
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: lvqQ3cTdDp58auUydSs7+75JcT/iJR4k++97E2cCCEM=
Subject key identifier: 45:F6:58:8C:CC:1A:B5:95:DC:F0:52:F9:59:96:69:93:5F:89:D5:3D
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 019EB7D81AFE7E3871731DB7772ABDCA3924
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 195D
Signing time: Thu 11 Jun 2026 18:00:53 +0000
Manifest this update: Thu 11 Jun 2026 18:00:53 +0000
Manifest next update: Fri 12 Jun 2026 18:00:53 +0000
Files and hashes: 1: 1WFjwMGMePlEAC8bm7XUOdRFj34.roa (hash: fW2dzpRcyQ80IgEJ6uR/Uw++9kayO/2mr9G7qpsC/1w=)
2: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: Fz1FDXYqoSY5yQ1NEGPzRhagf4cTbYH4L7duScQ8QLY=)
3: Z0Yd5ryo6CVHolrVfgTJW3VNRio.roa (hash: qAoF6R0Ct6kB3sTz/3lrppb3yX+381mHA9jGPvlKM8Y=)
4: rHFkeLh05qkzhm3XqYX2jCr6Jwc.roa (hash: rLIRPVEJIS1dHp/fkMSEkxmJ0YQCqnoXU1iytE3RgNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d8:1a:fe:7e:38:71:73:1d:b7:77:2a:bd:ca:39:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: Jun 11 18:00:53 2026 GMT
Not After : Jun 12 18:00:53 2026 GMT
Subject: CN=45f6588ccc1ab595dcf052f9599669935f89d53d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:cd:24:a4:eb:95:9e:a2:26:3d:b0:78:46:56:
89:9b:f2:e7:16:ec:1e:0b:dd:89:55:c2:8d:42:3e:
45:29:2d:3c:ac:2d:09:88:71:7e:5f:fb:bf:fc:cf:
23:87:2b:6a:47:9c:66:ec:84:a5:17:4b:d4:fa:25:
0a:d4:d3:f7:9f:95:86:b3:71:5d:fd:8b:2d:cc:d2:
02:69:61:ba:2a:76:db:91:1f:c2:56:7f:c5:dc:6d:
b9:89:bc:c1:6a:f4:d9:fd:46:41:1b:7d:39:6a:a2:
69:f1:8a:ce:7b:b3:a1:a9:f1:6e:b4:74:7c:a8:20:
25:62:93:8b:fc:9a:42:3a:ec:6a:cb:44:14:4b:15:
02:f0:81:1e:a0:68:5c:a3:00:e8:e4:90:51:9a:1f:
7f:21:8c:42:83:75:52:2d:85:c3:4d:dd:22:f6:cd:
ca:c6:e7:c0:ee:98:01:16:12:72:e9:78:a7:9c:4a:
f6:e8:a8:77:7d:23:52:d2:a7:fa:b1:39:9e:e4:4e:
d5:46:fd:12:d0:1e:3e:50:4d:47:16:fb:c2:ba:0f:
70:d7:86:74:9a:9c:a5:bd:0f:e0:ec:ce:79:30:e7:
f3:f4:73:86:ce:61:7d:0e:6e:a8:00:2e:91:04:6d:
cb:b8:0b:84:6d:50:a4:81:a1:26:1d:ab:1f:28:52:
34:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F6:58:8C:CC:1A:B5:95:DC:F0:52:F9:59:96:69:93:5F:89:D5:3D
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:7c:fd:5d:bf:38:ed:40:3e:88:fb:77:f9:45:30:49:fd:65:
22:67:24:bc:53:00:4e:be:df:7b:e8:ec:0e:b9:8c:c5:de:9c:
1c:9d:70:06:55:e5:b5:a1:98:8b:6a:86:70:68:22:26:22:94:
c1:61:d7:94:27:32:c9:b7:95:b2:8b:f8:70:4b:fb:3c:6d:fd:
df:c0:97:0e:67:df:e2:9d:ec:a8:92:8e:a1:7f:4d:02:19:2a:
b5:ba:15:d4:23:26:7c:fb:01:e3:75:6b:e3:4a:2b:4e:45:35:
b3:ea:b8:d3:be:6a:63:ef:64:b3:e3:09:e2:d1:1c:06:fc:8c:
1d:dc:b2:71:f6:70:97:3b:31:bb:04:bf:0b:44:69:5c:4d:b0:
4c:08:c7:8b:3b:7e:60:d6:0f:bd:85:56:8f:23:4c:46:3a:10:
4e:f3:70:ad:a4:df:6d:53:9d:d2:89:d6:13:a4:8f:72:e1:fa:
46:ed:26:84:f1:7d:e6:e7:cd:2a:ef:fc:0c:78:44:71:7e:a2:
42:c8:9c:ae:60:e0:9c:db:ee:8f:0e:b8:c4:a0:84:fa:06:50:
6c:8a:7a:6b:bc:58:ab:26:76:5e:a3:4a:71:b2:c6:00:c9:9f:
1d:65:06:8a:e2:a9:9f:6f:de:66:d8:53:07:31:cd:e0:b2:12:
18:20:6c:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ632Br+fjhxcx23dyq9yjkkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNDFhNWEyYTE4MzM5NjI5Y2MxMzAzZTZkZWM4YmI2MDVk
ZGNhNjUwHhcNMjYwNjExMTgwMDUzWhcNMjYwNjEyMTgwMDUzWjAzMTEwLwYDVQQD
Eyg0NWY2NTg4Y2NjMWFiNTk1ZGNmMDUyZjk1OTk2Njk5MzVmODlkNTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7s0kpOuVnqImPbB4RlaJm/LnFuwe
C92JVcKNQj5FKS08rC0JiHF+X/u//M8jhytqR5xm7ISlF0vU+iUK1NP3n5WGs3Fd
/YstzNICaWG6KnbbkR/CVn/F3G25ibzBavTZ/UZBG305aqJp8YrOe7OhqfFutHR8
qCAlYpOL/JpCOuxqy0QUSxUC8IEeoGhcowDo5JBRmh9/IYxCg3VSLYXDTd0i9s3K
xufA7pgBFhJy6XinnEr26Kh3fSNS0qf6sTme5E7VRv0S0B4+UE1HFvvCug9w14Z0
mpylvQ/g7M55MOfz9HOGzmF9Dm6oAC6RBG3LuAuEbVCkgaEmHasfKFI0MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEX2WIzMGrWV3PBS+VmWaZNfidU9MB8GA1UdIwQY
MBaAFApBpaKhgzlinMEwPm3si7YF3cplMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjIt
ODBmN2ZkNmVhOWM5LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjItODBmN2ZkNmVhOWM5
LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAonz9Xb84
7UA+iPt3+UUwSf1lImckvFMATr7fe+jsDrmMxd6cHJ1wBlXltaGYi2qGcGgiJiKU
wWHXlCcyybeVsov4cEv7PG3938CXDmff4p3sqJKOoX9NAhkqtboV1CMmfPsB43Vr
40orTkU1s+q4075qY+9ks+MJ4tEcBvyMHdyycfZwlzsxuwS/C0RpXE2wTAjHizt+
YNYPvYVWjyNMRjoQTvNwraTfbVOd0onWE6SPcuH6Ru0mhPF95ufNKu/8DHhEcX6i
QsicrmDgnNvujw64xKCE+gZQbIp6a7xYqyZ2XqNKcbLGAMmfHWUGiuKpn2/eZthT
BzHN4LISGCBs1Q==
-----END CERTIFICATE-----
Generated at Fri Jun 12 04:11:58 2026 by rpki-client