Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: OLFfJzOvpi+AhqSd5Qku3ID8IC26MTbrLkGiuc0K3wo=
Subject key identifier: F2:AB:72:DD:86:A2:11:F9:8A:2E:1B:E0:24:BD:A8:69:F3:BA:92:1B
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F09D0C9B98F1A77F2724C33C980E23F2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1983
Signing time: Sat 27 Jun 2026 16:01:45 +0000
Manifest this update: Sat 27 Jun 2026 16:01:45 +0000
Manifest next update: Sun 28 Jun 2026 16:01:45 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: JZAk2wPz5QJjafYynlQ1ijsueKR1S1W+jh3UtW3jJHw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 13:58:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:09:d0:c9:b9:8f:1a:77:f2:72:4c:33:c9:80:e2:3f:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 27 16:01:45 2026 GMT
Not After : Jun 28 16:01:45 2026 GMT
Subject: CN=f2ab72dd86a211f98a2e1be024bda869f3ba921b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:08:a3:2f:2c:63:24:1c:79:08:57:8f:9c:8d:
eb:66:77:ee:e9:43:7e:4e:46:ff:f4:2a:9d:f5:71:
9a:9c:e8:2d:2a:8f:e3:14:29:53:b5:cc:a4:04:6f:
ba:db:c7:36:f0:22:b0:1b:9a:0b:33:26:7f:f4:8d:
30:23:18:52:b6:2f:32:e8:6b:60:97:31:a2:e0:9a:
a5:da:52:58:33:3f:2d:45:3c:88:1d:5d:c7:30:e8:
93:a8:1a:40:fb:5d:bb:96:a3:b4:9d:66:ec:c9:71:
eb:58:44:e6:da:d4:ea:1c:34:c1:d1:9c:d8:f7:f2:
8d:16:54:40:58:dc:e1:a6:0c:b5:b1:23:4f:5e:8a:
c6:39:71:6a:79:3c:a4:22:9d:cc:0c:ab:59:9c:25:
c5:c2:19:8a:7c:fc:88:57:5c:57:08:39:93:43:e3:
b3:1c:58:e1:ba:ff:79:ad:87:60:ef:69:a6:6c:b8:
00:4e:05:b3:1c:a9:d2:71:8d:53:98:89:0c:6c:35:
ff:00:e8:3b:6a:c2:cd:c0:13:06:ea:a5:b4:ff:e6:
17:46:74:4f:50:c9:08:eb:a8:be:9f:dd:68:dc:44:
9d:4b:eb:71:72:3a:2a:b9:c9:89:84:9c:b6:00:d8:
9f:3c:7f:14:fc:69:86:40:6e:d2:05:ca:f9:36:1f:
3d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AB:72:DD:86:A2:11:F9:8A:2E:1B:E0:24:BD:A8:69:F3:BA:92:1B
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:b9:35:64:c1:8f:37:55:80:89:3f:c9:85:e2:70:50:f5:e5:
94:e7:7d:19:e1:15:be:70:73:86:dd:2b:44:05:8a:04:c9:71:
b3:1a:d2:59:0e:ff:78:04:8f:d9:48:03:6d:ea:37:eb:ba:3a:
96:e6:22:9b:ee:10:a2:cb:e8:66:df:05:8b:61:cd:65:74:1f:
d9:96:d6:da:56:5c:6a:a5:93:2c:bf:80:ff:05:98:31:14:fe:
c2:a0:f6:eb:77:65:aa:df:c8:e8:27:3b:c4:80:f0:8d:01:ef:
0b:c6:70:11:f2:fe:17:f6:66:93:b9:49:5b:f0:ac:3d:51:87:
db:74:98:60:9c:0c:6e:db:6e:5c:bc:79:16:fc:d2:c5:a1:66:
25:c9:38:e1:df:b5:dc:80:55:d3:98:9b:4f:32:f1:41:66:96:
4d:36:5f:74:54:86:95:51:fe:48:d7:d2:39:e8:03:27:dd:86:
8b:c2:31:91:91:e1:c6:06:56:ee:f2:44:6b:f2:15:bf:46:98:
53:99:e7:ef:22:c6:72:d2:bf:e2:d9:77:9b:69:cb:51:d2:93:
48:4c:3b:8d:36:3e:f2:e1:e4:88:93:09:28:92:9e:e7:a0:57:
30:86:0b:35:1b:0e:a0:6f:69:30:e5:04:54:23:c0:45:f6:5f:
11:9b:78:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 18:23:09 2026 by rpki-client