Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: FmYme8m3gbUj2VfcY73PQ34eW44iPiZI0J6uvvBb42o=
Subject key identifier: D9:21:63:97:A8:68:12:22:8A:67:61:A0:72:51:C7:DA:94:D4:04:0A
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 019CAB343FF973C6C94BC0B261343A5DB06E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 21:00:54 +0000
Manifest this update: Sun 01 Mar 2026 21:00:54 +0000
Manifest next update: Mon 02 Mar 2026 21:00:54 +0000
Files and hashes: 1: BR3wphovR_RPvqDUE27elOUu4-g.roa (hash: /d+bM8z6dvoIJGOJEV4LkgmXfHsdFv9RsRrj+TP+634=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: MaRv90qpE74ULgHWvKyj4x6U0ym1l3VfKeAH44K4dgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3f:f9:73:c6:c9:4b:c0:b2:61:34:3a:5d:b0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Mar 1 21:00:54 2026 GMT
Not After : Mar 2 21:00:54 2026 GMT
Subject: CN=d9216397a86812228a6761a07251c7da94d4040a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:06:f8:40:c8:21:62:2f:37:df:a3:fe:a9:b7:
98:c5:32:ff:cf:ef:db:62:1d:28:32:f7:93:f5:89:
c7:07:3a:13:88:13:86:9b:24:ed:5f:62:3c:6f:64:
c0:b6:10:06:a4:ad:23:fb:d7:ac:95:2e:fe:92:10:
ea:c6:15:51:05:11:4f:5b:b6:61:b9:73:02:9c:f7:
49:06:74:f0:92:ed:5d:8e:49:68:d1:21:79:0c:6f:
8c:71:4f:45:bb:ac:02:8e:af:7e:d6:6f:84:74:5b:
7c:1f:f4:9e:f4:2b:61:bc:ab:06:8f:7e:8d:fe:61:
77:ce:7e:db:79:87:20:64:48:49:d9:86:be:d6:d0:
85:80:e5:fd:e6:1c:b4:c5:6a:da:4b:4b:55:5f:7e:
eb:8f:d6:bd:9e:94:0b:a1:22:63:b5:14:05:ed:6a:
ed:3a:44:f4:0c:4a:03:e5:64:fb:f6:85:88:42:b0:
b4:a4:51:57:d4:23:cb:ac:2d:38:3e:46:bd:18:8d:
f3:14:e1:59:47:cc:33:51:a5:51:fd:35:41:1e:2f:
73:5a:8f:30:0b:db:48:d6:86:cc:01:15:b1:cb:ac:
20:30:90:4b:c2:9a:7b:56:a6:37:33:28:e4:50:59:
54:89:4b:15:3b:c2:a1:e3:63:fb:2c:ec:fc:16:d3:
c4:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:21:63:97:A8:68:12:22:8A:67:61:A0:72:51:C7:DA:94:D4:04:0A
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:5e:7f:2c:e9:90:36:cb:d3:43:64:7d:bd:7c:b3:d4:f4:2a:
51:a5:99:b5:bc:64:97:06:7e:17:67:2a:f8:25:d1:88:a8:8b:
6d:5e:e4:cb:c8:ce:42:1e:9b:bc:29:da:56:e2:2d:8f:08:b1:
60:2d:fc:d0:9c:4e:5d:a0:f3:32:9e:9a:fc:88:a5:17:5e:96:
f9:96:8e:cc:43:1c:f3:6d:b7:90:31:94:87:a3:0d:6b:1b:3a:
7f:e3:ae:52:ab:4d:e7:dd:aa:ae:38:35:d4:33:1f:58:e7:3c:
24:51:22:09:af:c3:b3:23:70:41:b4:48:64:99:4e:18:08:b6:
04:a0:ce:0d:be:07:11:0d:b6:42:e1:43:04:ee:ba:2d:31:59:
17:6d:18:50:6b:98:17:44:34:5e:b4:87:a3:f7:d8:a1:9c:58:
c1:80:a6:61:cf:3b:08:bd:fe:96:93:3b:96:24:34:86:ca:3d:
c1:a2:15:ba:13:5b:0a:36:d2:2d:95:5f:1b:68:7c:46:c8:7d:
46:af:48:f5:3a:62:ae:8c:d3:69:33:ca:28:db:d1:31:5e:e8:
5d:b9:60:b0:29:fa:d2:d5:20:e6:b3:ad:aa:52:77:55:88:61:
49:81:70:53:50:e3:53:5e:23:d1:da:7e:fa:a8:6b:6e:b1:19:
4c:ba:f5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:09:26 2026 by rpki-client