Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: r/NAMOwPBkK+q1U1zLiK2I1D3uRzgU9mCUyoh69tcPI=
Subject key identifier: 9F:9F:1A:D7:51:70:D8:54:89:2B:DE:87:D8:8C:67:7A:83:EC:35:33
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E54ECA1EA8140C98C50C57D4CF28B1DDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1925
Signing time: Sat 23 May 2026 13:00:54 +0000
Manifest this update: Sat 23 May 2026 13:00:54 +0000
Manifest next update: Sun 24 May 2026 13:00:54 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: iNrezYWn3cP93s8A4cWYMHR6JceqlFibW76bCxB1j6c=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:54:ec:a1:ea:81:40:c9:8c:50:c5:7d:4c:f2:8b:1d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 23 13:00:54 2026 GMT
Not After : May 24 13:00:54 2026 GMT
Subject: CN=9f9f1ad75170d854892bde87d88c677a83ec3533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:41:1d:78:5c:c9:09:10:ab:0c:7d:dc:f7:48:
9d:05:c9:13:5c:9d:64:94:24:21:57:b0:93:7f:a6:
50:9a:d1:a3:1a:4b:8b:99:44:39:a1:6b:ba:8b:c6:
fb:32:81:ff:d6:c5:0a:eb:aa:e1:bb:67:8a:b2:a9:
f1:d1:a8:88:49:b0:5c:58:a3:66:b3:a1:6a:fc:c6:
d5:f8:17:93:7d:5f:d8:76:c3:50:21:3d:c5:16:93:
24:0a:cb:c1:93:95:1a:62:40:c5:0d:e3:0b:e9:01:
df:e6:45:20:55:b1:7e:6b:b1:c9:8b:c0:e6:63:ca:
e0:e3:49:e9:16:be:73:fe:74:30:3f:14:60:a7:5a:
09:0a:8c:90:55:bb:e8:96:82:d3:12:bb:25:43:1d:
0c:31:56:62:1e:03:de:1d:ad:e2:5e:c3:89:f7:d3:
0c:11:bb:fa:6d:bb:32:ff:f8:dd:0a:69:a9:eb:2b:
85:5d:c2:2b:70:b3:b8:63:b1:0d:35:bc:50:e5:29:
32:23:18:3e:bd:ea:dd:ba:44:82:55:fc:2b:d4:94:
5d:c3:96:d5:32:99:02:7f:e8:16:76:7b:e3:07:5f:
f4:82:5a:e8:ec:a8:71:eb:61:d1:f7:f3:a9:a0:f7:
a5:f5:8d:d6:d8:3b:df:0f:41:fe:89:eb:f7:0c:21:
13:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9F:1A:D7:51:70:D8:54:89:2B:DE:87:D8:8C:67:7A:83:EC:35:33
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:62:5c:48:79:d5:13:dd:ef:b2:2d:9c:53:ae:58:cf:0e:07:
eb:a2:c7:5f:db:96:62:d0:f9:8d:c8:13:c1:60:99:9a:d1:1c:
b9:76:92:95:00:9e:60:3d:12:f6:b6:e9:3c:e4:21:ed:d5:84:
b1:cf:19:fa:bd:a8:32:88:d2:a7:10:af:32:27:51:42:ef:62:
75:06:b9:ad:f9:21:ed:7e:14:47:a9:f2:85:cb:65:b3:db:f3:
d1:63:8c:ac:e8:e6:4e:22:a6:be:3f:82:fd:30:86:50:d3:ca:
36:69:26:d6:a7:81:15:32:77:23:e5:13:22:1d:64:52:96:11:
3b:9f:37:9c:92:5b:3d:c4:04:ce:5e:39:81:05:4b:52:b0:b8:
09:f7:4b:61:24:ce:cf:30:a3:7f:5f:af:9c:88:21:e6:25:04:
4b:d1:d9:0c:41:ba:8a:8f:86:d4:4f:c2:ac:52:8f:ac:16:c5:
dc:33:f3:60:db:6c:97:66:0a:52:60:04:8f:82:5f:4b:4c:3b:
b8:af:7d:d5:7b:d3:6d:31:f3:71:ce:07:f2:87:63:f5:fc:ea:
e0:f9:02:4d:72:a7:9e:5a:95:83:17:85:17:12:c6:95:4a:82:
b7:30:ff:05:07:f6:d0:fa:16:75:fa:eb:02:03:02:5a:69:0a:
67:b5:37:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 23 17:57:01 2026 by rpki-client