Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: ta/8SwhEIDNTKMtIxerbjdWpnbP9bPFq0iYLjSMej2U=
Subject key identifier: 1D:93:6B:C4:50:F3:BA:41:E5:CD:3A:05:D0:1A:81:26:45:09:C4:DD
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CB3C9DE79BB5FA47A4F294858D5F1E0B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 184C
Signing time: Tue 03 Mar 2026 13:01:17 +0000
Manifest this update: Tue 03 Mar 2026 13:01:17 +0000
Manifest next update: Wed 04 Mar 2026 13:01:17 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: roGhLbIU7kjILewLuLxEyxZRhkvVM0K/7NesTcPkYKw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 04 Mar 2026 07:05:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b3:c9:de:79:bb:5f:a4:7a:4f:29:48:58:d5:f1:e0:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 3 13:01:17 2026 GMT
Not After : Mar 4 13:01:17 2026 GMT
Subject: CN=1d936bc450f3ba41e5cd3a05d01a81264509c4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a6:06:a0:d2:0c:ca:8d:6b:d2:c6:07:8f:95:
be:c0:f8:6e:b7:6a:5c:02:fe:18:b8:60:99:15:05:
2f:f7:39:96:24:88:6b:16:10:1c:39:f4:b7:35:fb:
ea:af:fa:29:8f:bc:3e:f5:9d:2d:db:fb:fc:3e:b8:
7e:99:99:1e:10:99:d5:21:ca:cd:ee:d5:29:16:62:
29:4a:7b:fd:53:9e:0a:e4:9e:f9:b4:f3:95:08:dc:
be:f5:7d:f0:31:bf:26:13:a0:17:fa:0f:c3:d2:06:
f5:2c:3a:4b:ec:3a:b6:68:d2:c3:16:de:0f:89:88:
4f:f4:89:9a:f3:f5:dc:d6:4b:9e:f3:27:21:3a:28:
7f:f7:5b:87:bf:6b:0e:ff:f9:8e:f5:56:d7:2b:ac:
1a:fb:82:f9:c5:8b:ce:78:83:ea:9d:d9:2c:09:b5:
3c:e7:c8:e0:1e:4b:4f:63:16:ad:3a:1f:d8:1c:71:
22:2f:60:31:c0:bb:f2:37:f6:80:2d:5d:87:d2:9d:
fb:7a:c7:61:10:57:96:ff:0e:78:8e:aa:8f:72:ed:
25:6d:08:1c:98:0f:0a:0a:24:6a:b3:1b:1f:7e:86:
b4:76:d4:12:96:11:69:cb:da:41:7a:68:c4:eb:53:
f7:aa:30:79:a1:a5:97:ca:2d:03:f8:df:5f:e3:c4:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:93:6B:C4:50:F3:BA:41:E5:CD:3A:05:D0:1A:81:26:45:09:C4:DD
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:21:c9:70:d0:6b:9e:2b:a4:f9:b3:6d:15:35:2d:5b:1a:95:
8d:3d:41:78:e6:b1:be:90:80:dc:5d:58:2a:2d:4b:b4:8a:83:
ff:3d:ba:d6:c7:53:a2:c7:68:89:0f:bc:4b:0b:fe:6b:3f:91:
ea:7b:fd:46:95:ac:af:3b:a4:18:79:86:c6:90:b1:57:3d:70:
35:2e:dd:7a:93:49:eb:0a:78:f0:c1:dd:9b:dd:c5:96:8e:d9:
d1:2b:3d:88:40:a2:79:78:f0:a9:bc:6f:2c:e9:2a:f7:93:91:
69:be:1b:04:72:fc:34:b6:be:05:18:a4:ee:60:13:6f:37:63:
e3:bd:9e:b6:fb:4d:bb:be:d7:3a:0e:92:c7:c1:dd:85:5f:7a:
09:91:ef:83:be:6c:87:ea:b5:bc:44:2b:27:8f:af:42:d7:b5:
2f:fd:66:8b:e7:ed:1b:3c:3f:44:08:15:6c:26:5f:17:9c:43:
22:34:d2:0e:0a:2b:05:56:86:ef:26:40:94:c0:6f:50:3e:ba:
6f:fb:83:a8:e7:36:64:c3:6e:54:4d:0a:6d:2c:54:16:12:9c:
c2:57:3f:25:58:df:17:81:28:90:f8:2b:b1:a3:cb:ca:b7:52:
4d:1f:89:c9:ab:be:69:ae:99:65:63:04:6c:40:b5:30:b4:a8:
8b:32:ff:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 15:41:03 2026 by rpki-client