Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 12qNcbHkQZYLD97ZJ/PYkdLK2qUYjowUlyIVyrZSucc=
Subject key identifier: 30:A8:66:48:1A:AA:A0:EC:9A:14:C8:56:4B:23:7E:6B:5C:FA:C1:4D
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019C9E8B9299EEBBEAFED36B231B0D6576C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1841
Signing time: Fri 27 Feb 2026 10:01:12 +0000
Manifest this update: Fri 27 Feb 2026 10:01:12 +0000
Manifest next update: Sat 28 Feb 2026 10:01:12 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: jC/VGfVKYZPc72bywhXRIw3V+vQxoCXdTlywyhJ6hws=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Feb 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:9e:8b:92:99:ee:bb:ea:fe:d3:6b:23:1b:0d:65:76:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Feb 27 10:01:12 2026 GMT
Not After : Feb 28 10:01:12 2026 GMT
Subject: CN=30a866481aaaa0ec9a14c8564b237e6b5cfac14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d2:ff:e8:27:26:9c:ec:d3:44:7e:0d:00:6c:
8d:3a:d0:ff:fb:d9:13:29:26:9c:87:9d:ee:b4:85:
b3:b9:9b:09:67:09:00:d0:cc:e0:37:a4:40:c6:62:
1b:e3:9e:aa:59:d4:24:d9:58:67:ec:02:f8:15:fb:
2f:18:af:a4:50:a6:d8:95:ae:c5:6a:92:65:26:d0:
c4:c4:19:73:2f:8a:e3:5b:60:52:af:67:dc:e3:6a:
fd:13:57:7b:df:38:b7:82:1b:04:2b:8b:4f:74:e3:
e8:c8:ef:30:38:5f:c8:25:12:8c:76:0f:90:9d:52:
a6:19:29:6e:5a:b2:ea:ec:92:d5:6d:17:40:1d:0d:
20:ba:de:e0:5e:eb:9c:85:61:61:62:7f:68:d1:e8:
50:63:7c:8d:4b:4a:76:85:f8:84:08:5b:db:b8:00:
1e:23:57:81:0a:88:e6:ae:c6:72:90:e6:21:ed:69:
db:21:0b:02:f2:33:3b:b3:65:5e:86:0d:f0:6a:06:
5d:cb:d9:e2:e8:96:e2:01:f0:9d:f9:d1:80:a6:f0:
02:aa:84:28:29:97:64:ff:09:57:d2:1d:a9:ad:43:
da:be:06:e2:8d:05:44:f0:1a:e6:ba:36:66:da:37:
a1:9d:16:a3:a0:0d:c2:8d:93:fc:b0:f8:be:a2:a9:
1b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A8:66:48:1A:AA:A0:EC:9A:14:C8:56:4B:23:7E:6B:5C:FA:C1:4D
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:56:17:af:26:9f:d3:38:a5:8a:71:de:ee:cc:73:33:07:b3:
ae:b2:84:ed:ed:a2:f9:0a:48:76:30:22:5d:66:f9:7a:86:85:
36:e4:56:a6:93:63:49:f7:4a:7b:a4:f3:79:25:74:1c:74:fb:
46:16:d1:02:16:83:8a:de:dc:c1:32:67:c2:87:29:56:ae:cd:
20:f0:1c:4f:da:0f:0d:11:41:70:9e:fc:b6:58:75:db:b0:62:
a9:18:24:20:2d:e5:20:16:e4:e0:7a:9a:08:10:4d:ad:fe:9e:
13:fa:8f:6a:5e:66:96:af:53:86:1d:6e:50:40:c6:8f:c3:2d:
d8:b3:22:85:fa:bf:8b:ac:72:aa:ec:39:6c:d4:e0:80:35:35:
1d:96:bb:33:0a:94:3f:5e:5f:55:9c:e7:c4:79:08:33:e8:2b:
c3:41:5e:1b:7a:41:0f:a9:f2:b9:3a:9b:03:4a:64:c1:82:75:
97:16:83:ab:d8:ee:17:c9:8c:8c:41:f3:88:aa:1a:d9:07:76:
80:1e:f0:b2:55:e8:0b:bd:2e:b7:14:58:75:fb:5f:11:ef:26:
1e:85:04:eb:3b:cf:37:de:fb:40:91:74:81:05:c0:1b:cc:e7:
f9:e9:0b:b1:61:33:ef:f4:d7:35:bf:1f:84:b4:c7:08:32:f2:
5e:2e:d8:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 27 14:46:48 2026 by rpki-client