Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
File: GTWdi0RPJzSynpueCQG-CLAPQOM.mft (raw, json)
Hash identifier: LdN1pQCmatgg4ISTjyQg/I08XeMZRXColuOfvNWW09g=
Subject key identifier: FB:34:B7:C1:30:4D:E6:D6:9B:33:61:57:65:64:E2:ED:9C:2B:77:E9
Authority key identifier: 19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
Certificate issuer: /CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Certificate serial: 019CBC27FE4923F1573E5B3840A116658FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
Manifest number: 13CD
Signing time: Thu 05 Mar 2026 04:01:03 +0000
Manifest this update: Thu 05 Mar 2026 04:01:03 +0000
Manifest next update: Fri 06 Mar 2026 04:01:03 +0000
Files and hashes: 1: GTWdi0RPJzSynpueCQG-CLAPQOM.crl (hash: bLGnfLXflkdByQmmzVRLthy3YrSwoff5ff8xbGujDYo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bc:27:fe:49:23:f1:57:3e:5b:38:40:a1:16:65:8f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Validity
Not Before: Mar 5 04:01:03 2026 GMT
Not After : Mar 6 04:01:03 2026 GMT
Subject: CN=fb34b7c1304de6d69b3361576564e2ed9c2b77e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:fd:04:ac:b2:61:4e:38:23:96:08:ad:75:73:
eb:02:52:64:c4:a4:22:e1:e7:a3:c7:17:aa:36:1a:
10:28:6d:23:04:3b:43:68:35:5e:16:a4:0e:64:ac:
9f:ee:1f:60:f3:ac:34:4f:d9:92:ff:0c:0b:c7:93:
11:a4:48:71:96:f3:d9:88:f0:2a:3a:02:1a:68:50:
84:6d:01:25:af:84:5b:74:9d:f6:0c:2b:d9:cd:33:
a8:df:22:6e:06:e7:7e:08:72:6a:ac:a0:c5:29:ce:
55:52:42:f7:f7:b7:e3:40:bd:8e:3e:83:64:ce:d3:
50:bc:48:f4:4c:b6:b2:f3:b9:25:ef:d9:7d:ce:f8:
70:12:8e:8e:03:fb:e1:b8:91:3c:67:59:32:a0:55:
bc:3c:3c:91:5f:58:f5:bf:dc:8b:c2:6f:4a:e7:04:
a9:80:7a:fe:8b:5d:fc:ba:b4:20:7a:3d:69:75:40:
2d:8e:8a:d4:ec:53:6b:1a:af:5d:f7:25:92:e3:1a:
b6:fa:cc:9a:8d:61:30:0c:52:e2:a1:e6:8b:17:53:
3c:01:72:c8:db:02:9f:a7:1a:1b:f3:ec:ad:c5:e6:
13:1d:31:10:c0:3c:b4:ea:34:cd:2f:69:37:fa:99:
dc:d5:79:ad:d8:67:19:4f:33:6e:d4:53:da:eb:22:
a7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:34:B7:C1:30:4D:E6:D6:9B:33:61:57:65:64:E2:ED:9C:2B:77:E9
X509v3 Authority Key Identifier:
keyid:19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:87:4b:20:9d:e2:f9:81:95:f0:7c:ec:50:89:ca:3e:f1:07:
23:d7:ac:a9:48:56:27:c7:39:d1:91:70:55:bf:cf:ea:c3:2a:
d2:c8:50:72:ee:0a:31:6a:21:f9:90:e3:ce:0b:c6:8c:89:79:
98:9b:41:29:ab:dc:21:dd:f8:6a:7e:4e:03:a7:2e:ef:ce:99:
43:f8:21:fa:6f:c1:0d:36:d3:d5:b9:7d:5c:7b:1a:48:df:83:
12:d3:b0:ed:cd:9a:4f:2d:2d:dc:0b:7a:6e:0b:db:66:d8:d5:
39:a5:fb:fc:dd:fc:43:20:c0:f7:47:f5:4a:d1:f4:33:e8:c1:
dd:fb:56:6c:ba:2e:31:ed:e9:19:ee:1c:b5:d4:7a:ad:66:a8:
8e:37:4e:91:e3:ee:52:22:fd:50:a3:87:6e:b2:a9:54:69:73:
fc:22:85:f5:e7:6a:bb:df:6d:77:cf:6e:f7:95:af:db:86:0c:
1b:36:a2:7f:40:cf:8c:d2:93:04:50:66:51:5c:4b:df:5e:b5:
e1:2e:ce:e5:4f:5e:f4:9c:1a:79:72:24:de:1f:cc:0d:f5:a6:
92:8f:ab:58:35:00:78:cc:ed:1b:4d:be:49:ff:8c:7c:ed:47:
8a:9c:b4:31:99:97:17:44:88:0f:40:b3:d1:c2:b6:4a:2c:8f:
63:03:f8:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:56:23 2026 by rpki-client