Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
File: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft (raw, json)
Hash identifier: /FE4UStcjkJXw91M/cg1mjPjLyhGAgioI/GYK92B874=
Subject key identifier: 4E:64:F8:85:2D:E9:C5:58:EE:90:0D:B2:32:FC:61:E4:C8:00:81:5A
Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E
Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E
Certificate serial: 2F8141B85845F89E74F484AEB26DE298B3F50357
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
Manifest number: 0254
Signing time: Sat 07 Feb 2026 01:34:01 +0000
Manifest this update: Sat 07 Feb 2026 01:29:01 +0000
Manifest next update: Sun 08 Feb 2026 02:50:01 +0000
Files and hashes: 1: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl (hash: 5n7oyi0lg02EGmC4I6XWm/fEfXzfC5knWl98bCjPs2c=)
2: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (hash: sWQMzSPI6Bg4G4IKisjp9DHougwIrJ9n/xHdiIfWjWY=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:81:41:b8:58:45:f8:9e:74:f4:84:ae:b2:6d:e2:98:b3:f5:03:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91443440000, serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E
Validity
Not Before: Feb 7 01:29:01 2026 GMT
Not After : Feb 8 02:50:01 2026 GMT
Subject: CN=4E64F8852DE9C558EE900DB232FC61E4C800815A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4d:6c:a0:fa:e8:c3:91:8f:8f:43:38:c7:6b:
6e:14:cb:33:be:f5:3b:fe:76:80:ba:27:69:f1:a2:
99:21:60:90:72:82:97:31:b5:24:1f:cf:cb:67:aa:
1c:e2:82:7c:25:a4:49:98:de:c1:85:fc:8a:c9:e5:
b4:76:0b:43:a0:44:d6:85:12:cc:2d:fa:06:58:fb:
8a:f7:30:57:a9:fc:d4:bf:19:8f:42:be:8d:26:b3:
f7:3c:f2:62:19:8d:94:11:d0:31:69:dc:7c:3e:80:
47:d9:4b:df:f8:3e:d4:98:91:90:b7:b6:b2:51:95:
f0:32:87:86:d6:7e:8a:e2:3b:0f:25:82:53:48:52:
11:48:8a:82:ee:c4:32:8e:23:a9:8f:68:1b:35:91:
43:ae:5b:4f:9e:3a:84:ff:93:38:dd:44:62:e5:f5:
34:7d:88:30:77:c9:d2:3e:4f:7b:be:25:a4:aa:2e:
da:d7:77:b0:f2:c0:fc:b6:74:6d:15:45:7f:84:d2:
3f:f1:3d:22:c8:7b:6b:47:99:53:9a:82:30:9d:0f:
a7:d9:d0:2c:77:95:80:3e:93:c3:d9:1a:e1:6e:52:
93:59:8a:7d:a3:26:6c:6f:12:36:29:aa:84:98:b4:
1f:07:25:93:cb:96:86:b3:b0:cd:5f:34:87:3d:b6:
33:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:64:F8:85:2D:E9:C5:58:EE:90:0D:B2:32:FC:61:E4:C8:00:81:5A
X509v3 Authority Key Identifier:
keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:64:15:bd:d7:a2:b4:67:d1:ef:41:73:21:c0:44:09:d2:7e:
cd:f8:76:4b:43:17:7c:7a:96:7e:76:ed:73:68:fa:64:20:21:
59:bb:0c:87:80:2b:33:42:11:8b:1a:24:3d:e1:af:94:a2:b7:
af:0f:d1:b3:fd:77:82:23:42:c6:60:0a:f8:5c:5a:f5:73:3f:
fb:2c:88:7d:bb:f9:ab:5f:04:93:08:0f:6a:73:e8:5f:52:50:
fe:17:28:c7:74:4b:26:14:c9:d0:c1:46:c1:c4:66:bf:27:48:
9a:0e:1c:cd:af:d5:7b:d7:56:f6:75:1e:70:f0:c6:b5:f1:84:
d8:83:e3:9d:b0:20:fc:d3:7e:01:45:46:3f:ba:b3:dc:7b:bf:
fe:ab:6c:8f:8f:e5:30:c3:3d:40:e8:a2:fb:f7:a1:cf:71:dc:
59:73:bb:4f:fa:7d:c2:14:e6:e2:bc:fa:fc:a9:70:16:b7:79:
fc:65:35:d9:56:53:1c:2d:d0:a3:81:31:da:27:f8:1f:4c:1d:
5c:8a:49:76:9b:9e:05:b9:50:3e:da:88:fa:bb:8d:ab:6b:51:
35:66:2f:1d:ac:c0:29:49:20:29:e2:99:8f:b3:68:1b:e0:a2:
b4:b1:5d:24:d3:c6:55:ca:df:11:e7:0d:a3:da:42:95:43:90:
83:e8:f8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 18 23:30:15 2026 by rpki-client