Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: aoLQNAnx0QR0zhVyv2tkJ3UPdBMkclTkgxrcpouw/bM=
Subject key identifier: 5A:AB:FF:D3:06:AA:CA:C6:6C:4C:96:EC:05:C9:42:DD:C3:B2:A3:A6
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EB9584CDB3E4C34EF9DB76F93BE90A4BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1959
Signing time: Fri 12 Jun 2026 01:00:32 +0000
Manifest this update: Fri 12 Jun 2026 01:00:32 +0000
Manifest next update: Sat 13 Jun 2026 01:00:32 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: TV/nG37dOG67UkNQ7l9gBGZDWFibzYDWbGfZEBLK0v8=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:4c:db:3e:4c:34:ef:9d:b7:6f:93:be:90:a4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 12 01:00:32 2026 GMT
Not After : Jun 13 01:00:32 2026 GMT
Subject: CN=5aabffd306aacac66c4c96ec05c942ddc3b2a3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:92:8f:01:7f:9e:fe:8e:5b:29:75:46:fd:5b:
f4:03:47:7b:6c:33:4b:67:3d:e1:ab:0b:c9:ce:fe:
fe:76:70:f0:e6:47:cf:5f:ee:ab:e7:e2:86:48:6e:
11:9a:4d:0a:51:1a:0a:f9:62:3c:10:5c:2a:a2:d0:
5d:52:dc:24:98:30:8b:46:9c:de:72:f9:8a:db:dd:
7c:2c:df:77:88:fc:07:05:14:d9:a7:c2:9f:da:f0:
f3:b7:da:63:ce:61:bd:fc:ed:84:e1:4d:0a:67:ad:
6e:78:27:c7:bd:bd:4e:ca:10:b0:28:c8:1c:96:26:
3c:6b:63:85:63:98:63:b7:0e:ff:b4:fd:f5:c4:54:
04:4f:9b:a8:ac:0e:91:d6:25:a9:41:97:3f:8e:e8:
75:28:9d:90:00:71:ed:9d:a2:16:44:09:a8:12:6c:
56:82:e9:4c:fe:c2:ce:1d:e0:26:19:f7:05:2c:d3:
2e:dc:b7:f7:da:18:c7:2e:6a:61:f4:46:6b:ac:3f:
e2:75:8f:74:a3:39:d5:0e:f0:47:3d:00:e8:69:84:
f1:c7:3c:02:8e:d9:6f:d6:fd:f4:51:74:d0:25:94:
79:a8:fe:7a:66:4a:4a:fe:e3:b2:0f:18:c6:06:1e:
59:18:4c:42:27:bf:96:33:fb:ab:94:ba:fe:48:80:
be:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AB:FF:D3:06:AA:CA:C6:6C:4C:96:EC:05:C9:42:DD:C3:B2:A3:A6
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ed:e9:7a:5a:87:be:8d:fb:28:ac:f4:bb:19:97:c7:6c:3d:
0e:da:27:90:d0:71:13:82:7e:16:72:bc:4a:e8:39:78:25:b8:
8e:58:c5:6f:a9:16:ae:9a:ca:61:22:9c:a0:3b:ed:9a:70:b7:
00:3f:85:e1:ad:0a:17:67:67:56:d1:0f:d9:0b:94:83:58:26:
c8:aa:8e:a7:02:96:62:68:89:a6:f8:83:e8:73:eb:4f:25:e9:
ed:56:22:1f:98:67:7c:a8:f0:ed:a3:92:b5:3e:7a:87:10:50:
3e:14:bc:0a:ae:0a:57:3b:87:39:41:b6:2c:67:03:04:13:0f:
82:e3:8f:6e:91:d4:df:a0:13:76:6b:e1:98:43:d0:40:42:4c:
16:29:bc:31:1b:f7:97:bf:58:36:3b:cb:eb:69:bf:f9:d2:1d:
2d:c6:72:a7:df:eb:49:a5:8e:90:a5:c3:a2:e6:31:05:19:ac:
f5:89:67:d9:66:3f:6e:a8:fe:fe:e2:de:eb:c6:55:1d:d3:ca:
ac:cb:61:ae:e9:8a:27:31:1d:75:ca:34:00:cd:df:33:6d:9b:
21:9e:af:1b:cd:e7:ba:77:b4:20:36:82:a0:dd:f9:24:24:c2:
54:c5:36:09:86:47:85:0e:85:de:b5:76:45:de:84:16:45:c5:
52:a4:1e:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ65WEzbPkw07523b5O+kKS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNjEyMDEwMDMyWhcNMjYwNjEzMDEwMDMyWjAzMTEwLwYDVQQD
Eyg1YWFiZmZkMzA2YWFjYWM2NmM0Yzk2ZWMwNWM5NDJkZGMzYjJhM2E2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5KPAX+e/o5bKXVG/Vv0A0d7bDNL
Zz3hqwvJzv7+dnDw5kfPX+6r5+KGSG4Rmk0KURoK+WI8EFwqotBdUtwkmDCLRpze
cvmK2918LN93iPwHBRTZp8Kf2vDzt9pjzmG9/O2E4U0KZ61ueCfHvb1OyhCwKMgc
liY8a2OFY5hjtw7/tP31xFQET5uorA6R1iWpQZc/juh1KJ2QAHHtnaIWRAmoEmxW
gulM/sLOHeAmGfcFLNMu3Lf32hjHLmph9EZrrD/idY90oznVDvBHPQDoaYTxxzwC
jtlv1v30UXTQJZR5qP56ZkpK/uOyDxjGBh5ZGExCJ7+WM/urlLr+SIC+iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqr/9MGqsrGbEyW7AXJQt3DsqOmMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAou3pelqH
vo37KKz0uxmXx2w9DtonkNBxE4J+FnK8Sug5eCW4jljFb6kWrprKYSKcoDvtmnC3
AD+F4a0KF2dnVtEP2QuUg1gmyKqOpwKWYmiJpviD6HPrTyXp7VYiH5hnfKjw7aOS
tT56hxBQPhS8Cq4KVzuHOUG2LGcDBBMPguOPbpHU36ATdmvhmEPQQEJMFim8MRv3
l79YNjvL62m/+dIdLcZyp9/rSaWOkKXDouYxBRms9Yln2WY/bqj+/uLe68ZVHdPK
rMthrumKJzEddco0AM3fM22bIZ6vG83nune0IDaCoN35JCTCVMU2CYZHhQ6F3rV2
Rd6EFkXFUqQeSQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 07:55:29 2026 by rpki-client