Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: t+kZTam6Clq5l9xy6Ws8dx0DsGjBT/x5qK0uktqL71E=
Subject key identifier: 88:CF:74:D1:FA:96:90:B8:05:AD:95:F7:29:C0:17:4F:54:6C:18:A4
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 019D3A1CA1D30188F309C182EC54FD3BDE4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 15:00:48 +0000
Manifest this update: Sun 29 Mar 2026 15:00:48 +0000
Manifest next update: Mon 30 Mar 2026 15:00:48 +0000
Files and hashes: 1: BR3wphovR_RPvqDUE27elOUu4-g.roa (hash: /d+bM8z6dvoIJGOJEV4LkgmXfHsdFv9RsRrj+TP+634=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: xWxKGpSbzAYtcd/PiRgCcatKsltIJ8fnvod7VXgW7NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:a1:d3:01:88:f3:09:c1:82:ec:54:fd:3b:de:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Mar 29 15:00:48 2026 GMT
Not After : Mar 30 15:00:48 2026 GMT
Subject: CN=88cf74d1fa9690b805ad95f729c0174f546c18a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b9:29:cf:e9:65:6a:ba:60:f2:24:61:bf:2c:
cb:ef:38:cd:10:48:75:28:8a:b6:6d:04:ec:7a:7c:
3f:bf:9c:8d:70:d8:93:05:53:c2:95:fb:f9:fc:13:
fc:a5:96:59:9d:28:aa:b7:4b:f8:8e:11:be:ee:63:
59:ed:45:c7:93:c1:92:dd:6b:5c:d9:93:b5:b2:c7:
d9:a5:c6:40:28:eb:06:e9:40:a2:62:04:fa:d8:ed:
38:45:a4:a8:37:18:d1:bf:49:18:05:33:e8:e2:78:
0f:82:da:e6:d4:89:b2:b4:37:81:7f:ab:bf:6d:69:
22:7f:9e:f2:40:0e:c2:0f:d3:44:d3:0d:38:c9:51:
c0:e5:4e:5d:5b:f4:e1:3a:8a:50:eb:56:ee:6b:58:
cc:bc:27:27:66:b5:b5:7f:90:0e:53:ba:cf:dd:70:
a2:8f:fd:1e:24:88:ba:71:c5:c0:25:5a:4f:ab:0a:
8d:7d:52:66:b5:92:75:56:dc:cd:28:f2:9d:33:58:
ef:96:f6:fc:4b:7d:9c:37:4d:16:8f:f9:07:59:bd:
2d:f4:32:2b:13:0c:82:18:05:b1:74:4b:e1:73:ec:
66:d3:06:d6:18:b7:ec:b3:66:1b:f1:11:e7:8f:7f:
49:8a:48:9d:a9:ba:40:a1:52:28:fc:42:dd:e6:32:
c3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CF:74:D1:FA:96:90:B8:05:AD:95:F7:29:C0:17:4F:54:6C:18:A4
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b8:6a:a1:43:3a:eb:82:2e:72:58:21:3e:9d:12:2f:b4:20:
4b:fe:fc:b5:95:20:b1:39:db:bb:14:8d:87:8b:c2:d8:27:dc:
30:1f:5a:69:f0:ac:81:29:6c:ff:8b:9f:6e:4b:16:36:0a:24:
93:14:0f:de:0b:43:fa:b6:91:6a:54:58:bf:3a:25:c4:95:a3:
21:63:c6:9b:51:ad:47:d9:e7:30:25:9a:1c:73:16:3e:18:0d:
74:8a:54:52:d6:8c:a3:9b:44:fb:00:16:a5:02:a4:9c:49:84:
5a:90:ad:e2:6a:26:0c:34:ed:71:b5:28:31:8b:12:1d:5c:ee:
9f:2b:f4:e4:34:d9:73:00:f9:77:4a:bc:87:23:9e:40:b2:2e:
d5:2d:ee:bb:cd:c7:39:26:f7:20:87:0d:6c:57:0c:c5:15:f3:
ea:63:de:81:63:bd:f1:14:bb:c2:04:5b:ec:87:ac:97:7a:d7:
3b:d6:00:3e:77:8f:2a:ab:93:5b:e4:b1:63:2e:2a:e2:0b:19:
6a:d6:ec:86:f3:8a:30:b5:30:64:4f:1c:b6:3b:65:f5:d0:25:
50:d7:9d:49:ec:d0:0e:5b:1b:0c:c9:83:f4:16:6c:fa:b6:60:
78:ce:f5:05:35:97:24:c9:19:13:6d:28:53:7b:ca:a5:98:ba:
cb:47:2c:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:57 2026 by rpki-client