Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
File: GTWdi0RPJzSynpueCQG-CLAPQOM.mft (raw, json)
Hash identifier: v238XLFwf1AueG8p6yCZfKPkccURCWLEIui6IuftseE=
Subject key identifier: 28:C8:76:C9:85:6E:14:70:87:6B:76:33:95:44:B1:A7:1A:3A:11:59
Authority key identifier: 19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
Certificate issuer: /CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Certificate serial: 019CAAC639E4123BD2E7F04403B0B79A5636
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
Manifest number: 13C4
Signing time: Sun 01 Mar 2026 19:00:43 +0000
Manifest this update: Sun 01 Mar 2026 19:00:43 +0000
Manifest next update: Mon 02 Mar 2026 19:00:43 +0000
Files and hashes: 1: GTWdi0RPJzSynpueCQG-CLAPQOM.crl (hash: qPtzzBcvWadUCEZ2YTHSc2jKGRNlOdEfUXJqKVjXfU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:39:e4:12:3b:d2:e7:f0:44:03:b0:b7:9a:56:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Validity
Not Before: Mar 1 19:00:43 2026 GMT
Not After : Mar 2 19:00:43 2026 GMT
Subject: CN=28c876c9856e1470876b76339544b1a71a3a1159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7a:66:ec:35:f7:fe:ed:31:bb:73:1b:a3:42:
34:3b:1f:d0:e7:63:6e:ed:ca:95:e0:be:eb:27:9d:
5b:67:15:23:88:a3:00:b4:a8:ef:a1:fa:9b:e9:1a:
23:a6:02:5b:c0:ec:61:63:06:bf:aa:db:29:a4:e8:
f6:20:51:48:23:c9:60:5a:0d:ad:a8:59:92:96:14:
88:6c:26:3d:e8:4b:c1:fb:95:19:75:23:4c:29:64:
60:1b:a1:fb:21:80:16:33:97:19:44:4a:bc:c4:f1:
89:b0:ac:6c:28:fe:0a:6a:ca:0c:a5:01:91:49:37:
52:86:99:c9:5f:94:97:af:60:36:69:5f:54:3f:04:
8a:de:32:d2:50:9c:7d:7d:2d:33:b3:5d:b0:52:06:
76:f0:6f:7a:90:3a:26:d0:0c:9d:bf:81:d8:ad:26:
51:c1:ae:4a:40:68:f8:96:1e:2e:be:a7:9b:17:88:
1f:aa:91:da:50:dc:fe:90:9a:48:0c:9a:a3:e6:80:
6c:cf:d4:ea:28:b0:9d:68:eb:00:2f:89:2a:0f:f0:
28:66:1f:bf:2d:13:3c:4e:f7:1e:01:21:ee:70:04:
3c:a3:86:33:62:12:0c:d6:aa:92:c1:8a:dd:88:a6:
0d:64:7d:d8:08:2a:95:83:fe:7e:20:ff:49:80:62:
1c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C8:76:C9:85:6E:14:70:87:6B:76:33:95:44:B1:A7:1A:3A:11:59
X509v3 Authority Key Identifier:
keyid:19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:53:f9:83:bf:96:fe:94:7d:67:6c:0f:b3:14:b2:71:8e:db:
b9:de:b6:cb:a6:e2:98:ce:36:00:9c:7e:27:6a:18:3e:16:6c:
31:7a:64:45:21:bb:0f:55:11:96:1e:c8:3b:e5:83:97:9b:96:
5d:c5:b7:d2:f4:a5:f7:9a:fd:bf:2f:0e:cf:17:07:6e:05:22:
a1:39:65:b4:1e:1a:42:c2:4e:16:0f:28:80:44:37:6d:da:d4:
47:ea:7b:87:8f:8c:82:ab:1c:4c:d5:b4:27:5a:a5:d3:50:c9:
22:98:9d:d9:ce:c7:e9:ad:c9:d8:4e:c3:85:fb:35:30:56:81:
00:c3:24:c9:6e:b3:bd:fb:2f:45:d1:1e:15:5b:67:f1:8a:c0:
2e:6b:f0:1d:90:9d:0f:a5:2a:d0:26:68:f4:52:76:ad:12:a1:
56:16:1f:31:9b:66:3d:e4:97:f3:29:21:2d:dc:f5:8e:c2:23:
96:f5:f8:3c:4f:d4:16:43:67:6d:5f:6c:d0:10:82:fb:37:87:
49:eb:a0:e0:29:a9:4c:9f:9a:88:fe:70:d8:e2:8f:56:a9:6d:
2d:c2:96:2a:04:a1:09:30:ef:89:89:f2:d0:84:d5:32:dd:c7:
47:9f:7d:42:71:60:78:44:d4:7a:3a:90:aa:4e:b1:c5:5c:1c:
77:49:1f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:22:18 2026 by rpki-client