Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/32d85d-a717-4d68-82a6-2f365f22a18c/1/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.mft
File: Gjkt_Gui0xhtMmnHCRtwGYFTRdM.mft (raw, json)
Hash identifier: MtgaAtm/fnfyjU8tFo/RoMMn/i92MiO1Ewl+khbmRQk=
Subject key identifier: FD:45:11:34:6D:C0:8C:EA:8A:56:ED:FF:05:7A:BD:5B:E4:FE:D9:1E
Authority key identifier: 1A:39:2D:FC:6B:A2:D3:18:6D:32:69:C7:09:1B:70:19:81:53:45:D3
Certificate issuer: /CN=1a392dfc6ba2d3186d3269c7091b7019815345d3
Certificate serial: 019A096E67F3656C12FAD4D6DA589177EEE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/32d85d-a717-4d68-82a6-2f365f22a18c/1/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.mft
Manifest number: 16F7
Signing time: Wed 22 Oct 2025 01:00:21 +0000
Manifest this update: Wed 22 Oct 2025 01:00:21 +0000
Manifest next update: Thu 23 Oct 2025 01:00:21 +0000
Files and hashes: 1: Gjkt_Gui0xhtMmnHCRtwGYFTRdM.crl (hash: RWKBYctELoRsX6W9uguRgLBiZX9Sevw5h3fgdOIFfCk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:09:6e:67:f3:65:6c:12:fa:d4:d6:da:58:91:77:ee:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a392dfc6ba2d3186d3269c7091b7019815345d3
Validity
Not Before: Oct 22 01:00:21 2025 GMT
Not After : Oct 23 01:00:21 2025 GMT
Subject: CN=fd4511346dc08cea8a56edff057abd5be4fed91e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:aa:f1:ed:d6:ae:58:68:38:f1:9e:63:73:
84:f0:ef:2c:4f:af:a0:5b:82:f4:33:e4:ca:a6:9e:
6e:f4:40:8a:85:2a:8d:73:d5:28:63:31:63:7a:5a:
fc:3d:ab:03:e6:e1:42:ef:98:42:19:8a:76:7e:ba:
83:0f:d3:04:6a:10:9d:0e:e7:f1:b3:bb:48:7c:d9:
20:b3:1a:82:2b:cc:bd:8f:fa:1d:d8:53:6f:54:81:
3b:90:95:b2:c1:05:cb:8f:d3:79:7c:54:dc:58:dd:
7a:91:76:1c:e3:f9:c2:67:24:ec:97:94:cc:ea:22:
91:9d:60:d8:49:93:13:8c:cb:15:c8:cd:e0:7f:b9:
8e:05:89:9e:1f:48:23:4b:dd:70:05:91:5e:b4:e9:
40:75:df:9b:26:f0:a3:64:08:7a:32:e7:4a:97:f0:
6a:fc:00:1b:d8:b9:84:2e:6f:bd:31:97:a6:32:c8:
a9:b5:37:00:8e:fe:cf:f9:2f:f5:ca:4a:88:84:f8:
69:7c:57:3d:91:76:12:6c:28:1a:18:47:7e:24:b0:
af:8d:b7:b1:ea:1e:df:f2:75:5e:c6:a1:40:c9:d3:
b9:e4:dd:b4:72:8e:8a:7b:4f:71:dd:70:c1:bf:2f:
e3:0a:94:96:7c:86:43:20:28:65:d1:e5:51:e3:23:
93:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:45:11:34:6D:C0:8C:EA:8A:56:ED:FF:05:7A:BD:5B:E4:FE:D9:1E
X509v3 Authority Key Identifier:
keyid:1A:39:2D:FC:6B:A2:D3:18:6D:32:69:C7:09:1B:70:19:81:53:45:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/32d85d-a717-4d68-82a6-2f365f22a18c/1/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/32d85d-a717-4d68-82a6-2f365f22a18c/1/Gjkt_Gui0xhtMmnHCRtwGYFTRdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:9d:d6:2a:89:bd:d7:2e:f6:9d:c7:9d:26:5b:48:48:b9:f5:
a4:a5:11:c4:c9:79:5d:e1:fe:50:65:c8:2b:62:eb:24:0c:2d:
36:56:40:a7:22:b4:15:af:b1:6a:83:bd:23:82:1d:e9:76:56:
9d:1f:7e:6e:25:55:a0:72:3f:c0:22:85:fa:e9:39:9b:ce:f1:
72:18:4e:c0:ae:f0:ae:64:01:23:a1:6f:b1:57:36:31:2d:44:
b6:e1:e4:85:9f:0a:28:8f:2f:4d:d7:e7:ba:79:02:a7:c0:4f:
f6:f1:c1:fc:e1:f4:cd:57:1a:64:05:93:f9:a5:51:e9:21:94:
91:c6:e4:36:09:6f:61:81:28:48:99:77:28:9d:0a:dd:26:fa:
24:94:f5:ec:23:db:5c:1b:c4:32:49:c6:93:93:6f:64:9f:82:
50:c0:57:e0:e5:79:bf:58:de:e4:1d:b8:fd:7d:ca:97:8d:55:
e5:c6:8a:4a:b9:31:fa:cb:5d:c9:94:43:60:91:fe:91:12:41:
31:13:0d:5d:fc:c5:0b:e1:2f:5e:99:9c:9a:a7:75:88:de:e8:
5a:05:1d:1f:96:60:f0:d4:47:bb:a4:42:30:3e:d4:cc:2e:37:
2d:af:29:c1:29:ab:d5:a1:93:a3:ae:6a:ee:ec:82:00:ae:e8:
e3:d4:fb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:52:18 2025 by rpki-client