Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: K7W3OAPhNsfEPvjFyIwNJCBLcCJnjnVooGG7v3gbBGo=
Subject key identifier: A7:28:81:24:81:A5:3A:6C:82:3A:3A:03:07:D1:F4:51:EB:C3:E8:46
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019E2023680A98739EA402C554D6A7F0D141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 07:00:51 +0000
Manifest this update: Wed 13 May 2026 07:00:51 +0000
Manifest next update: Thu 14 May 2026 07:00:51 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: 8AATyLwqFS8HdzOSQogCz8RE/YIQ4EomrzWSsNl5D/M=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:68:0a:98:73:9e:a4:02:c5:54:d6:a7:f0:d1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: May 13 07:00:51 2026 GMT
Not After : May 14 07:00:51 2026 GMT
Subject: CN=a728812481a53a6c823a3a0307d1f451ebc3e846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c5:83:3d:6e:47:7f:ad:ff:f3:c0:73:15:f5:
c6:33:7f:12:68:b8:3e:a1:6e:94:74:c7:a4:4b:08:
44:4f:21:80:44:86:35:4b:d8:d2:62:6a:38:25:f0:
40:0b:5b:7d:56:7e:59:d7:35:4b:c9:38:20:17:00:
a2:76:f7:9e:e5:b7:a6:02:3b:cd:92:b9:b4:03:3a:
b5:7d:9a:92:41:c9:ec:1f:fd:8c:24:11:d5:cc:0e:
bb:93:55:63:05:e7:6f:63:08:21:4e:25:db:b2:eb:
b7:0c:af:0b:ba:51:97:fa:61:1f:f5:77:7d:3c:ea:
87:eb:e2:dd:7d:ff:46:0d:c3:e4:5c:e6:ea:32:2b:
87:bb:21:fb:ce:f9:e4:66:41:d8:bd:1a:ae:fb:3b:
96:86:a4:62:34:0a:4a:ba:27:c5:02:95:a6:49:9a:
6e:24:21:0f:3c:e1:b8:18:ae:53:55:14:bd:c0:53:
c7:41:f6:92:90:4c:e4:df:c7:59:3c:d8:12:ed:9f:
59:3d:19:ab:07:7e:f8:de:12:31:57:53:63:ff:e2:
31:d6:3b:79:20:7d:14:b1:5f:a0:12:3a:7b:29:f2:
9c:17:3e:cb:49:cc:f2:1e:57:4a:6e:b7:c4:5f:0c:
17:17:b8:a5:c7:7b:2f:45:84:77:dd:1b:b7:67:6e:
0d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:28:81:24:81:A5:3A:6C:82:3A:3A:03:07:D1:F4:51:EB:C3:E8:46
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a7:c6:1e:0a:63:c0:ea:8a:39:02:e5:1b:e6:9d:31:3f:bf:
79:98:55:df:ff:44:72:5a:8f:6f:ff:cf:e5:e1:a3:dc:0e:f8:
15:ac:97:94:ca:eb:76:00:ab:44:15:16:93:0c:e5:30:4a:32:
1a:cd:39:6e:d7:63:35:95:a9:1a:48:8f:95:2e:cb:1c:aa:d6:
4b:f2:1e:e1:77:29:2a:fb:11:17:01:46:14:77:c7:ec:53:e6:
7a:d2:b2:dc:0d:91:a2:4c:60:e4:2f:64:41:14:73:1c:a0:b6:
87:63:a0:3c:d3:43:49:79:2c:54:dd:cc:af:45:ad:cf:46:85:
22:a1:90:60:62:b0:21:50:49:87:a1:58:37:a2:81:98:6a:fb:
0a:0f:4f:46:f9:61:02:ce:83:dd:bb:6b:60:44:ac:95:7c:fc:
03:33:e0:a6:b6:f4:fd:ec:ad:2b:e0:ab:7a:d7:9e:9a:0e:8c:
6b:fb:d6:62:06:6f:69:1d:f9:f6:29:98:ee:71:f6:50:0a:1d:
01:90:c3:dd:11:ef:2a:53:b2:3a:5a:cc:d9:a8:50:fa:80:52:
e4:ca:bd:ad:63:6a:14:fb:a3:ff:b8:7e:db:1b:8a:7a:e1:fe:
6f:32:2a:19:82:db:f4:72:31:b0:59:c7:49:23:c5:a8:5d:8c:
36:d4:7f:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gI2gKmHOepALFVNan8NFBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNzgxYzg0NTMzOTkwMGY3ZTZiMjAzM2U2Mzg4OGI1M2Fl
NTc4NzUwHhcNMjYwNTEzMDcwMDUxWhcNMjYwNTE0MDcwMDUxWjAzMTEwLwYDVQQD
EyhhNzI4ODEyNDgxYTUzYTZjODIzYTNhMDMwN2QxZjQ1MWViYzNlODQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsWDPW5Hf63/88BzFfXGM38SaLg+
oW6UdMekSwhETyGARIY1S9jSYmo4JfBAC1t9Vn5Z1zVLyTggFwCidvee5bemAjvN
krm0Azq1fZqSQcnsH/2MJBHVzA67k1VjBedvYwghTiXbsuu3DK8LulGX+mEf9Xd9
POqH6+Ldff9GDcPkXObqMiuHuyH7zvnkZkHYvRqu+zuWhqRiNApKuifFApWmSZpu
JCEPPOG4GK5TVRS9wFPHQfaSkEzk38dZPNgS7Z9ZPRmrB3743hIxV1Nj/+Ix1jt5
IH0UsV+gEjp7KfKcFz7LSczyHldKbrfEXwwXF7ilx3svRYR33Ru3Z24NeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKcogSSBpTpsgjo6AwfR9FHrw+hGMB8GA1UdIwQY
MBaAFK94HIRTOZAPfmsgM+Y4iLU65Xh1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTIt
NWNmMzdhMzQ4MzBkLzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9kMWM3MWQtYWE1MC00ZDc4LThlNTItNWNmMzdhMzQ4MzBk
LzEvcjNnY2hGTTVrQTktYXlBejVqaUl0VHJsZUhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKqfGHgpj
wOqKOQLlG+adMT+/eZhV3/9EclqPb//P5eGj3A74FayXlMrrdgCrRBUWkwzlMEoy
Gs05btdjNZWpGkiPlS7LHKrWS/Ie4XcpKvsRFwFGFHfH7FPmetKy3A2Rokxg5C9k
QRRzHKC2h2OgPNNDSXksVN3Mr0Wtz0aFIqGQYGKwIVBJh6FYN6KBmGr7Cg9PRvlh
As6D3btrYESslXz8AzPgprb0/eytK+Creteemg6Ma/vWYgZvaR359imY7nH2UAod
AZDD3RHvKlOyOlrM2ahQ+oBS5Mq9rWNqFPuj/7h+2xuKeuH+bzIqGYLb9HIxsFnH
SSPFqF2MNtR/og==
-----END CERTIFICATE-----
Generated at Wed May 13 13:59:03 2026 by rpki-client