Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: zNYCncLXJXhztfea2u/7gq5zUwNcrMVswtJgonvFEVc=
Subject key identifier: 46:A9:A8:DE:0B:02:4B:AE:23:EC:F4:12:BE:96:73:C1:97:4A:BA:A3
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019D270430E7730826093BD1DDB028F34692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:01:19 +0000
Manifest this update: Wed 25 Mar 2026 22:01:19 +0000
Manifest next update: Thu 26 Mar 2026 22:01:19 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: +BfsGPDGTxqxKtSUST2iC0omkzy51Mqp4rH0Vj6FPHY=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:30:e7:73:08:26:09:3b:d1:dd:b0:28:f3:46:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Mar 25 22:01:19 2026 GMT
Not After : Mar 26 22:01:19 2026 GMT
Subject: CN=46a9a8de0b024bae23ecf412be9673c1974abaa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5f:0d:ed:08:5d:83:a7:2f:80:2f:c3:fd:14:
cc:2c:76:d1:22:e5:52:80:4a:9e:cf:16:24:1c:f4:
7a:70:2a:63:2a:a0:cf:3d:91:43:03:ea:fd:c2:18:
c3:60:c6:72:7f:25:40:a1:52:8e:64:14:4c:99:2a:
d6:d9:58:bf:cb:78:15:08:2c:8d:3c:30:38:d0:89:
be:8c:8b:b2:a8:68:f3:e2:01:a2:e1:b4:9c:59:73:
cd:10:07:9d:05:17:e4:24:65:72:06:c7:b2:4b:97:
46:0f:e5:73:f3:e4:35:e5:8d:f4:66:cf:83:48:07:
e0:0e:05:8f:36:79:87:e2:2c:b5:3c:ed:f7:d5:54:
4e:bf:48:9e:be:59:5e:64:8c:a5:14:39:f6:e1:0c:
81:24:2f:97:e3:d2:7f:51:b4:73:b0:5c:44:3b:79:
da:11:40:11:7e:02:8a:78:8c:a1:64:79:16:f1:ba:
3d:2b:73:a5:02:52:9a:20:5a:2c:52:a0:09:f2:54:
b4:1d:08:a6:e7:f2:41:19:65:e8:7c:54:be:09:99:
9c:ec:cc:73:39:dc:7f:d5:ee:f3:8c:57:d8:68:ef:
2d:e7:15:df:5f:b7:1c:f2:a4:7a:57:66:df:04:df:
5e:17:7d:5b:76:fb:71:69:63:05:d7:37:f5:de:49:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:A9:A8:DE:0B:02:4B:AE:23:EC:F4:12:BE:96:73:C1:97:4A:BA:A3
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:7e:b1:a5:3c:52:b5:f6:77:0a:8d:d3:e3:3d:1a:aa:55:f5:
4f:13:d8:ba:0f:0f:3d:42:f9:ad:f0:c6:50:65:2b:c3:da:ff:
5a:c2:c4:c6:9d:f3:25:be:62:12:50:e8:90:ff:aa:1b:fa:9a:
46:58:03:27:41:42:fc:58:7c:5a:e4:9e:42:c1:02:68:b2:e1:
1f:d4:7f:b3:0a:3c:c8:1c:14:9a:95:e0:fb:0c:fc:86:91:9b:
8a:c4:07:a8:a4:b6:0f:47:d9:63:29:46:fd:ce:d4:ce:80:ec:
8d:be:4b:46:d3:4e:05:f6:ef:b8:94:9c:53:53:31:0e:1d:b4:
bb:a1:64:ed:a5:0b:de:cc:fb:32:c5:e6:83:1f:bb:41:ee:81:
e8:f2:2a:19:b7:39:30:bc:92:26:7e:38:36:ee:f3:5e:53:99:
d2:ff:23:9a:09:64:85:91:de:5a:88:9d:d8:7e:f0:37:3a:01:
75:04:cf:4d:63:8b:49:5a:63:ca:3d:24:95:a3:5e:c5:ec:1e:
d2:de:50:e0:c6:19:f6:2f:c3:99:08:0a:6b:7d:64:b7:4c:ee:
01:5c:c7:e9:6d:37:c4:1b:ea:94:a0:79:37:a3:a8:43:28:40:
45:b3:ca:b6:3c:ae:3a:73:e8:a8:a6:6d:b7:d3:a4:b9:6c:e3:
22:77:eb:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:50 2026 by rpki-client