Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: Kz24j5Sbtfd7A1Pm36DcF0J08dOxrzKelkitpBUc4/k=
Subject key identifier: 4F:FA:2E:83:8F:9A:4C:90:9D:38:5F:2E:1B:70:C4:E7:6A:A4:B6:0B
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 019CB2499C6F8C178DCA87318BB2FEF58475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 1851
Signing time: Tue 03 Mar 2026 06:01:34 +0000
Manifest this update: Tue 03 Mar 2026 06:01:34 +0000
Manifest next update: Wed 04 Mar 2026 06:01:34 +0000
Files and hashes: 1: 1WFjwMGMePlEAC8bm7XUOdRFj34.roa (hash: fW2dzpRcyQ80IgEJ6uR/Uw++9kayO/2mr9G7qpsC/1w=)
2: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: fYTjPCOanZzMzLYhWejs921rhIKFozy4qiHItosNgKo=)
3: Z0Yd5ryo6CVHolrVfgTJW3VNRio.roa (hash: qAoF6R0Ct6kB3sTz/3lrppb3yX+381mHA9jGPvlKM8Y=)
4: rHFkeLh05qkzhm3XqYX2jCr6Jwc.roa (hash: rLIRPVEJIS1dHp/fkMSEkxmJ0YQCqnoXU1iytE3RgNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:49:9c:6f:8c:17:8d:ca:87:31:8b:b2:fe:f5:84:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: Mar 3 06:01:34 2026 GMT
Not After : Mar 4 06:01:34 2026 GMT
Subject: CN=4ffa2e838f9a4c909d385f2e1b70c4e76aa4b60b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:3e:86:a9:4c:0c:5f:c1:cf:e2:ee:34:df:
61:20:55:65:47:58:58:42:08:61:21:cd:68:8b:21:
ea:e2:41:8b:e1:56:a7:93:55:a7:e0:4f:a1:9c:1b:
b8:03:e2:10:fe:ac:bd:f3:b0:3e:57:71:49:8c:55:
85:29:b8:1d:70:f2:7e:0f:7e:52:e0:29:30:8c:ab:
d0:a0:f0:ba:4e:f3:47:36:0a:73:f5:f8:c9:32:c4:
cc:6c:9a:88:36:66:5b:54:8a:53:8e:92:e4:52:b4:
e5:31:8d:ab:ff:f0:93:6c:c6:7a:18:9e:54:d5:25:
fc:43:f9:f2:14:35:dd:c0:34:71:44:ab:28:36:e6:
77:93:a1:31:5c:ea:58:22:d9:4e:52:20:1d:83:1d:
ff:dd:34:37:b4:45:db:fd:3d:85:f4:8b:5c:6d:45:
85:62:f3:97:f2:be:2d:ad:f2:3d:72:37:d2:c1:bd:
da:3a:e2:55:41:3a:19:5b:58:1b:a0:0a:9f:ee:c4:
cf:87:fc:73:d5:7a:55:57:f4:af:4d:3e:23:59:eb:
e4:ed:f4:28:8a:88:95:42:a8:a1:9f:a8:3f:66:49:
39:65:2e:05:1e:b7:ee:f4:e1:8f:73:5d:8e:e4:00:
57:9a:1a:0b:b3:90:e3:32:f8:de:d5:ab:33:2f:46:
00:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FA:2E:83:8F:9A:4C:90:9D:38:5F:2E:1B:70:C4:E7:6A:A4:B6:0B
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c5:cb:30:e9:1d:a9:fd:91:96:fd:fa:1d:e6:63:cd:fb:5a:
e0:78:f8:34:ab:e5:36:c2:12:58:5c:46:e1:6a:21:ed:a8:f6:
af:ad:79:db:da:a7:f0:55:ec:65:aa:e8:cd:e3:2e:96:01:4f:
a8:c6:15:f4:88:b6:b8:61:e6:83:da:b3:df:3e:6e:e2:62:e1:
66:ea:d8:ff:37:db:9a:48:1c:d5:c7:90:80:7e:fb:4b:15:1b:
f9:57:6a:d1:1e:e3:97:b8:9a:8b:d2:bc:3c:88:84:1a:dc:5a:
db:8d:41:f0:ce:e8:5a:f7:c6:ed:53:61:35:6b:4b:93:58:85:
67:fa:22:f7:40:ca:76:20:0b:92:9e:85:d0:c2:e7:d2:fe:41:
d0:7e:0e:68:c0:a2:72:6a:f4:7c:de:1a:36:2f:e0:49:19:5c:
fb:cc:db:61:79:dd:a1:dc:e8:30:15:a6:39:c9:fa:f9:a8:2c:
88:9d:50:8b:37:95:9a:32:7f:89:d6:0b:e4:6f:54:7f:2e:b7:
47:da:e5:01:6e:50:b5:e7:92:09:15:c6:f1:13:35:c5:79:0d:
7a:c1:e9:b8:3b:a6:c2:76:da:f9:84:38:4a:d3:c2:e3:d4:e1:
95:c0:cb:6c:9b:b7:22:9d:7c:98:ec:8d:54:19:92:86:25:7b:
92:11:8c:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyySZxvjBeNyocxi7L+9YR1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNDFhNWEyYTE4MzM5NjI5Y2MxMzAzZTZkZWM4YmI2MDVk
ZGNhNjUwHhcNMjYwMzAzMDYwMTM0WhcNMjYwMzA0MDYwMTM0WjAzMTEwLwYDVQQD
Eyg0ZmZhMmU4MzhmOWE0YzkwOWQzODVmMmUxYjcwYzRlNzZhYTRiNjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sY+hqlMDF/Bz+LuNN9hIFVlR1hY
QghhIc1oiyHq4kGL4Vank1Wn4E+hnBu4A+IQ/qy987A+V3FJjFWFKbgdcPJ+D35S
4CkwjKvQoPC6TvNHNgpz9fjJMsTMbJqINmZbVIpTjpLkUrTlMY2r//CTbMZ6GJ5U
1SX8Q/nyFDXdwDRxRKsoNuZ3k6ExXOpYItlOUiAdgx3/3TQ3tEXb/T2F9ItcbUWF
YvOX8r4trfI9cjfSwb3aOuJVQToZW1gboAqf7sTPh/xz1XpVV/SvTT4jWevk7fQo
ioiVQqihn6g/Zkk5ZS4FHrfu9OGPc12O5ABXmhoLs5DjMvje1aszL0YAHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE/6LoOPmkyQnThfLhtwxOdqpLYLMB8GA1UdIwQY
MBaAFApBpaKhgzlinMEwPm3si7YF3cplMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjIt
ODBmN2ZkNmVhOWM5LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjItODBmN2ZkNmVhOWM5
LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWcXLMOkd
qf2Rlv36HeZjzfta4Hj4NKvlNsISWFxG4Woh7aj2r61529qn8FXsZarozeMulgFP
qMYV9Ii2uGHmg9qz3z5u4mLhZurY/zfbmkgc1ceQgH77SxUb+Vdq0R7jl7iai9K8
PIiEGtxa241B8M7oWvfG7VNhNWtLk1iFZ/oi90DKdiALkp6F0MLn0v5B0H4OaMCi
cmr0fN4aNi/gSRlc+8zbYXndodzoMBWmOcn6+agsiJ1QizeVmjJ/idYL5G9Ufy63
R9rlAW5QteeSCRXG8RM1xXkNesHpuDumwnba+YQ4StPC49ThlcDLbJu3Ip18mOyN
VBmShiV7khGMHA==
-----END CERTIFICATE-----
Generated at Tue Mar 3 09:04:04 2026 by rpki-client