Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: RRZFWGipH2s3C9ypaxt/XqNdXgsg9Rf/+P2MWc5yZ6A=
Subject key identifier: 4B:7F:AA:FA:E4:BD:62:BD:AB:5F:DB:54:F9:77:D0:C8:4F:BA:B5:07
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019DA48AAE1A7A149B1E6A19D7484047681A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 18C8
Signing time: Sun 19 Apr 2026 07:00:45 +0000
Manifest this update: Sun 19 Apr 2026 07:00:45 +0000
Manifest next update: Mon 20 Apr 2026 07:00:45 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: RWAvjoGEkHhjEcu5s0cxvOe/3gLDro+hQdLr5qRYBpI=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:ae:1a:7a:14:9b:1e:6a:19:d7:48:40:47:68:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Apr 19 07:00:45 2026 GMT
Not After : Apr 20 07:00:45 2026 GMT
Subject: CN=4b7faafae4bd62bdab5fdb54f977d0c84fbab507
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:68:3e:df:67:d9:a4:bc:c3:e9:f4:ea:74:4f:
c8:ce:82:e5:08:23:86:c1:9c:62:55:55:38:4f:89:
da:cd:e0:5d:59:5e:12:21:8b:72:87:17:1d:35:e8:
94:13:89:c3:ca:39:4f:df:22:de:62:c3:45:98:87:
81:4a:74:22:f2:be:92:0f:15:de:b5:11:de:34:21:
06:1c:f7:78:10:ae:44:d4:c9:da:3b:69:d7:38:10:
96:e0:7e:c2:01:3f:97:02:59:e5:93:a0:f4:6c:79:
ab:07:bf:4d:0b:9e:e9:ec:4c:9a:ce:20:97:dd:6a:
87:78:5b:74:2c:8c:99:c0:e0:7a:0b:85:d6:58:a9:
63:2f:ec:5e:6f:e7:be:c1:10:fc:e2:1e:eb:9f:4c:
bd:29:c0:c6:a6:15:b2:88:85:4a:20:14:e2:01:61:
5b:4a:f8:ba:8f:54:cd:fe:40:05:e0:09:51:c0:ae:
ce:99:63:f6:f1:44:f9:ca:25:c0:82:5d:69:06:aa:
60:74:70:18:e2:70:5a:d0:86:ed:3c:3c:4b:bb:28:
bc:fc:b7:64:d8:bc:b9:e9:84:66:44:ec:48:83:de:
f8:cd:b8:57:28:36:ed:cc:99:de:52:79:f6:53:ce:
1f:8b:0a:04:d5:e2:8c:e9:79:ea:c7:99:13:a6:b3:
d8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7F:AA:FA:E4:BD:62:BD:AB:5F:DB:54:F9:77:D0:C8:4F:BA:B5:07
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a1:22:22:3e:b0:df:fc:6e:e1:93:4d:1a:74:d4:8c:ba:e4:
84:a5:63:d9:bf:9f:b2:95:23:4b:74:56:39:06:6f:39:cf:6e:
97:ce:9b:b0:94:29:26:24:30:4a:c5:ca:38:2a:7b:84:2b:1b:
92:28:c0:4c:9f:82:19:cf:a5:3a:5f:14:bd:e3:e9:52:95:3d:
48:09:08:c1:b0:43:13:2b:7d:fd:ca:7d:72:37:67:2e:ea:de:
d3:83:ff:34:17:f0:23:aa:7e:39:f8:94:c5:ad:76:0a:22:be:
21:eb:79:4b:2c:b7:5e:9c:d6:00:0b:43:75:42:6c:4a:41:8c:
dc:26:c6:dc:eb:0c:08:b8:55:0a:79:69:77:ba:3b:fa:a9:48:
50:f2:6e:dc:44:70:3a:48:d8:9e:df:46:c9:94:eb:84:55:b6:
7f:34:51:84:23:c0:69:03:e3:5a:6b:9c:8c:22:bd:2c:d8:4d:
c4:e9:e3:fa:ba:76:2b:1c:5d:b6:9f:6f:10:48:48:c3:2a:aa:
76:cc:bb:92:6a:c0:b2:e6:d3:1b:56:ef:18:eb:5b:41:57:d0:
6b:72:23:d3:89:29:28:da:4d:b6:15:cf:e0:e5:9e:ca:9d:5b:
66:52:45:44:f5:ae:27:73:c1:91:2d:b0:6e:68:81:75:7e:92:
b3:1f:fb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:48:19 2026 by rpki-client