Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: WwCx0iz354dVro3kjqcngsDCr/d9K+IQ1UDZYx9YONI=
Subject key identifier: 45:89:C5:AC:FA:39:4C:1C:C2:B7:D2:56:7F:9B:61:DF:5D:6B:78:A9
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EA41AAA61B29DDEC470E105E3D08EC936
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 194E
Signing time: Sun 07 Jun 2026 22:01:11 +0000
Manifest this update: Sun 07 Jun 2026 22:01:11 +0000
Manifest next update: Mon 08 Jun 2026 22:01:11 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: yGlrfS0chNFeUSvsK1TqMHLCwq22J0EyWeMoN7sq/Fw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Jun 2026 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a4:1a:aa:61:b2:9d:de:c4:70:e1:05:e3:d0:8e:c9:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 7 22:01:11 2026 GMT
Not After : Jun 8 22:01:11 2026 GMT
Subject: CN=4589c5acfa394c1cc2b7d2567f9b61df5d6b78a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:e1:12:94:78:e2:e8:1c:50:98:ac:fe:15:
d6:b7:b1:8a:c7:1d:ac:ec:d1:4b:34:58:ff:81:62:
ff:4d:63:86:bc:14:41:a8:c9:1f:7c:90:90:40:aa:
f0:54:97:45:85:b8:9f:62:23:c0:07:6c:c9:38:f0:
ab:0f:f7:5d:3c:a4:c1:3a:cb:b8:d5:43:45:11:6f:
64:03:66:d7:db:c7:98:ce:d8:1f:1a:e4:d5:0a:15:
2d:2f:a8:fb:26:40:ea:48:bf:a7:c4:a0:6d:7e:f7:
f7:37:1c:cb:ba:86:54:bd:37:38:37:d3:85:4f:42:
ae:a2:bf:f1:a1:ff:07:b7:57:3e:77:70:ce:65:37:
e6:b6:d7:ac:b6:89:17:07:14:90:ca:7d:d2:23:18:
75:28:79:24:70:98:8d:a7:cf:11:c5:b0:8e:45:6d:
bc:d2:c3:cc:0a:c8:bf:f3:56:69:ea:49:dd:f0:06:
4e:fc:85:cb:f4:98:93:33:32:25:e5:4d:6f:46:09:
1d:64:17:8c:2f:9b:09:d2:7c:55:ea:0e:5f:ee:73:
b1:b6:86:28:4a:99:c3:ce:61:b8:ab:c6:19:e7:f7:
bc:05:02:91:88:88:8b:18:f4:0b:d2:a9:1e:ad:05:
55:c3:ae:cc:a0:00:77:74:c5:12:87:36:a2:03:5e:
60:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:89:C5:AC:FA:39:4C:1C:C2:B7:D2:56:7F:9B:61:DF:5D:6B:78:A9
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:08:e9:94:0b:07:43:ae:a4:06:cb:76:19:c2:bc:1e:34:00:
68:9e:b1:b1:b0:9f:04:8e:76:f3:bd:90:4a:08:95:d3:4c:48:
31:29:81:58:44:50:c2:db:33:3b:8f:cc:65:c5:80:97:2b:a5:
3f:08:cf:fc:1f:c9:07:ac:75:81:0c:a5:4f:a8:c6:7b:ba:c5:
31:d6:a2:65:26:2f:08:5a:34:6c:95:cf:dc:3f:bd:33:b8:f1:
c4:ca:f7:81:03:46:60:d4:0f:8a:6c:67:2d:af:cc:92:1e:ef:
fd:e4:5b:8e:74:c4:97:fd:45:2f:b3:1a:e1:4e:58:b6:d6:84:
47:33:f6:85:65:6e:a5:6c:3f:ce:fd:23:54:5a:b7:61:c0:ff:
28:ad:50:8f:8c:7a:96:11:af:a3:1c:48:dd:1c:42:83:9a:f1:
2f:96:33:ab:25:c1:30:fb:f0:8f:c8:38:54:26:87:ae:12:a5:
cf:e1:e8:ba:33:0d:2d:0c:98:19:f3:e7:0e:7c:f9:e0:d7:de:
2a:93:9a:05:d1:64:ae:6f:73:3b:f0:d0:27:14:01:48:d9:81:
37:86:e9:d5:51:b7:1e:b5:64:e6:ce:22:c7:2f:1a:15:a6:8a:
d4:82:07:d6:cc:be:c6:88:5c:63:b3:4f:9a:86:8e:4e:94:8c:
cd:ef:e2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 8 05:00:33 2026 by rpki-client