Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: /ZaDmOreznkjHwyBhU8TqGwNVbeRqCamZ35c45AsObc=
Subject key identifier: EC:63:B5:A3:3B:09:A2:26:38:13:B5:90:E6:AE:36:BE:EA:30:DE:CA
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EF86F90B61C5B7356C70D8CE99FE3C673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 197A
Signing time: Wed 24 Jun 2026 07:02:01 +0000
Manifest this update: Wed 24 Jun 2026 07:02:01 +0000
Manifest next update: Thu 25 Jun 2026 07:02:01 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: gvhCYNDu7enJxFy9kRjmi1XHBcEtXw2ibPNbYD+468w=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 07:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f8:6f:90:b6:1c:5b:73:56:c7:0d:8c:e9:9f:e3:c6:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 24 07:02:01 2026 GMT
Not After : Jun 25 07:02:01 2026 GMT
Subject: CN=ec63b5a33b09a2263813b590e6ae36beea30deca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e3:ec:1f:a1:aa:e5:67:61:b7:f0:d7:be:90:
de:9b:b2:e6:71:8d:cd:87:c6:e5:b6:1f:8c:6e:e4:
63:6a:68:42:87:00:3a:ea:3a:86:ce:0b:b5:e3:c1:
a9:13:9b:c4:4a:e0:04:2f:35:2d:77:4e:80:0b:56:
99:2a:9d:79:cd:28:56:5e:e2:74:c5:9b:66:cb:b0:
a2:8f:91:f9:02:c8:66:ba:85:45:26:c4:d2:18:ce:
bc:08:ad:40:dd:c6:f8:e6:b8:0e:b1:7f:ea:61:f2:
7c:de:21:58:2a:85:9c:50:c8:eb:ca:a9:76:7e:76:
89:26:16:a7:ff:7e:05:f8:d4:3f:34:67:22:1b:8f:
a5:5b:17:34:0b:4a:1d:0e:22:a4:1c:dd:75:5d:df:
50:dd:f7:54:5c:0f:e5:f6:59:fe:67:61:77:7e:1e:
a9:b6:0b:c8:51:86:4b:4d:c1:d2:83:14:dd:30:88:
c5:d1:94:40:58:83:6c:68:e8:1f:99:db:84:05:18:
9b:07:2a:89:86:67:2f:6a:77:67:2f:f1:f9:24:96:
20:d0:75:a8:37:2b:9c:a2:bd:76:64:7e:99:10:a7:
2f:86:35:0e:87:3f:69:83:d9:0b:8e:40:2e:ea:89:
34:b3:6f:ec:74:ca:52:e3:0f:3f:df:c0:54:c8:d3:
9a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:63:B5:A3:3B:09:A2:26:38:13:B5:90:E6:AE:36:BE:EA:30:DE:CA
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:85:1e:ec:8c:f1:bc:40:2f:e9:5c:56:4f:9f:20:c0:2f:d7:
d8:7d:e4:71:a1:8a:a3:77:a0:0b:c5:e7:3c:b3:0b:96:ce:a5:
2c:21:51:08:50:65:5e:34:82:d5:58:5b:98:c7:e5:d7:c7:e6:
4c:56:64:11:eb:c1:c1:b8:8b:27:52:ae:4c:84:12:35:9e:af:
7c:ed:25:41:8f:b7:98:1d:11:35:1c:83:31:9d:05:e6:53:8d:
bb:9e:c8:8b:73:8b:29:24:45:d4:0e:d6:d7:db:0b:06:db:e1:
47:ce:13:fc:d1:c6:7d:6b:96:a4:59:6c:81:f0:8c:5c:88:6d:
fc:84:8e:7a:d2:04:d9:46:96:69:f8:24:98:4f:12:de:e6:d9:
d0:39:15:95:8d:bb:0b:03:ae:0d:9e:84:c8:c1:b7:83:57:a1:
11:f2:16:da:82:3c:c8:f2:42:20:f3:e8:4e:b9:89:a5:64:4b:
16:5e:6d:18:35:42:12:ad:42:25:91:b2:ee:ce:39:bf:b8:87:
bc:04:9f:c6:d4:6e:e8:98:2a:ac:5f:79:bd:1a:5f:df:9c:a9:
e7:7b:b3:33:33:74:c4:38:07:bb:89:6c:7a:bc:ff:c5:59:80:
2a:53:d4:e6:07:e7:b2:54:1c:27:d5:55:c3:e7:8b:85:71:b1:
06:70:80:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 24 16:47:35 2026 by rpki-client