Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: XV7fu9hUGap+1MAHX3lDM99Wkm2WFr1bGZC8aGPsOfg=
Subject key identifier: 79:75:67:B4:44:D3:8E:39:10:45:15:CA:F8:EA:A2:D0:ED:DA:DF:D0
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E9A72774C0567A2909037E58092C8F1C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1949
Signing time: Sat 06 Jun 2026 01:00:53 +0000
Manifest this update: Sat 06 Jun 2026 01:00:53 +0000
Manifest next update: Sun 07 Jun 2026 01:00:53 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: HLC7U3AyoEIyKajmGQgty121t4pm6ABbIKNZEcFzMUY=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9a:72:77:4c:05:67:a2:90:90:37:e5:80:92:c8:f1:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 6 01:00:53 2026 GMT
Not After : Jun 7 01:00:53 2026 GMT
Subject: CN=797567b444d38e39104515caf8eaa2d0eddadfd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6c:c4:f4:f6:42:ff:93:65:85:d7:67:2d:d8:
bf:44:ac:89:38:9d:92:c7:f9:82:73:7b:f0:b5:63:
4f:da:93:ef:20:d7:3c:5e:b8:07:db:bd:fe:34:9f:
fa:92:98:8a:22:0a:b8:da:99:57:38:ae:86:3a:27:
df:ef:43:5e:66:00:0e:2d:48:39:93:f5:95:fd:64:
85:5d:c0:4a:8d:a5:9f:20:92:33:c8:7a:bd:66:2a:
44:30:56:29:da:85:c2:44:70:5c:e8:7f:2e:79:fb:
63:37:33:62:32:93:d8:eb:b7:13:20:0a:c8:ee:2c:
66:17:04:2e:76:b1:cf:e8:aa:72:b1:06:da:c1:5a:
c2:0c:e5:23:95:c1:7a:ec:31:a8:4d:fa:00:50:31:
a8:41:96:7e:9e:5e:20:21:9d:6a:18:45:a5:2f:8a:
e7:d2:68:f5:09:85:c6:ce:a8:71:0c:00:c1:3e:e2:
fa:d5:36:4a:56:8d:5a:91:86:2c:9a:1c:e0:a4:82:
5e:fb:ef:7c:ae:92:aa:23:67:25:76:18:dd:3f:94:
1d:38:a2:52:e6:2c:80:39:68:b3:73:73:3c:3f:ee:
d6:19:54:98:6b:6e:be:b0:fa:18:09:90:9a:fe:d7:
cd:b2:7d:a4:39:f6:ca:8a:05:92:45:8a:17:4f:38:
9b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:75:67:B4:44:D3:8E:39:10:45:15:CA:F8:EA:A2:D0:ED:DA:DF:D0
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:88:e0:49:da:31:85:d6:45:cf:e2:34:b7:f1:3e:fa:2a:f7:
2d:c7:2f:08:76:e0:36:8b:94:23:e9:ab:51:14:6b:a9:fa:5d:
5c:ef:9b:5e:9f:22:31:88:52:70:e2:7c:e4:f3:21:cb:67:67:
c0:b1:cd:6c:b6:06:41:c1:a9:ed:82:49:53:63:0d:22:f8:22:
50:cd:5c:48:11:70:ff:49:86:2d:14:6c:5f:bb:4c:9c:31:fb:
2d:75:7c:db:20:21:fd:f3:11:a2:2b:3c:b0:2d:f9:d8:e9:e6:
a9:4c:5b:f5:e0:3f:e5:a4:7b:2a:87:de:04:6e:fe:fd:de:9b:
3a:94:4f:31:19:7f:64:49:a4:64:83:9f:3f:45:ac:51:da:59:
02:49:7b:69:75:6e:7a:a0:93:6f:3e:b7:07:38:07:83:e0:39:
5a:28:fd:9f:43:c4:63:ca:48:39:f4:3a:36:61:b7:46:38:3b:
3f:98:01:f5:cc:fa:84:5c:aa:4d:29:ee:40:f3:7e:e6:d1:54:
58:8d:f0:c1:9c:9e:cb:2d:bd:9a:cf:09:c9:51:0e:8e:b5:ca:
00:75:d9:12:d9:59:74:28:af:9d:49:61:80:24:26:20:47:b1:
eb:b8:57:d3:ee:6b:6f:27:37:55:ac:6b:08:5a:78:a3:93:31:
11:49:80:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 04:04:42 2026 by rpki-client