Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: JxH2xe5ND7A+F1i7oThNAQ1AxotZGdwUvZwqIzzpTRQ=
Subject key identifier: 18:95:AC:2A:B5:81:36:21:68:3C:7F:5C:E6:64:6E:EA:85:6C:92:97
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F1378C372C095E9257AA423C33B30478A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1988
Signing time: Mon 29 Jun 2026 13:01:49 +0000
Manifest this update: Mon 29 Jun 2026 13:01:49 +0000
Manifest next update: Tue 30 Jun 2026 13:01:49 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: SzUlGeJuTqGxcH0hy8GugvL/JbQrSoI2KPkbORZ8qbk=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 13:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:78:c3:72:c0:95:e9:25:7a:a4:23:c3:3b:30:47:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 29 13:01:49 2026 GMT
Not After : Jun 30 13:01:49 2026 GMT
Subject: CN=1895ac2ab5813621683c7f5ce6646eea856c9297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b0:f1:b2:c6:e6:84:1c:f5:a8:3f:a0:56:ee:
95:e5:54:62:ce:75:ad:21:56:63:b3:d6:4d:ec:ba:
0c:2c:7d:cb:c3:fd:45:4f:a8:5f:ff:e4:d9:37:67:
ba:d1:69:9d:44:53:34:df:68:d8:c2:aa:df:de:71:
ba:e5:18:64:1a:98:e0:35:f2:02:b8:59:3c:99:97:
97:44:b2:95:69:78:83:2c:ab:c0:80:d1:b3:6d:c8:
37:d7:bf:27:3c:df:60:ca:98:b3:f8:64:be:9e:99:
ff:b2:15:98:5f:b6:da:5c:9a:ce:63:9e:45:9d:b3:
60:b4:50:8e:cf:2c:61:a4:ce:01:e1:8d:8f:6d:a4:
17:13:ab:18:1d:12:ff:05:de:0e:e1:79:78:bc:bb:
05:22:b6:ae:a8:2a:b5:2d:60:21:d5:9d:31:92:70:
8d:d2:d4:7a:2f:43:67:a1:0a:d7:80:13:2c:65:ea:
c9:43:3f:ad:80:ca:f6:04:7f:1a:f2:34:4c:ff:18:
62:23:36:a6:09:6b:f7:c4:cf:08:df:e8:e8:37:85:
17:e1:d1:b8:ef:8a:12:a5:c2:b1:27:36:30:01:6d:
f2:db:78:5d:3a:ec:15:43:c6:3f:c3:66:6e:a0:31:
0b:80:96:4d:88:e1:51:9e:3a:e3:39:46:7d:66:3f:
9f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:95:AC:2A:B5:81:36:21:68:3C:7F:5C:E6:64:6E:EA:85:6C:92:97
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:58:43:f7:a3:27:75:a7:87:b5:b7:21:66:e3:46:96:8f:c7:
2f:2e:0f:30:18:67:42:0b:f6:b1:4b:39:61:bc:d9:94:fb:e6:
05:67:0e:2a:8f:84:2e:ba:6d:d7:83:2b:51:34:e1:2f:ae:c0:
9f:78:0a:12:60:02:32:64:fe:57:c1:0a:fd:1d:20:f9:a6:42:
d5:1e:a6:48:b8:76:db:3e:9c:3b:41:6b:5b:0f:85:bf:b9:ea:
4a:d9:56:9b:d0:73:58:d0:d5:3d:65:9b:bf:90:43:6a:f8:95:
b4:b0:8f:25:03:42:cc:3a:52:23:65:fd:35:ee:4b:d0:b7:ba:
f6:a6:da:14:da:dc:df:96:6d:c4:1f:cf:9a:3d:88:8b:f0:1f:
10:81:32:e6:72:ce:20:cc:eb:c1:78:50:48:c4:3e:0b:db:6e:
10:f0:39:a2:07:af:4b:39:65:c5:82:26:46:c1:21:e1:a7:be:
64:34:19:3b:b8:ee:f6:9f:e3:80:e7:89:f9:9f:fd:46:93:2d:
25:7c:7a:ce:21:1e:83:b0:12:6a:3a:ee:0c:a0:28:f1:b5:62:
2c:d5:f3:d0:2b:19:a5:99:a2:30:95:c9:c8:85:d8:e2:72:86:
81:f5:ad:52:00:8a:41:d7:ed:d8:54:34:15:5e:5f:ba:a3:54:
c8:1e:24:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 19:09:49 2026 by rpki-client