Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: RGKnA3dwlYI3QH3+ha4xnZkKp507DRReLAZSh+OtZqU=
Subject key identifier: A5:1D:F7:69:8B:16:48:A7:22:47:A5:88:0A:21:99:6E:42:82:E4:A6
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 019D9AAB7DF2DD8986CBB8BDDB38C0CA3190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 1015
Signing time: Fri 17 Apr 2026 09:00:23 +0000
Manifest this update: Fri 17 Apr 2026 09:00:23 +0000
Manifest next update: Sat 18 Apr 2026 09:00:23 +0000
Files and hashes: 1: FKqb6xzvddOBKsdPHF3mhYAJS0k.roa (hash: 910PvDYWRjp0nPe0uzUMCv2AassoiwccQm9jYSF+i2c=)
2: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: AIipNfjnOLcBb/5GECUsiJ0Rjx8GjV1KjXTfT9h+cZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:7d:f2:dd:89:86:cb:b8:bd:db:38:c0:ca:31:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Apr 17 09:00:23 2026 GMT
Not After : Apr 18 09:00:23 2026 GMT
Subject: CN=a51df7698b1648a72247a5880a21996e4282e4a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:03:5b:36:d9:aa:a3:27:69:e0:61:43:4f:c4:
8b:f9:06:30:01:a7:17:d1:73:51:cd:97:00:26:00:
23:45:1e:3d:38:5b:a3:16:32:90:3a:78:0b:c9:2b:
ab:50:d4:02:43:2f:f1:1a:69:33:93:ef:ce:ae:5d:
33:86:d1:61:2f:74:7f:ee:66:a1:c7:0d:e3:23:c5:
dd:f8:97:c5:bc:95:63:d8:14:eb:73:b5:1f:ab:a0:
b3:14:6c:68:f8:66:c1:23:f5:ac:02:00:2f:cc:52:
b4:9f:dd:aa:57:7f:44:bd:25:8f:48:1e:d3:aa:3f:
1c:ca:3b:d2:b1:9a:f8:0a:c2:dd:3b:d4:34:6c:54:
08:f8:19:b7:a5:f7:f0:c0:1c:99:89:b4:29:f4:40:
4a:b1:d3:85:b7:89:73:0b:97:fd:01:9f:a3:c2:f7:
4b:ae:92:3e:11:da:1c:3a:b0:d2:8b:94:3f:58:d1:
fc:f0:03:a2:f1:80:09:85:34:0c:49:51:5e:91:cd:
06:b5:a8:9c:00:f6:39:1e:63:82:05:63:71:c5:dd:
32:a7:ae:9b:24:7f:45:3b:43:35:ac:68:80:c9:88:
60:96:8b:d6:6a:46:7b:e1:f4:f6:44:ae:b2:a7:ca:
36:ec:f9:3a:6b:55:b4:96:e0:dc:d4:1a:fc:d9:e5:
b1:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1D:F7:69:8B:16:48:A7:22:47:A5:88:0A:21:99:6E:42:82:E4:A6
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:14:fb:04:dd:9d:30:ca:e3:42:cd:27:01:ab:20:5b:70:a0:
ff:c6:06:c9:f5:62:ad:ec:42:ca:8a:5c:d5:6b:f7:db:61:41:
06:50:de:f6:56:11:a9:bd:8b:b3:19:df:e7:e1:d9:a8:0e:84:
49:5c:b9:36:9c:8d:a6:d6:5a:23:9f:e5:e1:f1:ef:dd:ac:a1:
5c:bf:e3:65:58:bb:22:3a:15:55:48:7e:21:99:59:b7:ba:ed:
56:28:1c:bc:55:5a:74:d0:b0:0e:24:3e:24:d6:7a:f0:8f:61:
d9:58:07:77:75:ea:3c:a1:47:c4:38:35:84:5d:49:ee:f7:f6:
8a:70:b0:4a:a0:a7:1e:f8:2b:d8:a1:e2:d0:88:43:02:a9:c1:
f3:9c:56:08:b4:a2:13:1d:c3:f6:7f:67:28:aa:8a:ac:fa:15:
d6:f7:ca:18:ef:99:8c:64:31:64:7c:c8:e6:92:11:d5:66:87:
14:3a:17:0c:fa:8b:02:f4:b0:13:0f:db:4d:b1:5e:8e:72:39:
66:d7:d9:c1:b5:cb:2b:9e:9e:29:e5:0d:62:da:b9:b9:5e:50:
08:cf:47:1b:60:f1:8b:b4:7f:0b:fd:d1:99:af:83:14:2e:e3:
e2:75:86:de:a0:c9:51:57:32:83:0b:ff:ad:1f:b3:03:44:ea:
c3:d4:a2:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aq33y3YmGy7i92zjAyjGQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4
YWVkYzkwHhcNMjYwNDE3MDkwMDIzWhcNMjYwNDE4MDkwMDIzWjAzMTEwLwYDVQQD
EyhhNTFkZjc2OThiMTY0OGE3MjI0N2E1ODgwYTIxOTk2ZTQyODJlNGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6QNbNtmqoydp4GFDT8SL+QYwAacX
0XNRzZcAJgAjRR49OFujFjKQOngLySurUNQCQy/xGmkzk+/Orl0zhtFhL3R/7mah
xw3jI8Xd+JfFvJVj2BTrc7Ufq6CzFGxo+GbBI/WsAgAvzFK0n92qV39EvSWPSB7T
qj8cyjvSsZr4CsLdO9Q0bFQI+Bm3pffwwByZibQp9EBKsdOFt4lzC5f9AZ+jwvdL
rpI+EdocOrDSi5Q/WNH88AOi8YAJhTQMSVFekc0GtaicAPY5HmOCBWNxxd0yp66b
JH9FO0M1rGiAyYhglovWakZ74fT2RK6yp8o27Pk6a1W0luDc1Br82eWxbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKUd92mLFkinIkeliAohmW5CguSmMB8GA1UdIwQY
MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt
YTFkZTU4YTNiMzViLzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi
LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhRT7BN2d
MMrjQs0nAasgW3Cg/8YGyfVirexCyopc1Wv322FBBlDe9lYRqb2Lsxnf5+HZqA6E
SVy5NpyNptZaI5/l4fHv3ayhXL/jZVi7IjoVVUh+IZlZt7rtVigcvFVadNCwDiQ+
JNZ68I9h2VgHd3XqPKFHxDg1hF1J7vf2inCwSqCnHvgr2KHi0IhDAqnB85xWCLSi
Ex3D9n9nKKqKrPoV1vfKGO+ZjGQxZHzI5pIR1WaHFDoXDPqLAvSwEw/bTbFejnI5
ZtfZwbXLK56eKeUNYtq5uV5QCM9HG2Dxi7R/C/3Rma+DFC7j4nWG3qDJUVcygwv/
rR+zA0Tqw9SiIQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:58:12 2026 by rpki-client