Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: CVod4f/vUumiuYvdghAvw89DFopZM4UvT3CEbr+dYXc=
Subject key identifier: 71:02:9D:DE:2E:82:C1:2D:D7:16:3E:16:42:3B:86:9B:12:82:9E:D9
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D61987A078099CC2F517D15F2CAA0B5D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18A6
Signing time: Mon 06 Apr 2026 07:01:15 +0000
Manifest this update: Mon 06 Apr 2026 07:01:15 +0000
Manifest next update: Tue 07 Apr 2026 07:01:15 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 2rO0A2jSwQQeOGde0+wuQye9hN2GKyGTJ8xBwjOcV2U=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Apr 2026 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:61:98:7a:07:80:99:cc:2f:51:7d:15:f2:ca:a0:b5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 6 07:01:15 2026 GMT
Not After : Apr 7 07:01:15 2026 GMT
Subject: CN=71029dde2e82c12dd7163e16423b869b12829ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:72:4d:09:68:ec:0d:10:58:e1:30:1e:64:e1:
e6:aa:93:0a:88:cf:27:ac:92:50:66:37:56:79:b5:
ab:8a:48:04:c9:5e:89:f2:0d:2a:07:17:27:f5:f3:
0e:5f:83:f4:6d:a3:8b:e8:b8:8a:62:db:77:ee:54:
f1:5e:c4:94:bf:c4:ff:04:7b:72:33:b3:34:15:30:
fb:dc:d9:fe:27:df:46:17:86:2b:e0:32:cc:5f:3f:
f1:fb:10:b8:78:9d:c4:6a:6e:6e:2e:09:87:38:be:
65:06:9d:3d:69:f8:ad:9e:4f:20:22:f5:9f:e9:b8:
b7:4f:be:77:3e:7c:68:f3:f5:41:54:ea:f3:92:b9:
dc:c4:1a:ed:bb:4b:78:f6:f9:d6:d4:be:b0:79:00:
6b:3a:33:71:27:b0:ac:f9:e0:53:8e:4e:9e:d2:82:
e4:70:2d:fc:52:71:49:22:23:70:97:9f:4a:cc:16:
42:1a:c9:19:cc:a1:7e:6f:07:c9:98:80:b6:ad:ce:
87:ca:bf:ee:65:49:e7:7a:fb:6e:5e:30:12:bd:25:
f4:3e:3c:f1:b3:b6:43:6f:31:c4:7b:46:74:45:58:
06:b4:81:f5:2f:ef:a4:71:40:40:52:b8:0a:6c:ca:
e1:91:76:67:b5:2a:27:fb:7c:18:06:d2:a4:1d:95:
01:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:02:9D:DE:2E:82:C1:2D:D7:16:3E:16:42:3B:86:9B:12:82:9E:D9
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:c6:6e:fc:d7:f7:4b:6d:06:af:fd:76:ea:33:19:0c:e9:d9:
5f:3d:86:91:b7:6e:13:b4:9e:46:e4:9e:28:22:03:30:d1:07:
38:9b:a9:75:bb:0c:88:c4:86:52:a1:2b:cb:b8:10:a4:4b:26:
20:a3:61:aa:96:62:fc:a0:9a:39:4f:ee:08:d6:02:39:de:ef:
c5:c8:be:d0:60:97:b4:5e:72:de:a7:5a:63:60:1f:22:ee:03:
ee:79:30:6c:a0:78:87:b4:a9:bf:9f:23:09:4b:e9:5f:73:a1:
c0:34:fc:01:48:ec:43:a2:b1:5c:c9:58:10:0a:8f:6d:d7:35:
1b:d9:ff:3d:15:07:2a:6c:64:d2:84:dd:26:dc:93:e3:1a:f6:
a1:85:96:56:ad:8a:aa:3d:93:39:d0:b9:eb:5f:ea:bf:08:16:
5e:cf:bb:1e:d3:b9:7e:ee:eb:62:69:a9:39:19:16:a9:40:24:
e6:a5:9d:b0:83:7c:d0:70:60:3d:0a:7b:91:c9:1b:63:4e:28:
0e:01:c2:bc:4c:88:2f:c6:ab:8d:80:30:84:19:d8:99:30:8d:
66:52:74:c7:31:77:94:2a:62:50:96:a4:ab:b0:dc:33:4d:c6:
ed:aa:30:c8:56:80:9f:9e:a6:a4:1c:57:13:2f:1d:f0:82:c4:
c9:23:25:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 6 10:11:48 2026 by rpki-client