----END CERTIFICATE-----
Generated at Sun Jun 21 14:40:50 2026 by rpki-client