Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: LGqDphabTOS/IJOf7wLvaUlwCBKYpH87iNRJpAXjzgg=
Subject key identifier: 02:F6:99:C5:B5:59:78:00:2A:5C:0C:AD:2A:D2:40:1B:56:64:CC:2F
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019E3185D51ABD7FAC216598FA51EB8824AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 16:01:54 +0000
Manifest this update: Sat 16 May 2026 16:01:54 +0000
Manifest next update: Sun 17 May 2026 16:01:54 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: stURGf1HGgU5I5HJYcWfTPFMrr6kzUQKqAKnxEu62VE=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:d5:1a:bd:7f:ac:21:65:98:fa:51:eb:88:24:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: May 16 16:01:54 2026 GMT
Not After : May 17 16:01:54 2026 GMT
Subject: CN=02f699c5b55978002a5c0cad2ad2401b5664cc2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:91:52:80:80:a7:cc:f9:a2:05:30:16:58:e0:
08:61:76:67:36:91:b8:5e:d3:3f:b6:a3:c5:62:fc:
05:cd:04:1c:4b:d9:ed:1d:66:40:e4:43:ca:14:90:
b6:dd:8f:7c:cb:be:bd:4f:c5:69:9c:b8:f3:b2:6c:
4b:d9:9d:df:32:e8:49:73:fb:c6:d1:ad:83:6c:ad:
c2:ac:e7:4e:77:78:c7:43:52:e0:fb:ab:8e:be:1d:
fd:26:54:42:16:b9:1c:25:69:db:f9:74:04:fe:d4:
04:40:de:71:82:2d:5c:8d:00:c1:7f:2f:77:47:c9:
ad:cf:18:2d:94:e1:eb:3f:25:11:28:5d:cc:b7:96:
00:8e:f6:91:43:ad:a5:d7:b1:7d:13:a9:c5:ee:a4:
58:f1:56:a1:d2:45:de:d1:f0:0c:b8:77:6a:a2:67:
0a:0c:5f:69:8d:a6:83:1a:fb:92:2c:ac:25:8e:71:
5c:32:8b:03:37:f2:c6:33:9f:ef:27:8f:f6:fd:b7:
5a:97:54:cc:2e:2d:ba:0b:2e:50:fa:fd:2e:7b:e2:
a6:85:c7:98:47:61:db:03:56:85:88:8d:9f:5d:3d:
ca:0f:ef:37:d9:4e:91:f4:82:88:c9:c2:97:5d:bb:
7a:d0:d6:49:ba:fb:b4:c8:5c:cb:8c:6c:5f:61:fb:
9a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F6:99:C5:B5:59:78:00:2A:5C:0C:AD:2A:D2:40:1B:56:64:CC:2F
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:fe:2e:af:53:b1:b5:a7:34:ef:e1:f4:f7:30:e7:4a:30:ee:
28:57:e9:53:88:3e:4a:6f:c9:82:f1:3d:d5:3d:9a:47:eb:54:
2f:25:86:3a:92:d2:3a:6c:d9:81:08:e7:9e:d4:61:9a:0f:12:
90:7d:85:c3:b6:42:3e:39:17:3c:4a:81:27:11:4a:5a:93:09:
d2:df:da:96:86:a0:d6:57:90:b4:6b:a5:e5:4d:78:5b:f1:64:
37:59:e3:60:28:ac:d1:1d:60:0e:81:40:27:20:ac:f8:61:ed:
71:08:57:35:08:6d:2e:94:06:7f:3c:11:9b:eb:d1:bc:64:6c:
9e:cd:34:dd:c8:cf:be:95:2c:7b:67:7e:0d:a6:b1:0a:0a:82:
df:8f:f0:7f:7c:86:03:26:36:c1:c5:19:e2:b4:38:c6:d2:5e:
06:c8:60:3a:a5:d7:22:a0:0e:ae:a8:4e:71:09:e5:2b:14:f5:
d3:7b:f7:e9:3b:1e:12:5f:d7:2b:1b:98:2e:f5:5a:5e:c1:1e:
a6:31:9e:49:d2:2e:3f:b8:65:32:0b:98:31:c8:fc:a7:74:0f:
f3:28:f1:2c:66:41:e3:89:be:44:fe:e5:38:ca:61:36:12:6b:
a7:a1:aa:6e:d0:d5:2c:cd:8d:f6:46:f0:d2:75:b4:2d:1f:35:
b9:7e:02:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:01:12 2026 by rpki-client