Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
File: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft (raw, json)
Hash identifier: iuiP5DprQVpP5Uh2WvOJddxrxg/mVcQWjn0L+de7u6c=
Subject key identifier: B1:77:8E:27:B7:36:C8:D6:39:EA:DC:D4:99:9A:E8:13:25:EA:A7:22
Authority key identifier: 1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
Certificate issuer: /CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Certificate serial: 019D389BB2350DBC04D40C505DE840F4A14C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
Manifest number: 14E2
Signing time: Sun 29 Mar 2026 08:00:20 +0000
Manifest this update: Sun 29 Mar 2026 08:00:20 +0000
Manifest next update: Mon 30 Mar 2026 08:00:20 +0000
Files and hashes: 1: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl (hash: Wg0s6bPOWVeFh+mB2v02dYLJqgAUDEK4dGQ+G5Z+xJc=)
2: O2yqyVYgMd1D21b33Ew-cuZUWKs.roa (hash: mXmtbWNjV9pCi5BRUwRDhllYcEQ3x1WSO9bUZGlzGjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b2:35:0d:bc:04:d4:0c:50:5d:e8:40:f4:a1:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Validity
Not Before: Mar 29 08:00:20 2026 GMT
Not After : Mar 30 08:00:20 2026 GMT
Subject: CN=b1778e27b736c8d639eadcd4999ae81325eaa722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:8d:a0:59:6e:36:a8:ac:06:4c:cd:65:22:
ce:c2:10:77:f2:23:e9:ac:64:58:4d:66:f2:f9:45:
9b:3d:76:16:22:20:47:97:d5:ff:95:18:4b:0a:6f:
c1:3f:fb:a8:34:cb:bf:25:f0:8b:ba:87:3f:6e:a4:
21:09:5d:94:e4:af:65:14:d1:fd:83:f2:4d:a4:45:
03:ec:d5:81:97:0b:05:90:c9:75:bd:2c:c6:3c:0b:
22:83:27:93:66:ff:92:af:65:c5:38:0a:86:99:6e:
55:0a:24:1e:84:c5:ac:7d:74:8a:76:dc:cb:f8:f8:
22:86:e8:f3:95:22:90:49:71:90:45:07:45:dc:be:
14:19:9e:e6:8d:15:51:7e:16:f0:26:14:02:c0:d9:
ea:e8:c4:83:a1:af:b1:f7:7f:cb:13:9f:56:dc:5c:
4a:b5:16:1d:2c:b0:29:f5:e6:7c:e7:b5:9d:a5:78:
95:30:9d:45:8e:cf:82:bc:a3:57:e4:6a:4d:27:eb:
a7:6d:e7:d9:bf:af:96:03:fb:15:f4:f1:ed:b8:d6:
51:51:e0:77:80:e9:d6:4a:d4:9b:13:d9:ea:39:02:
75:86:ad:5e:7f:00:2b:c5:a5:52:c6:57:2b:7b:da:
83:9c:1d:df:96:5d:7f:d1:7c:76:8f:27:f7:f2:30:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:77:8E:27:B7:36:C8:D6:39:EA:DC:D4:99:9A:E8:13:25:EA:A7:22
X509v3 Authority Key Identifier:
keyid:1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:2d:a1:d4:83:e9:d0:24:02:9f:5a:49:48:bc:af:65:73:56:
a2:b6:6b:80:9a:41:0f:7a:20:97:03:e6:df:e1:9c:ed:a3:16:
47:c4:fd:79:f8:71:64:1a:ac:56:86:fe:33:f7:db:32:1d:49:
43:62:9d:6c:09:01:70:00:d7:b4:58:60:bc:54:d5:cd:a4:4f:
2d:c3:39:f9:09:57:15:6a:53:43:8d:6f:63:67:5f:f3:8e:4e:
76:61:e9:13:84:58:88:bb:4c:8f:f8:2c:59:9d:80:03:91:2e:
11:11:d5:fb:6f:f1:26:d2:00:6c:ab:18:ce:03:12:03:44:be:
6a:73:30:01:d8:24:9a:62:8a:f7:9a:05:2b:72:a0:15:12:b5:
f5:7e:97:bd:ea:31:4d:ae:33:3b:03:6d:00:21:bb:ba:b5:07:
a2:8a:99:99:ea:41:44:ee:41:36:37:e0:d4:66:17:68:14:e7:
a2:73:80:73:89:52:6c:1e:4c:d0:9b:e7:96:00:6d:06:39:3d:
58:95:4e:5b:de:1c:cc:0e:77:e3:5c:2c:87:e1:ad:fe:96:bd:
fb:f6:0b:72:6b:2c:fd:68:cd:0e:c5:bd:ae:ee:2a:78:e8:81:
72:ae:d7:93:91:ee:be:e6:84:b4:34:10:6b:d2:11:1c:46:51:
7d:32:e4:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:32 2026 by rpki-client