Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
File: 9Y3yxGnJeIlfhFgCTFBugByPsho.mft (raw, json)
Hash identifier: LaaFrJIVmcrkv+Uccl9wmQlnV4B6aUDIQMrWOBJQXGk=
Subject key identifier: 7F:C3:B4:87:3C:3E:F1:2D:00:C4:07:64:FC:1E:19:85:E1:23:79:29
Authority key identifier: F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
Certificate issuer: /CN=f58df2c469c978895f8458024c506e801c8fb21a
Certificate serial: 019E16B27359096140032B5C4521B9818C98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
Manifest number: 168A
Signing time: Mon 11 May 2026 11:00:54 +0000
Manifest this update: Mon 11 May 2026 11:00:54 +0000
Manifest next update: Tue 12 May 2026 11:00:54 +0000
Files and hashes: 1: 9Y3yxGnJeIlfhFgCTFBugByPsho.crl (hash: a9A5QkH3z/egHeBtEhIPh5UrRsEQMJbzPMvzXj1TtqM=)
2: ipd84dEDEe7cj4KStBVIlQrMGyg.roa (hash: Sbm22JKwRV49kiJvKoySC0PxR1MmmHGGM53bqn3Gb1c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:16:b2:73:59:09:61:40:03:2b:5c:45:21:b9:81:8c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f58df2c469c978895f8458024c506e801c8fb21a
Validity
Not Before: May 11 11:00:54 2026 GMT
Not After : May 12 11:00:54 2026 GMT
Subject: CN=7fc3b4873c3ef12d00c40764fc1e1985e1237929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e4:55:d9:37:79:16:70:83:b5:4c:8b:c0:7a:
24:a7:31:1b:a7:72:6b:a8:f2:c9:b2:2c:41:63:ac:
43:0b:fa:27:13:3f:01:e2:2a:3d:40:11:15:1f:11:
16:cb:b2:a6:a8:9d:53:06:21:ff:53:f3:e9:9e:d2:
52:08:24:c8:0b:35:dd:e5:3e:fe:3d:cd:51:7c:fc:
16:bc:c5:55:58:89:f9:05:23:74:53:a5:9a:d0:58:
5d:2c:c3:0a:be:1a:27:1e:de:fc:35:9b:2c:d6:95:
95:13:b1:d1:12:04:5d:73:ec:73:29:6e:de:03:5a:
2b:1e:3d:4a:b5:e0:6c:64:c8:2c:84:3d:40:e0:ab:
d5:aa:ea:5d:df:53:e3:08:76:a9:f4:a5:33:71:04:
ed:a1:26:b2:fe:ce:ef:ba:89:59:0f:21:61:a6:c6:
a9:a1:01:d9:e7:b2:60:91:35:ea:5a:54:a8:87:09:
71:e8:06:f0:37:38:dc:4b:e6:88:43:60:7a:9e:30:
c7:e4:eb:d5:c2:b1:31:b0:ef:71:00:ec:34:d3:5e:
43:cb:85:e6:99:a8:fb:c6:b5:01:53:83:00:19:f7:
e0:03:a0:b1:17:8d:0e:49:2f:00:6a:19:db:4f:e5:
06:bc:3e:df:a1:2d:22:e7:fd:90:5d:78:9a:da:d3:
f3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C3:B4:87:3C:3E:F1:2D:00:C4:07:64:FC:1E:19:85:E1:23:79:29
X509v3 Authority Key Identifier:
keyid:F5:8D:F2:C4:69:C9:78:89:5F:84:58:02:4C:50:6E:80:1C:8F:B2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y3yxGnJeIlfhFgCTFBugByPsho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/1e9621-626e-4032-9b54-76e3349c97c2/1/9Y3yxGnJeIlfhFgCTFBugByPsho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:44:3d:eb:8e:30:9d:37:4d:e2:49:7f:60:ae:a6:56:96:4a:
d3:f2:3e:2a:02:4b:67:07:21:44:04:fa:cb:b1:47:98:e6:e9:
c5:33:4a:18:88:a7:dc:a0:38:e9:3f:b0:8f:50:65:12:32:31:
37:ea:f2:9d:80:ff:59:f4:01:aa:2a:84:2e:3c:af:aa:bb:73:
f3:4c:64:61:59:41:56:0d:32:ab:b3:7c:11:74:01:b5:d8:08:
e7:95:1a:d5:6d:9c:3f:fa:10:f2:51:cf:4d:e9:ce:61:78:07:
73:b7:06:b5:51:e1:39:b0:dc:57:0b:bd:ca:e8:a8:4b:b4:d0:
07:aa:f7:31:8a:81:81:f8:9d:63:88:a5:bc:0f:12:5f:42:5e:
4f:8d:af:fc:14:30:ab:5f:5c:9b:3d:5a:e7:05:85:70:ce:5c:
48:12:90:30:01:ed:ec:9c:e0:e5:f5:ca:ad:2f:73:fc:79:f0:
22:4e:f7:c8:e7:10:48:8c:27:44:29:79:6d:01:3e:51:1d:c2:
3e:a7:a2:3e:5d:3b:33:04:be:80:58:dc:37:09:a1:3a:52:85:
55:a0:d5:a7:03:d1:22:3b:a9:bc:fe:e5:f3:fc:38:43:53:bf:
cc:e2:1d:1d:11:29:26:87:90:c6:1f:a2:d6:3b:68:ab:6f:d3:
79:81:ba:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:31 2026 by rpki-client