Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
File: G_GA7KTkQF6Heotjkjp1iNd-OdI.mft (raw, json)
Hash identifier: qwN9N/uEdQns5A61JhzIC2zVwmpuzsGrWrZeOAu+WiE=
Subject key identifier: EF:62:7B:C8:62:7F:D5:7E:88:2B:C6:80:E4:ED:6B:22:7E:17:3A:73
Authority key identifier: 1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2
Certificate issuer: /CN=1bf180eca4e4405e877a8b63923a7588d77e39d2
Certificate serial: 019B9BC47AA09CEDD722C3C0918DC087C463
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
Manifest number: 0710
Signing time: Thu 08 Jan 2026 04:01:43 +0000
Manifest this update: Thu 08 Jan 2026 04:01:43 +0000
Manifest next update: Fri 09 Jan 2026 04:01:43 +0000
Files and hashes: 1: G_GA7KTkQF6Heotjkjp1iNd-OdI.crl (hash: QQLmkBCGf0a+VKUReiIL9UGOYLJHOY4E2Y3b3JvoDg8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:9b:c4:7a:a0:9c:ed:d7:22:c3:c0:91:8d:c0:87:c4:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf180eca4e4405e877a8b63923a7588d77e39d2
Validity
Not Before: Jan 8 04:01:43 2026 GMT
Not After : Jan 9 04:01:43 2026 GMT
Subject: CN=ef627bc8627fd57e882bc680e4ed6b227e173a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4c:f2:c3:cb:f0:db:18:fe:8d:b4:3e:8c:d8:
2d:f2:85:5b:82:21:b8:41:2f:88:68:6b:01:db:dd:
26:76:54:5a:e4:c6:a4:be:a4:5b:86:63:42:f1:5d:
f6:75:81:f4:45:ff:7a:62:10:49:b3:b3:d4:ff:3a:
ec:3c:d0:de:5b:8f:37:88:57:17:e0:6c:f4:7f:c7:
49:1f:f3:12:00:ab:21:60:4e:82:19:db:a3:69:5e:
6b:6d:82:23:83:45:95:4e:86:19:e4:22:5f:1e:4a:
50:72:1c:4a:42:07:cf:04:a0:dc:e9:6a:ba:8e:50:
0f:5a:19:65:f6:6e:f4:16:67:d8:ad:46:f5:be:05:
35:ae:c5:61:73:ec:6b:5c:15:1d:7d:39:66:cb:91:
d4:8b:06:c6:cf:a8:d9:a1:e6:0a:0d:fd:89:fe:66:
4d:f9:7a:ff:50:95:29:d1:6d:e0:b1:5d:21:0a:06:
f1:1c:1a:6a:a7:33:b9:99:b8:2e:df:af:a0:c0:18:
2f:4c:c8:9c:21:0e:f0:fb:72:b1:94:b3:c2:5b:6c:
2c:9f:c3:28:15:62:ed:da:27:71:19:6c:5d:07:a4:
40:b6:e7:dd:39:33:f9:14:3c:b0:f4:8a:9f:aa:56:
64:f6:76:eb:0e:5e:3c:f6:88:9a:97:a6:72:47:71:
ea:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:62:7B:C8:62:7F:D5:7E:88:2B:C6:80:E4:ED:6B:22:7E:17:3A:73
X509v3 Authority Key Identifier:
keyid:1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:a1:cd:16:1a:e6:4d:3b:af:90:db:cb:5c:8a:cf:bb:9d:3c:
ea:b3:ab:b9:28:e4:a6:5c:24:f7:54:f6:4c:10:53:f1:90:4d:
66:fb:17:bf:5a:94:4b:92:82:bf:c2:3f:f1:35:d1:3b:36:93:
45:aa:50:66:31:d4:42:90:df:3b:6a:49:f2:03:5a:8d:74:ad:
9a:cb:34:11:6a:32:4f:b5:5c:a5:d8:26:19:54:bb:34:4a:23:
0a:0d:e3:e4:18:fa:aa:6f:44:e7:39:90:1e:d8:53:03:c6:70:
a7:22:1f:dd:b2:4b:a5:6a:de:40:27:b6:97:b7:81:5b:4c:4d:
59:fd:58:16:28:a9:13:16:18:01:a7:42:ba:14:ee:c6:d5:64:
a7:a3:18:ac:2c:78:41:c7:f3:8f:46:cb:dc:99:8e:95:6a:00:
a2:f3:e2:0a:b2:e7:ef:04:24:58:20:16:1d:c7:a0:6a:39:d4:
51:64:a2:f3:b8:b6:14:89:a7:27:aa:96:12:b8:58:8b:26:df:
25:48:26:bc:b7:9c:d2:09:b9:c6:ca:27:4d:12:de:37:ea:16:
a3:d2:17:f0:a2:75:d6:e9:a9:64:36:b1:dd:de:35:77:db:b3:
8a:0c:a6:88:af:9c:45:5c:1b:1d:69:00:bc:4c:9b:19:3a:3b:
d5:0e:40:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:51:39 2026 by rpki-client