Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: lC3ZOp51tN+cnpq48mF175wz6tikuoEHILC3UiSHPC8=
Subject key identifier: 44:8F:0E:64:B4:C3:EE:71:96:11:B2:6C:22:DA:A2:4B:69:2E:2E:B7
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F04050676B761D7A711DF5BE889CB20E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1980
Signing time: Fri 26 Jun 2026 13:01:05 +0000
Manifest this update: Fri 26 Jun 2026 13:01:05 +0000
Manifest next update: Sat 27 Jun 2026 13:01:05 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: zb70PsfiFokATkn8KWcfJLbD+b+xtg3CXv7crAEoNhU=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:04:05:06:76:b7:61:d7:a7:11:df:5b:e8:89:cb:20:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 26 13:01:05 2026 GMT
Not After : Jun 27 13:01:05 2026 GMT
Subject: CN=448f0e64b4c3ee719611b26c22daa24b692e2eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d2:d0:04:13:57:ad:40:d2:bd:e2:c0:11:7c:
dd:6d:2c:d9:67:03:7a:91:79:9f:e0:d2:37:ec:2c:
8c:64:48:c9:66:56:1b:92:71:da:8c:90:5e:d5:20:
e9:09:ce:e3:d7:49:4b:4a:eb:a8:76:a9:d6:28:9a:
c2:de:ab:f7:06:0d:b4:24:f7:6b:5f:32:9e:bf:0f:
b5:c3:66:f3:cb:04:c4:a2:01:52:10:9a:8e:2e:67:
c6:5d:a2:d9:57:1c:18:ab:ac:d9:f9:a3:ae:82:1d:
db:e2:22:0d:97:e1:04:aa:8c:73:ec:30:16:ef:47:
1e:47:91:60:ac:cd:c4:f3:16:d3:84:90:c8:f8:49:
ab:d6:1d:f3:5c:ae:a5:6b:9f:5b:83:85:f2:58:77:
55:4d:b5:15:c6:d2:7f:28:04:c5:e0:4d:5f:65:c7:
a9:d6:94:ac:1e:3c:11:74:01:39:e4:fa:bd:c9:8a:
55:3b:22:5c:79:92:b7:9b:8f:b0:85:f2:9a:0e:ac:
54:20:dc:22:6e:1f:77:ef:3e:56:27:7d:e7:62:f1:
c8:44:a8:e3:29:77:71:ac:06:31:81:12:cb:79:ea:
08:41:bb:b5:84:99:25:72:5e:52:7d:6e:84:89:11:
96:68:74:58:4e:ed:f9:d7:77:ab:13:2f:df:f7:2f:
21:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8F:0E:64:B4:C3:EE:71:96:11:B2:6C:22:DA:A2:4B:69:2E:2E:B7
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:48:fa:a1:42:ea:e7:22:46:7c:73:66:e4:f5:c9:77:8f:a1:
ee:10:c6:77:f7:4e:6e:0e:3e:c8:f0:6f:13:35:d6:19:a6:1a:
f5:21:e2:99:6a:7d:11:bb:3d:32:93:3d:b0:ee:96:cf:aa:f0:
dc:4d:4a:83:bc:6a:23:71:77:0d:a1:cf:b4:32:64:ce:87:bf:
22:fd:6c:34:02:d6:74:f4:af:e8:5f:01:d8:67:47:4f:74:27:
e9:c1:27:44:78:0c:02:a9:0e:e8:32:47:95:fa:80:06:92:6d:
45:6a:60:cc:38:37:b7:2f:80:bc:2d:b3:22:f7:87:8a:cf:70:
90:84:e3:ed:1c:49:f5:a2:f7:7d:e3:7f:cb:65:c4:ec:f3:85:
74:75:4c:a2:ef:af:3e:e0:3a:7d:83:98:ba:e2:93:c8:2c:c9:
fe:75:89:fc:45:12:e0:42:8b:48:4f:a5:d1:8d:17:cb:83:85:
6d:91:99:8b:f6:10:58:d9:f1:82:1a:72:e4:f9:73:7d:c8:75:
36:bb:96:aa:f0:4c:f1:76:d9:b5:59:0c:2f:db:4b:3a:00:e8:
1a:6e:f2:2a:4e:8e:54:7f:05:71:4d:be:19:ce:a8:d3:4f:4d:
3c:83:62:8c:a0:8d:a7:50:3d:c6:88:4c:41:0d:fc:62:31:f1:
b9:c5:d2:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 26 17:58:11 2026 by rpki-client