Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 7uZRk02fgVB6ARQL5yOdJAcgoeu7vFErBkutOmGFaVA=
Subject key identifier: 46:35:B4:53:B0:11:9B:39:98:8F:6A:62:F4:E5:5C:E0:04:EF:1F:A5
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D9B87C133AC3B04F6EDEEE1B82EF2E997
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 13:00:58 +0000
Manifest this update: Fri 17 Apr 2026 13:00:58 +0000
Manifest next update: Sat 18 Apr 2026 13:00:58 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: VmeSB5IdhA0+lm5s6Iph/GI3dEvyn81a2O9nbC/DXWI=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:c1:33:ac:3b:04:f6:ed:ee:e1:b8:2e:f2:e9:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 17 13:00:58 2026 GMT
Not After : Apr 18 13:00:58 2026 GMT
Subject: CN=4635b453b0119b39988f6a62f4e55ce004ef1fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b9:9a:97:30:fe:ec:4a:3b:00:78:58:5d:63:
04:d1:5e:5e:73:e4:22:b1:0c:c0:f4:28:95:a9:97:
dd:ed:4d:4c:99:36:66:77:e7:2b:a2:fd:1e:be:65:
a4:77:7d:b7:b2:e7:55:51:a0:0f:53:ab:65:df:03:
49:5d:52:02:f1:bb:42:4c:80:17:4d:e6:ee:e6:4a:
43:e4:5d:e4:a5:c6:0d:42:18:ec:42:f0:40:5d:78:
d2:7a:67:95:db:2c:05:aa:59:32:1b:b9:be:2e:8f:
74:26:91:f7:19:32:66:df:8a:14:cb:89:df:74:77:
47:2d:5b:8b:ba:d5:be:c0:9b:1a:14:20:27:ef:93:
86:83:08:2e:69:d6:6a:1a:1c:50:aa:cb:7f:9e:6b:
69:82:00:67:66:6b:f1:10:52:a1:39:8e:55:f9:ac:
69:cf:88:f3:e8:9a:85:51:ba:e4:76:ce:13:99:8e:
69:ed:82:fc:e3:82:aa:58:49:2a:fa:31:84:f3:1a:
22:5a:b5:28:d7:2e:0c:d3:b9:ef:db:d7:0d:6b:0b:
f7:77:40:4b:b7:a2:8c:32:e8:02:61:a1:09:07:32:
6b:43:3f:59:c0:49:b6:4a:4e:fb:19:7a:01:64:cf:
53:9f:0a:dd:3b:45:2e:44:30:3b:0e:93:e6:06:66:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:35:B4:53:B0:11:9B:39:98:8F:6A:62:F4:E5:5C:E0:04:EF:1F:A5
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:32:a4:72:01:66:41:e7:11:52:33:ad:b9:32:89:fb:b3:55:
af:ac:b3:d9:4f:44:12:db:6f:f8:c0:0e:d2:10:ef:b0:d1:f2:
eb:3d:c2:9b:ce:8a:39:d4:da:d9:85:5a:98:9f:7f:a7:74:14:
08:e3:da:d2:d5:ba:89:56:65:85:51:c7:78:f8:28:ef:6f:12:
56:7d:d1:64:39:7e:86:73:2f:1e:5b:cd:52:79:0f:20:ec:bc:
d1:35:ff:71:e0:1d:30:d2:5b:6c:c1:a7:41:74:e0:3a:42:5d:
ab:a1:23:5f:fe:2b:2e:1c:80:8d:60:20:1e:97:c5:89:2b:4b:
c6:ca:fc:4b:4d:da:78:f1:b5:87:7e:df:ac:59:49:39:84:e4:
41:47:84:12:1b:4c:ca:f5:4d:79:8a:e6:50:95:03:88:9c:0b:
c6:88:30:f5:94:53:fb:61:7a:2b:09:34:02:e7:e5:1a:ef:94:
52:09:c4:5e:1e:2d:9d:02:6d:a0:8f:01:00:4a:f1:e8:46:f2:
ff:15:c6:1c:a7:6e:2c:15:a9:ea:ad:f6:3b:97:9b:ac:fb:40:
ff:57:e9:a6:73:14:11:19:a5:16:e2:af:45:74:2a:21:ee:a3:
94:1e:4c:96:05:bc:0c:85:b0:3f:b5:c3:72:8a:6f:36:4c:9a:
da:9c:d8:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bh8EzrDsE9u3u4bgu8umXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNDE3MTMwMDU4WhcNMjYwNDE4MTMwMDU4WjAzMTEwLwYDVQQD
Eyg0NjM1YjQ1M2IwMTE5YjM5OTg4ZjZhNjJmNGU1NWNlMDA0ZWYxZmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7malzD+7Eo7AHhYXWME0V5ec+Qi
sQzA9CiVqZfd7U1MmTZmd+crov0evmWkd323sudVUaAPU6tl3wNJXVIC8btCTIAX
Tebu5kpD5F3kpcYNQhjsQvBAXXjSemeV2ywFqlkyG7m+Lo90JpH3GTJm34oUy4nf
dHdHLVuLutW+wJsaFCAn75OGgwguadZqGhxQqst/nmtpggBnZmvxEFKhOY5V+axp
z4jz6JqFUbrkds4TmY5p7YL844KqWEkq+jGE8xoiWrUo1y4M07nv29cNawv3d0BL
t6KMMugCYaEJBzJrQz9ZwEm2Sk77GXoBZM9TnwrdO0UuRDA7DpPmBmYgMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEY1tFOwEZs5mI9qYvTlXOAE7x+lMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhzKkcgFm
QecRUjOtuTKJ+7NVr6yz2U9EEttv+MAO0hDvsNHy6z3Cm86KOdTa2YVamJ9/p3QU
COPa0tW6iVZlhVHHePgo728SVn3RZDl+hnMvHlvNUnkPIOy80TX/ceAdMNJbbMGn
QXTgOkJdq6EjX/4rLhyAjWAgHpfFiStLxsr8S03aePG1h37frFlJOYTkQUeEEhtM
yvVNeYrmUJUDiJwLxogw9ZRT+2F6Kwk0AuflGu+UUgnEXh4tnQJtoI8BAErx6Eby
/xXGHKduLBWp6q32O5ebrPtA/1fppnMUERmlFuKvRXQqIe6jlB5MlgW8DIWwP7XD
copvNkya2pzYBg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 22:17:39 2026 by rpki-client