
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: WeWHNmyxIGDhDWJbBgwi1LWCWdkH0owe1bQHXKMCo5c=
Subject key identifier: 35:EB:1E:58:D2:9B:57:44:CC:4E:BB:9B:8C:67:ED:74:07:B3:7C:23
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CBD71E14249BD168A12DD3B869BA1FC23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1851
Signing time: Thu 05 Mar 2026 10:01:22 +0000
Manifest this update: Thu 05 Mar 2026 10:01:22 +0000
Manifest next update: Fri 06 Mar 2026 10:01:22 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: eXfU+WP7OFXUcOfQ0lLSU5gB/wDRjRGffEVY3L0oHqs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Mar 2026 10:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bd:71:e1:42:49:bd:16:8a:12:dd:3b:86:9b:a1:fc:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 5 10:01:22 2026 GMT
Not After : Mar 6 10:01:22 2026 GMT
Subject: CN=35eb1e58d29b5744cc4ebb9b8c67ed7407b37c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a8:22:fd:c3:15:52:ec:f1:01:ff:1e:f4:0c:
91:54:e1:fe:a2:0a:29:c8:90:7d:f7:1b:67:b4:67:
87:db:84:7d:49:24:13:4e:2f:ad:87:2a:a7:9a:47:
d9:63:41:0f:d5:b8:74:b7:24:b4:f0:90:8a:97:34:
d2:d4:58:a1:f4:ab:36:ae:10:01:b5:ed:dd:49:47:
fc:67:bb:f6:4e:fc:75:b4:52:62:4c:24:8d:04:46:
51:25:3c:54:9c:c9:4e:34:8a:64:f5:79:af:46:59:
56:ad:7f:5b:f9:a5:53:c0:c4:67:d0:ba:e0:05:a3:
3b:fa:18:5b:93:ac:bb:46:42:d7:1e:52:21:0e:92:
bb:07:f9:74:87:1f:b6:5b:d4:d4:2b:b1:af:e5:46:
ec:b8:c0:e2:2f:ed:3f:62:f6:a5:cc:3d:16:05:93:
a9:59:5d:70:14:b5:d5:bc:3b:2b:70:9e:c7:f8:a3:
2f:a1:1a:9e:8d:bb:8a:4c:79:e3:ff:8d:78:dc:16:
9a:fb:5b:c7:e9:c5:35:f5:fe:4c:77:71:02:d8:3c:
01:84:ec:a5:90:78:97:6e:9f:bd:ed:8c:1b:a3:82:
04:38:ce:55:f7:47:98:8c:a3:5d:d1:4f:73:0e:0b:
68:bb:99:c5:56:fb:0a:c7:7b:8e:15:30:5d:51:d4:
9c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:EB:1E:58:D2:9B:57:44:CC:4E:BB:9B:8C:67:ED:74:07:B3:7C:23
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:1c:d1:5f:1b:52:a2:66:d2:ae:a1:95:01:2d:95:bc:71:58:
ae:92:8c:15:e8:49:8f:f1:09:08:21:13:76:bf:df:ce:ad:0c:
0e:88:b5:f9:0e:11:46:3f:e2:49:05:e2:a0:40:92:7e:9e:11:
62:83:28:00:96:56:ef:ac:05:07:76:fe:40:3e:d0:86:ad:a7:
c7:5b:75:af:14:d0:a9:fc:95:37:f3:80:a9:63:61:9d:62:c5:
fc:db:be:3e:2a:af:b9:6d:1d:7b:e6:60:56:16:ba:60:da:23:
ac:1d:e2:1f:f3:c6:1f:ea:07:c4:a5:19:9e:b6:6f:3b:0d:1f:
3f:69:88:09:12:eb:ab:4b:5c:cd:d0:d9:c6:4b:22:55:d5:c1:
25:3b:5b:09:db:23:69:e0:c1:e7:17:07:c1:0a:43:85:36:04:
09:aa:88:9e:a1:a9:fe:2f:1c:9e:e4:20:02:ea:11:ad:a5:bb:
10:23:fa:d3:3a:87:b7:39:5c:32:2f:7d:16:5c:7e:56:d9:4a:
a5:37:51:ff:6a:90:21:fc:9d:90:b3:9d:ce:78:f9:bd:ef:1e:
53:2e:01:80:c0:84:a1:39:73:cb:0f:52:45:fe:65:5f:b4:97:
98:b9:7b:df:48:a7:f2:1c:e0:c9:3f:42:c4:de:f2:fd:05:73:
8a:6e:ea:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZy9ceFCSb0WihLdO4abofwjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwMzA1MTAwMTIyWhcNMjYwMzA2MTAwMTIyWjAzMTEwLwYDVQQD
EygzNWViMWU1OGQyOWI1NzQ0Y2M0ZWJiOWI4YzY3ZWQ3NDA3YjM3YzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyagi/cMVUuzxAf8e9AyRVOH+ogop
yJB99xtntGeH24R9SSQTTi+thyqnmkfZY0EP1bh0tyS08JCKlzTS1Fih9Ks2rhAB
te3dSUf8Z7v2Tvx1tFJiTCSNBEZRJTxUnMlONIpk9XmvRllWrX9b+aVTwMRn0Lrg
BaM7+hhbk6y7RkLXHlIhDpK7B/l0hx+2W9TUK7Gv5UbsuMDiL+0/YvalzD0WBZOp
WV1wFLXVvDsrcJ7H+KMvoRqejbuKTHnj/4143Baa+1vH6cU19f5Md3EC2DwBhOyl
kHiXbp+97Ywbo4IEOM5V90eYjKNd0U9zDgtou5nFVvsKx3uOFTBdUdSczQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDXrHljSm1dEzE67m4xn7XQHs3wjMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtxzRXxtS
ombSrqGVAS2VvHFYrpKMFehJj/EJCCETdr/fzq0MDoi1+Q4RRj/iSQXioECSfp4R
YoMoAJZW76wFB3b+QD7Qhq2nx1t1rxTQqfyVN/OAqWNhnWLF/Nu+PiqvuW0de+Zg
Vha6YNojrB3iH/PGH+oHxKUZnrZvOw0fP2mICRLrq0tczdDZxksiVdXBJTtbCdsj
aeDB5xcHwQpDhTYECaqInqGp/i8cnuQgAuoRraW7ECP60zqHtzlcMi99Flx+VtlK
pTdR/2qQIfydkLOdznj5ve8eUy4BgMCEoTlzyw9SRf5lX7SXmLl730in8hzgyT9C
xN7y/QVzim7qzg==
-----END CERTIFICATE-----
Generated at Thu Mar 5 18:31:13 2026 by rpki-client