Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 7jakHIk851mAcfSe98PNrD2unHvvfMpJ3k9Lh8WUbPg=
Subject key identifier: BC:08:55:4C:39:86:12:4B:16:A2:EC:6B:16:B6:9D:D6:30:F5:BA:1D
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E58C947D51CFC612D226CFEA78F670A9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1927
Signing time: Sun 24 May 2026 07:00:46 +0000
Manifest this update: Sun 24 May 2026 07:00:46 +0000
Manifest next update: Mon 25 May 2026 07:00:46 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 3Dkyj+WrvN0fCtJXPFABtKdJnESxytml4+lo7f05pvE=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 25 May 2026 07:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:58:c9:47:d5:1c:fc:61:2d:22:6c:fe:a7:8f:67:0a:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 24 07:00:46 2026 GMT
Not After : May 25 07:00:46 2026 GMT
Subject: CN=bc08554c3986124b16a2ec6b16b69dd630f5ba1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:31:59:5e:84:71:79:12:f9:73:5f:22:d8:
94:85:a9:d7:34:a1:e4:dd:fa:54:49:ae:74:b3:f2:
fa:73:14:2e:79:8a:52:11:6a:43:e1:57:14:df:2e:
b7:4a:6a:1d:35:52:8d:75:1f:9f:94:0a:63:2d:a5:
d8:9a:5b:83:44:f9:1a:3b:a8:91:0b:a5:5a:ca:e9:
f8:3b:54:91:58:42:8d:ae:89:cd:e6:36:dd:ba:61:
0c:91:b9:50:54:53:58:83:ac:7c:f1:9f:c3:c1:bc:
e8:6b:6a:5c:ea:d2:c2:90:0e:7b:0e:a1:e6:e4:1d:
2e:97:f4:68:93:14:cc:39:1e:aa:4c:b7:6b:6d:50:
7e:ff:d7:e5:c9:fc:44:d2:53:84:25:c3:af:ea:ae:
e9:ec:d4:61:49:47:f0:a7:ff:af:f8:c7:cb:09:6c:
67:6c:7f:78:a9:45:b8:f8:5b:ab:22:f0:9a:5d:dd:
86:44:73:d4:7a:2c:3b:15:fa:1e:34:ff:63:49:ac:
75:8e:fd:53:35:70:4c:6d:05:d4:5f:53:17:cb:5b:
1b:61:17:45:c2:54:8c:17:ca:27:42:64:f8:fe:83:
5e:a6:d4:f8:1b:8e:d0:57:e4:de:ca:ea:86:bd:7d:
a1:3d:97:ca:0e:95:79:19:9b:5d:e9:5f:c3:00:3b:
41:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:08:55:4C:39:86:12:4B:16:A2:EC:6B:16:B6:9D:D6:30:F5:BA:1D
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:d0:8f:14:22:6b:b6:0f:9b:c0:ec:d8:5b:8a:99:e4:34:dc:
5d:cf:32:63:98:dc:30:13:98:b4:d1:f5:7b:ec:9f:af:70:93:
36:39:02:a0:d5:a8:c9:cb:40:3d:3c:5e:8f:94:ae:67:90:bb:
ca:c8:16:ce:66:ef:8e:6f:6b:bf:bf:bd:d7:8e:ea:3e:27:01:
41:3f:5c:06:67:19:c2:1a:26:0b:9f:95:b9:12:41:a2:e3:78:
2a:d3:24:de:f7:91:96:54:27:09:36:23:fe:11:f5:a2:d8:13:
cf:07:ef:c1:ff:da:63:58:15:0c:99:16:c8:4d:2c:a4:b3:71:
ee:90:8f:76:24:91:36:3e:35:0b:24:14:76:e1:0f:00:2f:60:
ce:76:28:c1:72:24:6d:73:f7:3e:78:32:a4:15:ff:3f:11:5b:
c8:7e:4f:7b:3b:3c:ca:50:4f:8f:51:5a:a2:08:a6:57:82:be:
93:46:46:b7:f3:38:99:49:88:db:ae:45:f1:9c:ee:93:b6:5e:
5b:3e:c0:e2:f7:63:a9:0c:23:64:41:9e:a2:51:a8:84:92:cb:
a6:97:1e:1b:50:70:a6:1c:f9:99:6c:36:99:d7:38:73:76:bf:
90:1c:10:a5:33:a9:83:6d:d9:cf:97:de:ec:2a:58:c1:2d:5d:
01:53:1d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 24 18:00:17 2026 by rpki-client