Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: rKOxFW3DOMmal3pRiFMSVrlrqOT2RDUV9hvBkJ/BCUo=
Subject key identifier: 50:25:81:CC:C4:EB:CC:80:BC:0B:B2:9B:08:42:59:3C:F3:48:33:0B
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019DFC17A011F298218473C9269C6018FE2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18F7
Signing time: Wed 06 May 2026 07:01:39 +0000
Manifest this update: Wed 06 May 2026 07:01:39 +0000
Manifest next update: Thu 07 May 2026 07:01:39 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: KjbtF65rFPiYwzAUmI2hOXs4uNMUNR28cguS4dpRlwA=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 06:44:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:17:a0:11:f2:98:21:84:73:c9:26:9c:60:18:fe:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 6 07:01:39 2026 GMT
Not After : May 7 07:01:39 2026 GMT
Subject: CN=502581ccc4ebcc80bc0bb29b0842593cf348330b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0b:ec:31:19:49:dc:4e:02:32:ae:8d:51:84:
1e:ce:8e:c2:96:74:0b:c3:05:ce:47:e7:76:44:e5:
79:75:2d:70:24:08:34:2a:cc:ca:e2:47:1f:03:98:
29:d0:e9:74:49:1d:41:a7:f6:64:12:f8:b6:8a:47:
22:3f:df:4e:30:2a:69:9e:5c:c2:89:53:88:a3:b1:
85:04:de:70:ee:96:58:3c:f4:0a:32:c1:d6:70:fc:
45:23:9d:57:72:41:a3:eb:2c:41:5b:0c:fe:2a:03:
10:f5:a4:72:25:09:81:9d:0c:8e:d2:65:ec:43:f8:
c4:45:97:8d:f6:2e:b9:14:cc:ac:05:b2:66:54:bc:
fa:ba:1b:22:cf:b1:27:90:58:4a:ce:29:fe:df:be:
30:1b:53:1a:7e:4f:ab:e9:a6:bb:3e:5a:bd:ea:28:
93:5f:34:33:ea:fd:bf:c7:fe:ce:ba:33:c8:18:ca:
66:a0:c4:e9:03:84:b1:6b:44:74:ee:47:06:1f:c8:
17:d0:80:3c:b7:54:91:99:2c:f0:45:81:3c:6f:fe:
72:7e:c3:dd:66:46:07:3f:a8:2d:f1:95:cd:bc:f2:
3b:24:1d:0d:0f:79:c0:36:d9:3e:68:12:11:da:c5:
54:0b:49:65:4a:0c:9d:2d:91:c2:4a:0e:b4:32:9a:
70:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:25:81:CC:C4:EB:CC:80:BC:0B:B2:9B:08:42:59:3C:F3:48:33:0B
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:4e:bd:8e:fa:06:4c:06:51:8e:d2:4c:7c:d0:b3:01:4a:60:
18:5b:e1:3b:21:a9:3d:f4:01:aa:90:24:7e:a7:77:03:13:2e:
1c:63:b9:87:4d:a6:dc:26:7e:8b:e9:de:9d:24:57:7d:5d:27:
08:eb:67:d0:ea:6a:94:ac:6c:70:4d:74:5c:68:15:f0:2d:37:
63:fb:62:26:29:ca:8c:74:31:15:cc:ec:5b:b9:49:d5:d0:f4:
00:fa:ce:1f:19:50:96:0c:25:6b:5a:df:5e:2e:03:56:a9:9b:
29:3a:14:5f:c8:38:12:eb:a5:c9:ba:2f:02:10:bb:ad:1f:9e:
ad:82:0c:0b:f4:e8:07:94:ff:ae:95:7e:47:41:86:c1:bd:8c:
31:65:85:8c:ef:eb:ee:3f:c4:d9:a6:ba:3b:f8:e2:1d:0a:76:
f3:d7:3a:b2:fd:c1:54:18:0e:ab:9b:1c:27:d7:c3:e2:44:73:
96:02:82:20:7a:c8:96:1c:a0:10:78:56:88:9e:09:64:cf:3d:
e6:4a:6e:20:1c:2f:cf:cb:b3:bf:bc:35:8b:7a:48:26:c1:99:
cb:e3:37:1f:3f:7d:6c:17:99:e7:8f:07:b3:5e:af:99:8a:8d:
53:24:c7:32:f5:d1:2a:e6:0a:2d:fd:46:0d:ae:01:63:a3:e9:
6b:f3:73:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 09:11:02 2026 by rpki-client