Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: wAXZckj4TKRUPR2ap84HdHn1bwfuQ/IH4ilihTm6fHo=
Subject key identifier: D2:60:B5:34:52:D5:83:29:EC:C4:27:13:83:99:CC:8A:D1:AB:FF:26
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E7F695727EBC8464E688ADABFD23D4CB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 193B
Signing time: Sun 31 May 2026 19:01:10 +0000
Manifest this update: Sun 31 May 2026 19:01:10 +0000
Manifest next update: Mon 01 Jun 2026 19:01:10 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: OmAH+paU+NWZwrlYLAxYOm8eFQb3Urace/lvxelfMXI=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 13:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7f:69:57:27:eb:c8:46:4e:68:8a:da:bf:d2:3d:4c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 31 19:01:10 2026 GMT
Not After : Jun 1 19:01:10 2026 GMT
Subject: CN=d260b53452d58329ecc427138399cc8ad1abff26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:fa:67:16:74:f0:10:e3:be:e6:eb:c8:1a:
78:dc:7c:1e:bf:72:3d:2f:41:60:79:77:2b:fe:c5:
91:00:a4:dc:7e:b6:8c:8b:2f:3c:38:1e:08:1a:b6:
bf:85:fe:b9:76:d7:56:96:95:7f:d3:2a:6a:2d:91:
0f:98:3b:8a:63:2f:49:32:cf:c1:59:33:8a:41:0e:
68:c9:8b:12:eb:9c:a0:a7:2a:0e:ad:33:8e:25:c8:
10:4e:bb:21:41:df:52:cc:0b:7a:b3:23:1c:42:34:
2e:5a:0a:23:02:22:31:21:c7:21:14:94:be:b9:4f:
d7:b2:12:16:19:d0:67:4b:3d:a1:5a:e7:94:9c:7e:
ec:6b:68:1f:a3:cf:3c:51:b1:90:ba:77:84:f8:e3:
5a:30:95:9a:a8:09:ab:13:f0:4b:88:4e:2e:da:1d:
65:f0:4e:97:a9:a6:55:c2:11:a8:4b:93:29:14:f6:
43:8a:d9:cb:f5:b2:de:48:7a:a6:c2:4e:6d:43:5b:
10:e8:72:a1:0d:4d:9c:9d:69:35:cb:08:7d:7b:c2:
fb:a9:34:bb:f5:32:5c:e1:52:a0:ed:6d:dd:57:94:
53:a6:61:36:11:25:13:af:5a:63:dd:81:1e:9c:a0:
7d:59:42:c1:ea:9b:88:5e:f6:b2:4a:f4:9a:53:2a:
ef:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:60:B5:34:52:D5:83:29:EC:C4:27:13:83:99:CC:8A:D1:AB:FF:26
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:7b:8f:18:07:26:43:fb:71:1d:ce:38:4c:e1:57:12:9f:b7:
42:a1:b9:8a:a5:db:86:c4:24:aa:d1:6d:c4:48:85:c7:7e:91:
49:e1:a6:b3:50:1c:1a:80:0a:1e:0b:11:0c:7c:72:1e:68:b2:
b5:69:93:53:d2:ac:a3:de:0c:87:9d:08:85:2e:2d:d2:46:cf:
de:4a:bc:31:4c:b7:d5:b6:8f:44:42:44:4c:a9:18:9d:8b:8a:
e4:50:95:ec:50:c0:85:b3:1b:e9:6c:a2:b3:9c:95:04:4a:dd:
95:48:1e:85:e7:b1:fd:8f:6e:8e:7e:65:5b:7c:55:d7:87:47:
ba:70:35:ad:b2:96:7c:61:52:62:c3:ce:40:a8:9c:e8:9e:05:
d0:1e:bc:89:7b:6c:d9:b3:21:e1:30:21:f2:42:f2:09:e3:e1:
b0:4c:64:39:2f:48:82:af:c5:5a:31:84:3b:70:e6:4e:ce:38:
c4:43:b5:d6:2a:b0:8d:3d:5e:ce:26:a9:bc:99:46:bb:7d:16:
a1:25:05:8b:63:b4:0f:4b:03:9f:21:82:a3:94:dd:b0:d3:1b:
97:e4:21:36:b7:9b:f4:74:b4:57:7b:dd:2f:51:4d:12:98:ad:
73:43:8d:55:4e:25:d1:2b:66:9f:c7:53:10:2c:dc:c9:36:e5:
cb:8a:7b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 31 23:18:48 2026 by rpki-client