Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: D0QXYeG2o/ona1BnjSjmMj0TKApcpW2nRPj8einU3jk=
Subject key identifier: D4:B2:7E:6E:27:31:6F:F2:35:35:67:A7:9D:2E:99:0E:DB:F4:4A:83
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019D386577EE088D21E8046A70A680BCA0C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:01:06 +0000
Manifest this update: Sun 29 Mar 2026 07:01:06 +0000
Manifest next update: Mon 30 Mar 2026 07:01:06 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: kcReCI/vaiV41ARMAUb7W0DoZYU5jfwh9Na7Lhk3RWM=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:77:ee:08:8d:21:e8:04:6a:70:a6:80:bc:a0:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Mar 29 07:01:06 2026 GMT
Not After : Mar 30 07:01:06 2026 GMT
Subject: CN=d4b27e6e27316ff2353567a79d2e990edbf44a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:58:a9:21:b3:88:1e:22:e6:0a:02:44:fd:6a:
c5:18:ae:5e:bc:44:fe:51:63:5e:0c:98:d8:1e:57:
18:ef:11:d8:dd:0e:5d:09:32:0c:f8:13:99:5f:c2:
22:4b:bf:70:b4:5f:81:cd:56:fd:fe:82:e1:2a:40:
ec:1b:5f:ea:68:f4:18:89:a9:1f:52:a6:ed:e9:c4:
46:22:31:f5:dc:7a:87:66:57:ad:b9:4d:a4:4f:b6:
0b:cf:b6:cf:30:89:a9:98:a3:29:c9:84:1b:70:80:
f5:85:88:fd:30:35:3e:2e:16:fe:f3:1f:58:ab:97:
62:fb:cf:53:e6:a5:5b:f6:ca:60:a4:2d:43:12:1e:
f2:55:45:b6:de:43:9c:1c:14:2a:85:3d:83:cf:c7:
49:ce:be:f8:fe:99:cf:85:60:0a:fa:06:fa:cf:7b:
ed:e0:10:e8:99:5e:aa:da:58:94:44:76:ac:d8:9a:
dd:08:b9:88:d2:d6:2a:7d:d5:18:54:b0:88:b2:c1:
45:d1:2f:10:ee:4a:e7:e6:36:ea:d0:35:4f:aa:49:
5a:2e:c1:c0:20:29:3f:2f:fe:56:24:04:d2:bb:5f:
03:78:66:0c:a4:6b:bb:e0:97:71:bc:87:af:dd:73:
00:b3:ea:53:b1:18:d7:86:c5:5e:8b:e5:e7:00:f2:
5e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B2:7E:6E:27:31:6F:F2:35:35:67:A7:9D:2E:99:0E:DB:F4:4A:83
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:39:10:53:39:63:8e:ac:0b:6e:b5:18:00:ad:2b:0d:9b:1a:
4c:f3:94:71:95:e9:84:60:19:db:81:69:3c:a2:f7:66:fb:5e:
41:1c:a0:75:76:fc:df:8b:f6:23:44:da:2f:ca:a9:c3:f0:83:
47:b0:f7:ce:d2:b0:31:b8:4c:30:55:f4:83:1c:55:c0:ea:ef:
69:4d:40:5e:12:a2:f0:1e:c3:ea:25:b2:d1:c6:bc:42:5e:1e:
2a:bf:da:2a:21:08:97:c1:8d:96:f1:c9:bd:38:42:fb:6a:8b:
4f:4a:4f:36:ea:a1:72:40:f7:18:01:38:eb:02:fe:76:64:bd:
56:b4:ff:98:f5:04:ed:c1:c6:6f:22:28:6c:92:5d:ba:30:cc:
a9:37:5b:b8:58:4a:1f:47:e0:a6:46:be:0d:5d:04:fb:59:ab:
8f:a4:52:82:4b:b8:e3:c7:41:aa:e2:b5:1e:d6:12:79:ce:1a:
5d:08:88:07:d5:8a:83:d2:85:cc:05:13:dd:20:3d:d5:7c:37:
cb:38:1b:34:36:1f:fc:82:36:89:85:77:db:04:c0:14:c8:6b:
17:32:6a:af:d0:a2:29:0a:7a:15:d8:87:fe:a8:4f:03:e6:17:
57:18:47:ab:9b:a1:4f:45:31:f6:f4:5b:dc:f2:6b:53:e2:43:
16:2e:39:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:47 2026 by rpki-client