Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: PQ/OsBS8bFWRV/reF4Key8HXhmiWJ3WQVNFUgDLoqA4=
Subject key identifier: 29:C0:6A:AC:47:C1:8A:4F:BB:C6:64:57:5E:19:15:A1:3F:DC:70:73
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 019EC25C44BB48F7CCDA3F2C98CBB7EE8422
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 19:01:27 +0000
Manifest this update: Sat 13 Jun 2026 19:01:27 +0000
Manifest next update: Sun 14 Jun 2026 19:01:27 +0000
Files and hashes: 1: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: qm/moJO3yRt1i23fItVByRn5xjD+zOtBX3YyMzsGTKs=)
2: ygzwdt05FZY5UgU4PNRonpu2D5Q.roa (hash: iuwiLZg36gzzO6D5OpB0qDgYjkp9/xl1ZMAuUek9+EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:44:bb:48:f7:cc:da:3f:2c:98:cb:b7:ee:84:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jun 13 19:01:27 2026 GMT
Not After : Jun 14 19:01:27 2026 GMT
Subject: CN=29c06aac47c18a4fbbc664575e1915a13fdc7073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:fc:03:70:dd:25:da:0b:18:53:6c:24:dc:
b3:52:72:69:66:c1:9d:e2:5d:a4:11:ec:1b:11:f3:
20:89:61:4e:24:02:a4:32:d7:d9:b3:8b:6b:4c:c0:
df:12:cb:e7:e8:c9:44:d3:ce:38:12:f2:d6:25:7d:
3a:6a:8f:ba:a8:09:73:3f:77:f3:7c:9c:f0:64:28:
d1:28:6a:02:b6:a1:a5:4b:06:a3:ec:07:61:71:7c:
43:de:40:e8:be:53:a5:fd:de:c0:a4:01:79:e3:f0:
d9:1f:53:99:e3:f2:85:15:cb:09:c3:1b:1e:41:65:
43:be:c4:17:19:71:e3:77:d7:85:e3:57:e3:e8:1c:
98:e2:2b:b7:50:1e:a4:b0:e2:57:70:c4:68:0b:1b:
0d:be:33:98:94:1d:81:bf:49:e2:21:0c:c5:6a:e5:
6a:f6:c2:95:e8:aa:5e:a2:82:ba:d9:01:01:54:52:
20:d0:8e:4f:aa:78:99:5e:48:ee:5b:d3:25:f5:05:
dc:95:85:a0:20:cd:60:45:bc:65:93:c5:12:42:7e:
8b:61:25:5f:21:bc:e0:f0:67:01:a1:f0:32:e8:78:
be:07:5b:c5:ee:11:bd:d2:3f:1d:03:5f:80:f0:02:
93:82:35:86:36:56:9a:c6:a8:ba:91:61:a4:f6:b8:
96:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C0:6A:AC:47:C1:8A:4F:BB:C6:64:57:5E:19:15:A1:3F:DC:70:73
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:32:e8:85:38:52:86:35:1e:be:fb:22:90:56:90:a3:c0:a5:
80:b9:f8:20:5a:a2:55:27:25:58:e7:a6:db:ba:6a:9e:cd:04:
3c:42:03:0e:aa:9f:d6:60:d8:29:ed:4e:ff:79:d5:7b:25:a2:
6f:c5:a1:1e:e4:ac:76:60:7d:bb:1e:79:30:03:26:21:61:e8:
df:f8:53:1a:f2:b4:f3:f2:a3:a0:8e:43:c9:6c:ea:93:c9:6a:
21:f1:c4:71:8b:dd:cb:1b:c0:63:4c:b4:9a:c4:38:c8:db:72:
60:75:4c:8b:fd:d3:f4:80:02:73:f6:c9:43:3a:83:93:93:3d:
ba:af:12:6a:0c:05:fe:c0:59:b3:a4:71:c5:f1:87:f8:d2:6f:
f0:0b:97:23:d0:04:4f:9e:ce:14:fc:2d:01:7c:dc:ce:67:3d:
e0:27:23:62:59:ae:2d:18:fd:c8:fa:fa:a0:3b:66:92:15:46:
ed:58:01:58:45:37:9d:41:5c:08:e1:d4:96:56:43:86:13:3b:
b3:fb:c1:d3:f2:6b:a4:db:6d:61:70:9a:a1:ff:d4:a0:59:19:
9d:80:5d:1a:f0:ab:ef:7f:b9:3d:25:74:ee:33:57:4b:50:d2:
de:d5:de:9b:e4:50:d5:ee:9f:ed:da:c2:9f:ce:86:8e:80:75:
25:aa:74:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:43:35 2026 by rpki-client