
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: bl+uxzcuHDhraq4ZOOd4q6q/4l88kG9Bp90aqzQJd58=
Subject key identifier: 68:F8:5E:E5:95:EF:3B:36:7F:D6:AF:96:62:A6:7A:0B:F1:7A:F4:AC
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F3829FFFCE6C2F7B8984FFF3F7A7F8D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 199B
Signing time: Mon 06 Jul 2026 16:01:44 +0000
Manifest this update: Mon 06 Jul 2026 16:01:44 +0000
Manifest next update: Tue 07 Jul 2026 16:01:44 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: A/U4DG13f+h/XQty+ITqC0CCd0yLySgMHWxAel7qN+4=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 16:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:38:29:ff:fc:e6:c2:f7:b8:98:4f:ff:3f:7a:7f:8d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 6 16:01:44 2026 GMT
Not After : Jul 7 16:01:44 2026 GMT
Subject: CN=68f85ee595ef3b367fd6af9662a67a0bf17af4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bf:dc:0e:33:56:a9:68:9c:7b:98:b8:45:7e:
cb:e9:3b:bf:7e:ce:af:05:de:08:ab:86:07:86:99:
dd:42:d3:3d:e6:7a:44:33:49:2f:d5:ef:a1:73:5c:
0f:2f:bb:57:79:de:55:a1:3d:66:96:4e:22:58:86:
ad:26:e1:18:15:25:87:9c:8e:62:21:14:03:20:6f:
0f:88:ec:b7:6d:dd:43:22:03:f1:4d:2f:8a:89:87:
97:84:03:0d:c5:5a:7a:b8:df:e8:58:d7:97:17:68:
df:da:56:fc:a7:ce:bb:64:13:d6:08:00:f7:41:27:
cc:4c:e0:74:54:49:b6:7f:b7:8d:c2:f1:be:0b:d1:
fc:5f:f5:8f:de:76:65:96:c0:57:ff:c6:e1:a3:31:
e9:66:57:f9:62:34:71:94:19:11:48:13:7b:e3:45:
ca:07:0d:88:b0:59:9d:08:c7:a4:55:d0:fe:f2:b2:
6b:5f:d6:2b:0c:00:cb:5a:bd:57:37:96:c1:9c:14:
1b:c4:e0:8a:d2:3c:1d:6b:ee:13:69:3c:1e:de:ef:
ae:99:a0:c7:ba:71:7c:87:7c:44:57:4b:a8:0e:58:
99:12:14:01:17:f1:46:88:7f:73:17:ef:4c:ce:47:
13:14:3f:8f:b4:d5:8a:22:da:bb:93:d6:53:3d:4f:
50:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F8:5E:E5:95:EF:3B:36:7F:D6:AF:96:62:A6:7A:0B:F1:7A:F4:AC
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:f7:2e:39:f3:bf:bd:9a:72:21:fb:84:d9:a6:d6:8c:04:cf:
60:92:f6:7d:14:c5:62:2b:3d:aa:12:6e:b8:b9:56:ee:7b:52:
bb:96:63:42:8c:d7:89:42:0c:00:a5:f0:c7:2d:62:a5:b4:8a:
67:b7:41:19:87:cb:56:d5:64:8a:ae:e7:38:7d:b6:49:93:a6:
a4:05:53:72:f2:4c:d5:34:7a:99:69:51:b7:03:28:42:5b:77:
4d:d6:72:ea:47:3b:ce:8f:3d:c5:d2:66:9b:7b:f7:0a:b2:81:
db:69:3d:79:5f:98:22:67:f7:b9:8d:7b:2d:40:71:71:63:d0:
a1:8d:d2:c0:0d:65:69:e3:b2:8f:bc:32:0a:f7:4e:d7:fc:22:
19:d7:3d:d3:8d:6f:62:0e:f6:05:74:67:1d:b2:58:be:ba:2b:
e4:3e:07:c2:39:60:da:de:33:a3:9f:26:30:92:44:18:6b:f6:
52:f7:94:ea:ca:12:e6:88:31:c7:80:fd:f3:87:36:d1:48:f3:
9a:f9:4c:a1:22:6b:31:a7:a0:48:0a:94:b8:7e:29:98:e6:42:
f6:a1:52:93:8e:e1:ff:e1:0c:1f:42:b2:14:b0:44:03:7d:1d:
6e:97:83:52:00:50:76:2f:40:ae:3d:11:5e:a1:c4:19:14:b4:
60:7e:69:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ84Kf/85sL3uJhP/z96f40aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzA2MTYwMTQ0WhcNMjYwNzA3MTYwMTQ0WjAzMTEwLwYDVQQD
Eyg2OGY4NWVlNTk1ZWYzYjM2N2ZkNmFmOTY2MmE2N2EwYmYxN2FmNGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7/cDjNWqWice5i4RX7L6Tu/fs6v
Bd4Iq4YHhpndQtM95npEM0kv1e+hc1wPL7tXed5VoT1mlk4iWIatJuEYFSWHnI5i
IRQDIG8PiOy3bd1DIgPxTS+KiYeXhAMNxVp6uN/oWNeXF2jf2lb8p867ZBPWCAD3
QSfMTOB0VEm2f7eNwvG+C9H8X/WP3nZllsBX/8bhozHpZlf5YjRxlBkRSBN740XK
Bw2IsFmdCMekVdD+8rJrX9YrDADLWr1XN5bBnBQbxOCK0jwda+4TaTwe3u+umaDH
unF8h3xEV0uoDliZEhQBF/FGiH9zF+9MzkcTFD+PtNWKItq7k9ZTPU9QUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGj4XuWV7zs2f9avlmKmegvxevSsMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu/cuOfO/
vZpyIfuE2abWjATPYJL2fRTFYis9qhJuuLlW7ntSu5ZjQozXiUIMAKXwxy1ipbSK
Z7dBGYfLVtVkiq7nOH22SZOmpAVTcvJM1TR6mWlRtwMoQlt3TdZy6kc7zo89xdJm
m3v3CrKB22k9eV+YImf3uY17LUBxcWPQoY3SwA1laeOyj7wyCvdO1/wiGdc9041v
Yg72BXRnHbJYvror5D4Hwjlg2t4zo58mMJJEGGv2UveU6soS5ogxx4D984c20Ujz
mvlMoSJrMaegSAqUuH4pmOZC9qFSk47h/+EMH0KyFLBEA30dbpeDUgBQdi9Arj0R
XqHEGRS0YH5pAQ==
-----END CERTIFICATE-----
Generated at Tue Jul 7 01:11:20 2026 by rpki-client