Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
File: Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft (raw, json)
Hash identifier: UhqinSBhYVO54cgb6PIYFbZdfs53CUdTf/6YzseNLsA=
Subject key identifier: 37:78:58:96:E8:AF:FC:73:7E:8C:2A:85:0E:8D:1A:3E:EA:89:7B:26
Authority key identifier: 1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7
Certificate issuer: /CN=1a88af93845bd25386452dbdfaa0216e13caf8c7
Certificate serial: 019D38D2CD3FD6E1A3C190B37B8259EE712C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
Manifest number: 172A
Signing time: Sun 29 Mar 2026 09:00:32 +0000
Manifest this update: Sun 29 Mar 2026 09:00:32 +0000
Manifest next update: Mon 30 Mar 2026 09:00:32 +0000
Files and hashes: 1: Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl (hash: ZYwE3iIJgDLmkA78pIDnRSCaXeKj10wLnTM6b5HMsDI=)
2: JkUDr7vH6bEJKoPEB2K_5RQGMfQ.roa (hash: kYn3aZZS3X4+BpeBTLyeB9Sj2A8UIze/R0SxrdLQR/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:cd:3f:d6:e1:a3:c1:90:b3:7b:82:59:ee:71:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88af93845bd25386452dbdfaa0216e13caf8c7
Validity
Not Before: Mar 29 09:00:32 2026 GMT
Not After : Mar 30 09:00:32 2026 GMT
Subject: CN=37785896e8affc737e8c2a850e8d1a3eea897b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:61:43:ce:a3:4c:46:61:d8:38:ea:60:7c:2d:
76:f2:6b:3c:83:9d:03:05:69:79:da:ea:92:5c:ac:
e4:7f:37:2c:82:4e:59:70:b8:da:1a:ce:de:2c:f8:
31:43:03:4a:18:21:f6:37:3b:18:b4:6f:54:f1:6f:
21:b2:3b:13:30:37:eb:e6:d2:32:14:56:dc:51:e6:
5e:5a:54:79:e7:20:57:0e:12:0f:b4:f1:fa:bc:72:
c4:01:28:97:64:7b:87:e5:ab:5a:fb:10:29:f7:f8:
5e:cd:ee:d0:aa:b3:5f:b4:d0:92:d9:c0:93:a0:f8:
cd:74:7e:4a:80:ec:49:f2:b1:07:92:cd:2d:e6:1f:
cf:59:1c:30:81:b1:57:31:ee:1d:b8:d1:69:24:33:
30:86:0f:40:fa:a7:b7:3b:81:7a:38:d9:eb:17:90:
d8:a7:b1:9c:42:f8:a4:21:f7:8b:c5:dc:e4:ea:a9:
e5:5e:e5:25:b7:f8:0a:c8:67:30:4b:71:76:a5:d8:
d0:5a:59:dd:27:16:67:58:f8:23:df:1c:5e:8b:4d:
45:98:67:70:38:be:e4:e2:43:a6:be:b6:2e:bb:5d:
90:06:84:82:85:99:45:59:e4:55:bc:6b:d7:d3:21:
a6:c3:4e:5c:d0:c5:d6:f5:5a:83:fa:21:fa:8a:d1:
a0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:78:58:96:E8:AF:FC:73:7E:8C:2A:85:0E:8D:1A:3E:EA:89:7B:26
X509v3 Authority Key Identifier:
keyid:1A:88:AF:93:84:5B:D2:53:86:45:2D:BD:FA:A0:21:6E:13:CA:F8:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goivk4Rb0lOGRS29-qAhbhPK-Mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4c7b8c-f131-4996-b8f5-5f9f0ac0fae7/1/Goivk4Rb0lOGRS29-qAhbhPK-Mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:9d:bb:d6:8b:11:63:57:50:38:f8:7c:a3:2f:08:5f:f1:46:
b2:1f:cf:cb:a2:42:2b:0a:20:8f:4d:70:69:b5:a8:95:97:84:
fe:22:42:d4:a0:d2:36:d9:e4:4d:00:8e:e4:d1:2a:4c:d1:e8:
bb:b4:dc:9b:64:1d:1c:a7:fc:9e:be:8c:06:6b:9f:ef:2b:27:
d5:4a:c8:2a:d4:09:f7:08:30:c6:3f:ee:fe:83:e7:4f:8a:45:
c1:75:77:98:0d:85:48:87:5e:57:99:ca:8a:f3:bd:63:90:62:
c1:21:df:b9:b0:cf:65:9a:cf:07:9d:d2:19:4c:96:9e:7a:69:
dd:cf:f3:d4:f8:49:ef:d9:22:22:9c:64:3e:d4:48:dd:d9:a4:
ee:eb:8a:7b:c5:b7:9d:db:de:d5:fe:cc:08:d5:1c:38:63:cc:
99:73:b9:a8:a4:39:22:dd:5c:78:17:01:3f:44:ed:72:37:02:
80:7e:70:4c:31:be:05:4f:f3:70:3a:fc:82:97:d5:b9:77:b2:
00:9c:77:c2:c4:3b:3e:b3:b1:54:96:69:0c:b7:5e:e4:eb:0e:
35:a8:2f:90:93:ad:4f:f0:da:5e:5f:41:d4:e8:8d:4f:1d:a3:
6b:d6:2b:12:1e:b3:3f:3e:0c:60:ab:e5:48:dd:91:57:6c:28:
55:72:48:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:50:09 2026 by rpki-client