
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: MRboxu4dkeqkvVV4pGQnJvdU71wBx209ar1fltur54c=
Subject key identifier: BF:9D:E4:02:42:19:2F:AA:08:71:28:CE:E1:D4:96:9E:43:3D:E3:F1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F43C033982744CB76EC33F2C0D9DE0B1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 19A1
Signing time: Wed 08 Jul 2026 22:01:37 +0000
Manifest this update: Wed 08 Jul 2026 22:01:37 +0000
Manifest next update: Thu 09 Jul 2026 22:01:37 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: GagK8/sh3h8T9wACvOIdEBLQt9LXz95A1JpViYSd9pg=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 20:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:43:c0:33:98:27:44:cb:76:ec:33:f2:c0:d9:de:0b:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 8 22:01:37 2026 GMT
Not After : Jul 9 22:01:37 2026 GMT
Subject: CN=bf9de40242192faa087128cee1d4969e433de3f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:d4:2e:f2:ac:46:14:8c:8c:ae:da:27:80:
f4:53:92:5b:61:67:d6:76:3d:f0:9d:ca:c3:34:7e:
be:71:1b:b3:de:3b:4a:c6:c5:3c:f4:80:32:0e:d2:
ca:02:ea:69:12:65:86:65:73:2e:83:28:c4:93:af:
84:73:c7:d4:b0:bf:72:65:f4:9d:e9:6b:39:eb:f0:
f0:9c:58:1e:8a:22:76:58:44:c6:3c:73:f9:01:43:
78:46:ac:61:0d:10:0e:09:1e:d5:49:fb:ec:cb:e0:
13:4c:06:02:a5:04:63:f8:d8:c7:8a:44:d9:63:9d:
87:4f:2f:26:34:23:2a:4d:25:95:0e:b9:b3:dd:69:
06:e9:82:35:e3:9a:c2:5b:79:95:ac:4c:47:b0:75:
af:ae:7f:44:82:27:84:ba:a4:36:fa:6f:b6:df:8a:
81:33:87:43:56:3b:99:ea:ea:8c:a8:48:a3:9c:3a:
a9:92:f1:1e:06:cf:81:e7:7a:54:a7:79:8d:e0:b9:
f3:3f:7c:c4:f3:e8:42:43:ba:4d:c9:9c:a6:29:64:
65:a7:ad:f3:cc:6b:fc:0d:31:e3:d7:6a:c3:77:82:
13:84:ea:28:74:fc:3d:78:3a:d9:43:46:03:f6:b5:
4c:9b:c2:69:f7:49:c0:9e:fa:fc:64:a0:93:3c:a1:
88:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9D:E4:02:42:19:2F:AA:08:71:28:CE:E1:D4:96:9E:43:3D:E3:F1
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:b6:d0:c4:8b:9f:e2:29:21:03:8a:99:b4:f9:05:0f:3f:dc:
ec:eb:9d:62:e3:5d:ed:59:f4:1c:97:31:8b:a3:fd:b7:53:43:
8c:a1:a4:d1:f5:fb:08:f6:a6:df:5f:72:ba:2f:a6:6f:33:7a:
89:9a:57:1b:e8:07:92:85:00:87:51:9d:c0:fa:b1:ac:b3:b6:
fb:fc:03:d9:9b:e2:49:2d:5f:b2:cc:82:b7:7f:fc:a5:e3:77:
52:fa:b2:3b:88:d7:d7:e8:e5:43:29:ac:db:1c:e4:44:a0:d0:
f7:62:0a:6f:ce:4b:86:47:20:bc:c3:3e:89:84:50:1a:6a:67:
4d:54:3f:f5:59:b7:d3:49:74:53:0d:fc:cf:64:ba:c7:47:57:
23:8e:76:b7:f4:47:8d:81:bc:81:c4:5a:30:b0:85:c3:43:c4:
e1:ff:27:26:10:c7:70:76:6b:db:6d:5f:af:f9:f4:ff:a9:6c:
0f:42:04:93:45:fd:2b:9e:f1:8d:0a:cf:51:7a:2a:f4:a5:ec:
60:d3:35:13:ad:7f:f7:15:94:6f:9c:03:ba:14:58:a7:16:6f:
23:2a:a0:dd:1b:06:db:0b:a2:5c:65:db:9a:1a:20:68:80:9b:
80:e4:7c:a1:88:bd:8c:76:f6:21:d9:1c:11:9e:3a:33:cd:52:
d4:ae:22:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9DwDOYJ0TLduwz8sDZ3gscMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzA4MjIwMTM3WhcNMjYwNzA5MjIwMTM3WjAzMTEwLwYDVQQD
EyhiZjlkZTQwMjQyMTkyZmFhMDg3MTI4Y2VlMWQ0OTY5ZTQzM2RlM2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOvULvKsRhSMjK7aJ4D0U5JbYWfW
dj3wncrDNH6+cRuz3jtKxsU89IAyDtLKAuppEmWGZXMugyjEk6+Ec8fUsL9yZfSd
6Ws56/DwnFgeiiJ2WETGPHP5AUN4RqxhDRAOCR7VSfvsy+ATTAYCpQRj+NjHikTZ
Y52HTy8mNCMqTSWVDrmz3WkG6YI145rCW3mVrExHsHWvrn9EgieEuqQ2+m+234qB
M4dDVjuZ6uqMqEijnDqpkvEeBs+B53pUp3mN4LnzP3zE8+hCQ7pNyZymKWRlp63z
zGv8DTHj12rDd4IThOoodPw9eDrZQ0YD9rVMm8Jp90nAnvr8ZKCTPKGI/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL+d5AJCGS+qCHEozuHUlp5DPePxMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrbQxIuf
4ikhA4qZtPkFDz/c7OudYuNd7Vn0HJcxi6P9t1NDjKGk0fX7CPam319yui+mbzN6
iZpXG+gHkoUAh1GdwPqxrLO2+/wD2ZviSS1fssyCt3/8peN3UvqyO4jX1+jlQyms
2xzkRKDQ92IKb85LhkcgvMM+iYRQGmpnTVQ/9Vm300l0Uw38z2S6x0dXI452t/RH
jYG8gcRaMLCFw0PE4f8nJhDHcHZr221fr/n0/6lsD0IEk0X9K57xjQrPUXoq9KXs
YNM1E61/9xWUb5wDuhRYpxZvIyqg3RsG2wuiXGXbmhogaICbgOR8oYi9jHb2Idkc
EZ46M81S1K4ikA==
-----END CERTIFICATE-----
Generated at Thu Jul 9 02:36:00 2026 by rpki-client