Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json)
Hash identifier: pdXFH5imJCntWl0eD1YGmY2McQbyp28i/2XOH2axgJ0=
Subject key identifier: 98:EB:E5:CC:07:15:E6:0E:39:2B:69:12:2B:72:9D:36:29:6A:1B:47
Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Certificate serial: 019DCE2BD2D6F07DEBDE9C6ED7A15544223C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
Manifest number: 18E4
Signing time: Mon 27 Apr 2026 09:01:11 +0000
Manifest this update: Mon 27 Apr 2026 09:01:11 +0000
Manifest next update: Tue 28 Apr 2026 09:01:11 +0000
Files and hashes: 1: 1WFjwMGMePlEAC8bm7XUOdRFj34.roa (hash: fW2dzpRcyQ80IgEJ6uR/Uw++9kayO/2mr9G7qpsC/1w=)
2: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: B+Sa0qgPEeYR+HHWrm9aOdNOV3gMqfT2stQoOWow+Xw=)
3: Z0Yd5ryo6CVHolrVfgTJW3VNRio.roa (hash: qAoF6R0Ct6kB3sTz/3lrppb3yX+381mHA9jGPvlKM8Y=)
4: rHFkeLh05qkzhm3XqYX2jCr6Jwc.roa (hash: rLIRPVEJIS1dHp/fkMSEkxmJ0YQCqnoXU1iytE3RgNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 09:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:d2:d6:f0:7d:eb:de:9c:6e:d7:a1:55:44:22:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65
Validity
Not Before: Apr 27 09:01:11 2026 GMT
Not After : Apr 28 09:01:11 2026 GMT
Subject: CN=98ebe5cc0715e60e392b69122b729d36296a1b47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:d3:14:90:08:cc:e8:58:2c:59:8e:93:7b:
ae:bd:3a:86:ca:55:96:03:72:25:79:d9:85:f4:a4:
fd:7a:ab:2a:38:9a:ff:b2:9e:cd:42:33:30:69:65:
79:2e:89:44:f1:a0:d4:14:af:18:b9:6c:96:a2:b9:
79:7e:c4:4d:54:0c:5f:f1:d3:92:e2:a3:a0:e9:6c:
8a:78:f0:aa:b6:1d:5f:79:12:af:28:1b:c5:0d:36:
2c:5d:21:6a:d8:aa:ba:b5:e8:dd:40:6a:77:a3:e5:
fa:28:99:e0:be:96:2a:fa:e1:71:40:a1:20:81:10:
ad:fe:ff:3f:4a:2f:e6:e5:4b:23:ae:10:71:7f:20:
e2:96:e3:16:49:79:eb:b8:6c:13:1b:15:7a:4d:88:
b6:58:9c:17:06:81:4f:0e:fe:59:60:cb:15:16:ce:
33:08:87:bc:d6:35:a7:e1:ab:2b:04:69:b9:a1:ec:
8b:60:28:da:1b:fd:b0:56:59:a5:6a:cf:3b:8a:6c:
4b:27:24:07:db:43:26:d1:11:96:3f:a4:fe:a6:22:
a1:21:23:c9:b3:2a:4c:0b:4b:a9:9f:83:ff:67:c2:
16:e3:5c:2a:ed:96:46:31:14:d4:d3:30:84:d8:02:
74:f3:9e:74:93:bf:5e:8e:33:d5:f4:fe:ee:ac:f9:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:EB:E5:CC:07:15:E6:0E:39:2B:69:12:2B:72:9D:36:29:6A:1B:47
X509v3 Authority Key Identifier:
keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:52:a9:85:32:87:03:02:fa:d9:4b:84:26:dc:3a:c8:64:c8:
6c:9d:f5:71:86:d0:1c:a0:75:07:70:94:88:56:40:85:27:e1:
15:a7:4a:05:84:f1:d2:1c:cc:ca:0d:0b:e3:65:52:13:03:2c:
82:e0:aa:6b:33:c3:80:24:8e:c5:3b:91:be:6c:c0:c4:ab:e8:
31:1d:d3:e4:29:58:89:77:ff:a1:ad:34:29:0f:87:13:c1:6d:
59:04:7e:f8:9f:21:26:42:43:9a:bd:30:42:19:35:39:16:9a:
71:bc:c7:79:2e:94:8a:d5:77:56:b4:7a:4d:fc:0b:cc:5d:bf:
7d:0f:dc:f7:7b:a9:a1:84:0b:8f:98:af:13:da:2e:29:06:d3:
1d:69:f4:50:f1:a7:d3:28:7a:51:4b:2c:20:87:77:27:b0:84:
90:2b:8d:ac:9b:a9:35:46:74:de:8b:74:af:4c:ba:5c:5c:52:
2d:05:c8:d4:2d:02:bd:c8:14:03:a4:3d:ab:eb:a7:95:c3:0e:
0e:c9:a9:19:5e:f3:49:e2:97:34:0b:1a:05:16:bb:13:7f:ed:
51:5b:ea:93:9e:e0:59:0f:99:14:af:f4:9d:80:13:77:97:b2:
47:17:39:9e:18:ad:da:b6:fb:14:53:ab:2c:b0:57:7a:18:21:
7b:ce:36:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OK9LW8H3r3pxu16FVRCI8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNDFhNWEyYTE4MzM5NjI5Y2MxMzAzZTZkZWM4YmI2MDVk
ZGNhNjUwHhcNMjYwNDI3MDkwMTExWhcNMjYwNDI4MDkwMTExWjAzMTEwLwYDVQQD
Eyg5OGViZTVjYzA3MTVlNjBlMzkyYjY5MTIyYjcyOWQzNjI5NmExYjQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBXTFJAIzOhYLFmOk3uuvTqGylWW
A3IledmF9KT9eqsqOJr/sp7NQjMwaWV5LolE8aDUFK8YuWyWorl5fsRNVAxf8dOS
4qOg6WyKePCqth1feRKvKBvFDTYsXSFq2Kq6tejdQGp3o+X6KJngvpYq+uFxQKEg
gRCt/v8/Si/m5UsjrhBxfyDiluMWSXnruGwTGxV6TYi2WJwXBoFPDv5ZYMsVFs4z
CIe81jWn4asrBGm5oeyLYCjaG/2wVlmlas87imxLJyQH20Mm0RGWP6T+piKhISPJ
sypMC0upn4P/Z8IW41wq7ZZGMRTU0zCE2AJ08550k79ejjPV9P7urPna3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJjr5cwHFeYOOStpEitynTYpahtHMB8GA1UdIwQY
MBaAFApBpaKhgzlinMEwPm3si7YF3cplMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjIt
ODBmN2ZkNmVhOWM5LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjItODBmN2ZkNmVhOWM5
LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMVKphTKH
AwL62UuEJtw6yGTIbJ31cYbQHKB1B3CUiFZAhSfhFadKBYTx0hzMyg0L42VSEwMs
guCqazPDgCSOxTuRvmzAxKvoMR3T5ClYiXf/oa00KQ+HE8FtWQR++J8hJkJDmr0w
Qhk1ORaacbzHeS6UitV3VrR6TfwLzF2/fQ/c93upoYQLj5ivE9ouKQbTHWn0UPGn
0yh6UUssIId3J7CEkCuNrJupNUZ03ot0r0y6XFxSLQXI1C0CvcgUA6Q9q+unlcMO
DsmpGV7zSeKXNAsaBRa7E3/tUVvqk57gWQ+ZFK/0nYATd5eyRxc5nhit2rb7FFOr
LLBXehghe8422A==
-----END CERTIFICATE-----
Generated at Mon Apr 27 18:39:57 2026 by rpki-client