Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: WXTN71ZYFjWBDRMdk5Bf9QPeGdy3klpbLmaQwW4m4fg=
Subject key identifier: 6C:23:95:11:65:2F:92:14:C5:03:08:5A:79:B4:E4:88:A6:F0:3B:70
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CA456F49DC2A33966D342E4E2273B3A0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1844
Signing time: Sat 28 Feb 2026 13:01:27 +0000
Manifest this update: Sat 28 Feb 2026 13:01:27 +0000
Manifest next update: Sun 01 Mar 2026 13:01:27 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: ebuAg8SR7M6jVGyKP31VEpLn1pZaQ4uNajv4ayQZu2s=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 01 Mar 2026 12:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a4:56:f4:9d:c2:a3:39:66:d3:42:e4:e2:27:3b:3a:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Feb 28 13:01:27 2026 GMT
Not After : Mar 1 13:01:27 2026 GMT
Subject: CN=6c239511652f9214c503085a79b4e488a6f03b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:df:92:20:9b:13:89:99:70:73:ee:1f:1f:
10:c7:0a:50:5e:02:d1:1b:1c:33:44:63:fc:df:4d:
34:02:f3:38:e8:ff:e6:20:01:c0:50:f3:d2:36:a0:
30:29:a6:e2:05:91:d3:14:8e:7d:2c:62:51:72:06:
4c:13:70:e0:dd:88:c6:32:b7:11:ca:1c:9c:e7:e4:
d9:e5:6b:d7:73:19:f2:97:f3:21:c1:61:68:ee:c2:
12:ad:e8:e1:b1:69:d9:f3:b8:c3:01:2b:d1:f8:68:
f6:6c:c2:3f:8c:ef:cd:7e:20:36:1f:cb:d4:75:e5:
44:5b:55:cd:f8:38:a5:9a:93:fe:eb:88:0e:e7:e0:
65:b1:61:2e:2f:2c:c8:e9:4c:f3:56:31:95:9a:4d:
33:22:9e:dc:03:45:03:69:3b:59:b4:2b:9d:fd:f2:
04:87:17:b9:85:18:57:ca:1b:02:c9:96:24:d5:dd:
ee:4e:a3:5b:74:27:89:e6:2f:06:2f:b0:80:3b:07:
fc:b7:9e:37:49:f0:a1:93:17:87:34:31:cb:8b:79:
80:78:6e:f6:3a:7a:53:1f:54:36:97:01:ab:4c:20:
92:fc:18:1e:ea:5b:ec:99:1c:c7:15:5a:87:20:ff:
7a:43:c8:2e:b0:19:c6:67:97:8a:7e:d1:64:4e:27:
58:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:23:95:11:65:2F:92:14:C5:03:08:5A:79:B4:E4:88:A6:F0:3B:70
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:8f:b3:bb:02:4d:e0:75:7d:79:79:76:0f:e0:09:dd:96:2e:
68:7d:19:11:ef:7d:e4:19:51:47:2b:e8:00:c3:d2:eb:56:26:
4e:19:61:ae:71:f6:96:e3:74:60:a9:68:6e:25:2f:1e:e8:32:
4a:b0:83:d7:e9:45:93:75:e7:51:c9:4b:06:b6:7d:26:eb:eb:
6d:1c:47:d0:7b:be:7c:13:ec:e8:f6:2a:71:63:41:4b:97:95:
24:f1:e8:b3:c7:aa:3a:7a:51:ce:3c:e1:85:70:15:ea:f6:86:
4b:1c:0a:2f:51:eb:b5:d7:c6:ce:cf:9d:9a:c6:ab:57:e3:62:
71:3a:1c:f0:5b:b1:d1:9e:bb:29:10:ce:e6:0c:be:4c:cf:d1:
2d:73:19:78:44:dc:71:4b:31:a8:b1:80:38:5a:4a:cd:20:0b:
33:4f:8e:de:75:20:03:59:30:3c:a4:74:a8:2c:c1:44:4e:82:
01:e7:82:58:57:49:3b:9c:fa:42:05:fb:6c:a7:8b:6e:bc:2f:
50:5e:95:bd:31:d6:b0:b1:b6:db:a4:02:41:cb:23:46:ab:80:
15:72:44:d6:84:c7:b3:0b:1d:d2:78:43:a8:d4:5d:9b:76:ae:
15:4c:d2:bb:a0:fa:aa:01:77:19:dc:27:01:b8:06:31:01:6a:
33:91:a4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 28 15:20:37 2026 by rpki-client