Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: oByt704L678lifwO0TLFeIB1ynqS6k4uLNa6MWQV0GU=
Subject key identifier: 6E:51:BF:4C:E8:4D:E6:43:1D:EA:8C:D3:0A:A3:D9:9A:F2:2A:57:A1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E646051DA9E26B86A76732BAE010110A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 192D
Signing time: Tue 26 May 2026 13:01:34 +0000
Manifest this update: Tue 26 May 2026 13:01:34 +0000
Manifest next update: Wed 27 May 2026 13:01:34 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: lUyf7xWx74jzI0jqqazGiz1D/IvDMZxGLd9WE4ghnZ4=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 May 2026 13:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:64:60:51:da:9e:26:b8:6a:76:73:2b:ae:01:01:10:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 26 13:01:34 2026 GMT
Not After : May 27 13:01:34 2026 GMT
Subject: CN=6e51bf4ce84de6431dea8cd30aa3d99af22a57a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:88:19:48:5f:67:bf:11:25:86:96:fb:f8:
db:c4:a6:ae:13:f9:e8:26:7d:5c:83:01:18:f7:67:
5a:b7:16:b5:c5:bd:26:f2:bc:82:7c:86:bc:56:15:
f6:b0:27:a5:18:91:d8:96:d6:b5:02:94:b3:3d:c5:
86:c3:2e:b2:6f:4f:71:d4:d5:08:77:00:be:47:a7:
14:1f:48:f3:f4:8f:7e:da:bf:f5:f1:1d:84:c3:cc:
53:22:fb:9f:12:84:5a:25:3d:c1:c7:73:e9:c5:d4:
75:0d:0d:50:58:18:5b:27:2d:ff:e7:ac:ca:3b:f9:
93:6b:3c:07:49:e3:a1:e1:0c:8b:c9:5c:69:ed:5f:
25:ea:c8:ee:16:f4:a7:4b:57:da:6d:e0:95:a2:61:
64:61:5d:05:6b:ac:a9:2a:7f:31:97:87:47:d3:3c:
eb:58:ae:86:40:d9:17:fc:b0:49:81:38:57:30:85:
4a:f4:4f:aa:08:30:ba:85:c1:1c:3e:e5:8e:bb:ef:
19:b2:cb:e8:ea:70:71:9c:1c:0e:10:d9:7f:8d:53:
14:f4:ab:64:b4:6c:a2:67:8f:7e:63:c3:96:96:a8:
26:4a:4a:bb:06:cf:fa:6a:23:48:9f:a3:31:6a:c0:
58:4e:c4:31:26:67:c1:9a:45:43:43:1d:79:6e:e3:
ce:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:51:BF:4C:E8:4D:E6:43:1D:EA:8C:D3:0A:A3:D9:9A:F2:2A:57:A1
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:08:53:e6:9f:f2:e5:a1:4c:d7:51:2a:21:5f:d1:91:21:3c:
18:ed:d2:0d:b6:23:5a:76:d6:0f:f2:a2:b5:78:a6:a7:69:7d:
88:7c:cd:36:19:93:35:90:a8:40:fc:ad:1b:4c:24:34:d6:d4:
6a:c8:d7:b4:68:6c:a8:24:7f:7b:70:4d:16:30:ce:e3:49:bf:
76:cc:42:54:5a:ae:f2:71:76:ee:36:49:d2:7e:9e:03:09:03:
7c:44:ee:ba:d5:80:97:3a:89:33:c8:0d:95:00:d3:e9:16:ca:
55:8e:98:d6:16:f5:b2:bc:04:39:6b:ae:ff:0d:e3:04:45:c7:
97:c0:e6:88:0b:36:ce:f2:42:3d:3f:24:b1:83:6f:da:06:87:
07:67:a6:0a:63:03:75:2a:59:2c:58:f5:c5:4c:05:37:10:34:
83:cd:b7:58:14:aa:76:1a:b4:70:2d:0b:63:ce:8d:ff:6d:99:
0d:64:2b:1e:ce:25:4e:c6:e7:cd:19:7a:4c:ea:10:dc:7c:cf:
d9:25:17:d1:b7:49:f5:f4:26:af:d0:c1:94:19:fb:28:e6:81:
91:2c:42:4f:02:a6:d1:47:12:df:09:65:b8:e6:c0:a8:7c:7b:
8c:ec:c0:9f:13:ff:62:bd:3d:e7:84:e0:ff:20:18:a6:55:c1:
9c:71:a6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 26 19:47:46 2026 by rpki-client