Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: kitdDaDF3w7w4zBw2I7M4+A0e0OsiKrsuOh71p98+UY=
Subject key identifier: 24:7F:22:CD:59:B0:76:EA:27:F0:5C:F7:35:5F:02:F1:CF:2C:B5:84
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E799DBB889128DA67B77CA7A33FD6C859
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1938
Signing time: Sat 30 May 2026 16:00:40 +0000
Manifest this update: Sat 30 May 2026 16:00:40 +0000
Manifest next update: Sun 31 May 2026 16:00:40 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: +1lv0CX7dInr8VVV+kXUQ5cSWAsOO0J9+y+tM2B0kZE=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 31 May 2026 16:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:79:9d:bb:88:91:28:da:67:b7:7c:a7:a3:3f:d6:c8:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 30 16:00:40 2026 GMT
Not After : May 31 16:00:40 2026 GMT
Subject: CN=247f22cd59b076ea27f05cf7355f02f1cf2cb584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:55:86:52:80:e6:4a:db:78:86:f6:0e:d0:5f:
de:c3:49:42:4a:eb:35:b7:21:b4:14:5a:c7:9f:ff:
86:01:a1:5a:39:e8:f6:e5:e5:50:a7:b8:d2:7f:ee:
9c:ca:0f:c7:46:e6:ca:20:b5:64:94:b4:62:31:c9:
96:a5:64:d6:30:69:dd:65:6a:69:98:a0:5d:66:b1:
86:b8:5c:70:f4:46:85:fd:5f:ca:51:42:05:6e:98:
19:f4:6a:85:7e:1c:8f:c5:3a:d0:06:f9:34:f1:5c:
09:cb:e8:88:52:33:86:34:a8:ef:e3:33:c9:ff:cf:
c2:47:d1:1e:e5:98:d8:89:06:04:91:06:70:d5:98:
db:13:aa:45:42:8b:26:ef:2c:12:e8:29:ee:67:1f:
b4:97:be:b4:5a:c0:a8:34:4b:8d:ac:62:bd:c9:bc:
5d:cf:12:11:21:39:cc:59:cc:e8:f2:08:5a:6a:d1:
ec:3b:f1:a3:a3:10:6b:64:f3:1c:89:7e:f5:d9:b6:
a4:2f:76:ed:6b:a1:8e:cd:03:af:be:92:50:01:ec:
f7:39:3d:4a:4e:c5:f8:fc:21:43:54:26:ae:6c:07:
09:eb:f7:e2:1e:a9:0a:b0:76:48:3f:af:c0:a4:3f:
1b:e9:a9:dd:14:f6:1b:44:23:4f:5f:61:59:89:c6:
a7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7F:22:CD:59:B0:76:EA:27:F0:5C:F7:35:5F:02:F1:CF:2C:B5:84
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:78:bf:e4:fa:ad:de:99:f8:57:4b:17:97:30:45:b4:ef:a1:
54:25:80:12:0c:73:5e:89:57:f9:4b:3d:58:e3:90:43:15:b1:
2c:85:89:15:06:be:16:d6:38:94:ec:f8:7a:e9:ea:fd:0c:f3:
ce:ca:67:bc:8d:4f:25:40:1d:10:ec:2a:17:c4:cf:3d:99:4c:
8a:3e:db:19:4f:0c:ab:75:38:f6:50:72:e9:56:52:9b:a0:85:
bb:68:be:d3:98:ca:aa:41:c8:7e:1d:92:ee:b9:a8:79:d3:bd:
1f:00:78:94:0c:14:c1:d5:91:9a:55:a0:f6:d9:b6:a0:71:78:
9b:3f:89:5c:d9:99:cb:5c:99:c0:7b:c7:4d:4a:85:94:1e:60:
bb:69:6a:23:9a:ea:0c:d8:7f:46:e3:71:8f:9f:ca:bd:e5:14:
ca:7f:e7:d5:62:58:3a:27:04:66:5f:25:e5:12:38:09:6f:cc:
15:02:7e:98:fe:ca:d6:7b:ad:cc:66:f8:6f:bb:e8:eb:92:c9:
a8:58:2f:c5:e7:3f:ed:aa:e4:d6:86:a0:06:82:71:d8:d8:e4:
ab:2c:ac:13:0f:d2:85:fa:d0:0d:80:5a:3d:bf:be:85:a2:d5:
bf:71:84:93:fb:1a:e6:de:28:0d:36:11:a3:20:be:e5:9d:67:
aa:52:52:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 30 22:38:00 2026 by rpki-client