Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: NOuW4LP/GE8OeOKuPdBynALUtU0drXAgiHFJF30yUTk=
Subject key identifier: B3:BC:FD:97:19:64:CF:2C:6D:3D:05:D9:B8:0D:1F:5F:27:1C:40:95
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 019CAB348F361BA9D4FB1D13A66C126DC918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0F99
Signing time: Sun 01 Mar 2026 21:01:14 +0000
Manifest this update: Sun 01 Mar 2026 21:01:14 +0000
Manifest next update: Mon 02 Mar 2026 21:01:14 +0000
Files and hashes: 1: FKqb6xzvddOBKsdPHF3mhYAJS0k.roa (hash: 910PvDYWRjp0nPe0uzUMCv2AassoiwccQm9jYSF+i2c=)
2: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: sAxKYo5FaCdhcmZzWGdYyYsntM3PfMd3CsEvQ4IyMwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:8f:36:1b:a9:d4:fb:1d:13:a6:6c:12:6d:c9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Mar 1 21:01:14 2026 GMT
Not After : Mar 2 21:01:14 2026 GMT
Subject: CN=b3bcfd971964cf2c6d3d05d9b80d1f5f271c4095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:39:83:9b:7d:fa:af:7e:4b:90:34:06:12:
d4:b4:d4:85:c9:c8:3d:1c:9d:e5:4c:9d:47:3e:90:
18:a6:8c:10:f6:bc:5a:22:31:49:c1:59:e3:63:62:
14:fe:9d:0a:d7:4f:d3:5e:57:58:07:64:7d:d1:82:
c1:9a:7e:50:a1:f2:10:e6:f5:34:02:8b:33:9f:8d:
51:28:bc:a7:c6:ab:39:3e:72:92:fd:f1:e5:95:27:
4a:5c:d5:cd:a6:d9:36:34:07:18:14:9b:c7:e0:f7:
4c:0f:26:06:83:6c:7f:cc:08:eb:30:75:04:f3:3f:
43:d6:05:75:e7:63:0a:32:68:be:d3:59:ae:7f:80:
26:bf:54:7d:b9:02:64:f7:f5:2c:c6:13:26:74:6a:
41:07:60:3e:fb:bc:f3:d1:0e:7e:9b:c7:a0:b2:e6:
27:17:36:83:4d:f4:77:e2:11:a3:50:cf:e4:d8:ae:
ab:07:8a:c1:52:b0:f1:49:b6:86:18:52:57:68:ab:
2e:94:07:cb:df:7c:00:6d:c0:c9:04:c2:44:95:fa:
75:2f:44:24:a1:3f:60:25:4c:98:e5:7b:fb:6f:e1:
45:fa:31:f3:03:be:65:80:79:5f:0b:e2:cf:4a:74:
2d:51:60:d8:82:53:2a:08:a3:d9:63:ac:14:27:32:
9d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BC:FD:97:19:64:CF:2C:6D:3D:05:D9:B8:0D:1F:5F:27:1C:40:95
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e3:4f:1f:62:f6:17:c9:48:df:80:fe:1f:d6:8a:dd:f8:53:
bb:28:9b:4e:e7:f3:a4:79:35:c2:c4:8c:30:f5:0c:9e:a6:75:
b7:ea:93:d6:a2:6d:5e:03:25:8b:d3:5e:2a:d6:fa:12:54:29:
35:7d:06:c4:97:36:df:8d:11:5a:9f:a0:6f:e3:79:d6:99:16:
e5:8b:38:db:dd:64:7c:42:7a:46:65:87:bb:79:ac:cb:07:3d:
95:24:84:a2:81:7a:5d:3d:a6:07:73:54:1c:ec:7f:53:20:7f:
7a:e9:9e:2b:07:9a:00:6f:f7:54:41:c1:d8:5a:55:d9:6d:1b:
94:f3:8c:34:a1:e9:fe:ea:32:cb:55:2a:f1:47:70:a5:15:04:
8a:69:40:0b:4d:16:e9:52:7e:26:be:06:83:3f:aa:94:f3:60:
ed:38:04:80:72:47:e6:cf:c0:fc:23:47:af:af:33:08:af:2b:
05:ab:34:8c:08:99:50:91:70:67:2e:75:75:e4:bd:68:70:81:
e8:ce:5f:5e:ad:54:0d:87:f1:76:df:3b:44:67:86:18:51:d2:
ae:31:a5:9a:52:ee:b0:36:b1:ac:ba:b8:61:ab:7e:79:85:67:
d5:c7:25:84:32:64:1f:95:d4:be:a8:c4:81:b4:c8:63:c3:87:
ce:ca:c7:9e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyrNI82G6nU+x0TpmwSbckYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4
YWVkYzkwHhcNMjYwMzAxMjEwMTE0WhcNMjYwMzAyMjEwMTE0WjAzMTEwLwYDVQQD
EyhiM2JjZmQ5NzE5NjRjZjJjNmQzZDA1ZDliODBkMWY1ZjI3MWM0MDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5Y5g5t9+q9+S5A0BhLUtNSFycg9
HJ3lTJ1HPpAYpowQ9rxaIjFJwVnjY2IU/p0K10/TXldYB2R90YLBmn5QofIQ5vU0
Aoszn41RKLynxqs5PnKS/fHllSdKXNXNptk2NAcYFJvH4PdMDyYGg2x/zAjrMHUE
8z9D1gV152MKMmi+01muf4Amv1R9uQJk9/UsxhMmdGpBB2A++7zz0Q5+m8egsuYn
FzaDTfR34hGjUM/k2K6rB4rBUrDxSbaGGFJXaKsulAfL33wAbcDJBMJElfp1L0Qk
oT9gJUyY5Xv7b+FF+jHzA75lgHlfC+LPSnQtUWDYglMqCKPZY6wUJzKdKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLO8/ZcZZM8sbT0F2bgNH18nHECVMB8GA1UdIwQY
MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt
YTFkZTU4YTNiMzViLzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi
LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM+NPH2L2
F8lI34D+H9aK3fhTuyibTufzpHk1wsSMMPUMnqZ1t+qT1qJtXgMli9NeKtb6ElQp
NX0GxJc2340RWp+gb+N51pkW5Ys4291kfEJ6RmWHu3msywc9lSSEooF6XT2mB3NU
HOx/UyB/eumeKweaAG/3VEHB2FpV2W0blPOMNKHp/uoyy1Uq8UdwpRUEimlAC00W
6VJ+Jr4Ggz+qlPNg7TgEgHJH5s/A/CNHr68zCK8rBas0jAiZUJFwZy51deS9aHCB
6M5fXq1UDYfxdt87RGeGGFHSrjGlmlLusDaxrLq4Yat+eYVn1cclhDJkH5XUvqjE
gbTIY8OHzsrHng==
-----END CERTIFICATE-----
Generated at Mon Mar 2 08:02:43 2026 by rpki-client