Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: 2V6ECGlzcZ/9hkhyqxDWTUUcgN7oKuD0gxIjBFg4AEk=
Subject key identifier: 48:3A:76:86:CF:09:46:7B:27:31:08:F4:F6:02:A7:D6:E7:6F:06:CE
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019F1943B54404F2FB72F050003EE634573C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1989
Signing time: Tue 30 Jun 2026 16:01:35 +0000
Manifest this update: Tue 30 Jun 2026 16:01:35 +0000
Manifest next update: Wed 01 Jul 2026 16:01:35 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: mIOGTYmxHjMBBNHv0pAFnjrjpgHOOq00W9ra248t98k=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:b5:44:04:f2:fb:72:f0:50:00:3e:e6:34:57:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 30 16:01:35 2026 GMT
Not After : Jul 1 16:01:35 2026 GMT
Subject: CN=483a7686cf09467b273108f4f602a7d6e76f06ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:72:54:ca:3b:32:e9:b1:20:15:bb:8f:18:c3:
bf:ee:eb:3c:33:b5:99:f4:8c:35:02:b2:2e:eb:f4:
07:52:50:dc:d4:82:9c:90:dc:25:13:06:07:38:47:
a4:ec:d5:46:28:db:1a:ab:a7:98:fa:00:d9:17:12:
7d:13:5d:dd:ac:57:40:a7:eb:10:e3:77:a6:48:ae:
08:a7:ca:74:7b:d8:bd:5d:3a:b8:44:47:a2:50:8d:
29:51:55:37:98:6b:2d:33:29:bc:af:d8:a6:f8:13:
6b:bc:e1:5b:c1:07:cf:e6:ae:03:d5:64:b8:27:fb:
e2:b6:b8:74:b3:94:01:80:a0:3e:83:9a:6c:0c:57:
11:70:3e:c5:6b:56:34:b2:5f:fc:72:54:dd:e2:2c:
5b:4b:bb:56:dc:ce:da:91:dd:59:6d:92:2a:0c:c4:
fb:2a:dd:e8:ef:6c:d4:6c:bd:d3:a4:63:32:3b:5f:
19:d5:97:72:60:e1:dd:03:2e:25:25:71:6b:6b:27:
71:23:c7:82:00:7b:1d:d8:e9:2e:28:1a:94:5f:11:
ff:09:fa:81:c9:85:a0:d1:09:76:df:21:ce:56:58:
67:66:a2:70:f8:48:6b:f5:a5:e8:b2:03:70:a7:00:
79:bd:6e:52:6d:0f:6b:d0:d5:bd:a0:a0:fa:a0:8d:
b5:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3A:76:86:CF:09:46:7B:27:31:08:F4:F6:02:A7:D6:E7:6F:06:CE
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:15:af:cc:78:7e:41:f6:68:8a:a3:ba:7f:b0:c7:67:25:b3:
3a:d8:04:00:a2:5c:03:78:71:d8:e6:3a:3d:d6:26:d9:af:fc:
89:16:1b:eb:49:44:61:4a:f2:cf:1b:ef:58:45:ec:4f:8b:09:
e3:24:8d:80:2a:27:6a:a2:02:71:c0:95:b0:16:fa:78:75:ef:
ea:d6:ac:74:d1:a6:ee:9f:81:b7:89:b2:4e:73:cc:d8:65:46:
fb:39:d1:51:19:1e:21:36:08:76:67:f4:f0:c6:33:9b:f3:c1:
4e:b9:4e:a5:08:43:d5:99:8f:e9:d6:34:4a:f3:6e:44:7b:cc:
4f:9d:e3:f1:ff:b0:d5:47:75:ab:0b:4a:aa:34:b3:c2:b5:99:
b6:d4:94:21:42:f2:06:c1:35:55:55:88:3d:f7:7a:7b:e8:b2:
99:1e:ff:79:15:f4:54:a9:dd:d5:47:15:2c:59:93:1e:64:f4:
70:45:c1:00:71:fc:28:26:fd:9a:5b:ed:21:89:66:68:f3:c2:
63:f4:d7:54:2d:c6:8e:14:0a:5a:6e:2a:31:0f:bc:31:67:01:
50:e0:5d:6f:fa:83:4a:d5:cb:b5:37:c6:03:c0:ad:c5:7a:29:
cb:04:66:b8:31:75:5c:c2:89:75:69:3a:6e:6d:8b:69:31:10:
17:2e:a9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:15:28 2026 by rpki-client