Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 43UAKw/o1SnIyXYcxPTavSE5RQkyLB8PLaOOjRUucsE=
Subject key identifier: 8E:FF:EF:D5:A8:0A:ED:11:86:A5:17:CC:99:BD:93:77:A4:95:13:C2
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D76D65F2333A07BC224F2C3C431A4FE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18B2
Signing time: Fri 10 Apr 2026 10:00:53 +0000
Manifest this update: Fri 10 Apr 2026 10:00:53 +0000
Manifest next update: Sat 11 Apr 2026 10:00:53 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: r0h1f2ON5dzKqmBsibpAiRysULrkkcvnHm+ypR3AkUs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:76:d6:5f:23:33:a0:7b:c2:24:f2:c3:c4:31:a4:fe:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 10 10:00:53 2026 GMT
Not After : Apr 11 10:00:53 2026 GMT
Subject: CN=8effefd5a80aed1186a517cc99bd9377a49513c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:70:a1:7a:44:82:0d:55:29:60:b8:22:ab:16:
84:b6:78:1f:35:c7:c4:0e:b7:ae:54:8e:6e:d5:41:
b6:9f:cd:6c:f7:ff:70:a1:90:97:3e:a5:26:5e:15:
dd:e2:17:7c:61:21:6d:ec:67:9c:87:3d:8c:a6:d9:
61:d0:69:23:92:89:a1:1b:47:bb:8f:06:28:26:60:
1a:f5:08:73:01:5d:4f:a1:6e:11:d6:ea:dc:3a:dd:
83:c2:e8:91:c3:a2:7e:0b:af:b3:f1:00:c5:33:1d:
f3:c5:c9:d4:6b:72:83:7a:7d:aa:5c:cf:fe:15:ef:
c1:f9:8f:de:df:4b:7d:e2:56:f8:63:95:5d:de:21:
18:cb:01:04:48:8d:a5:4d:32:b4:19:98:c5:70:52:
b7:cb:3e:e8:ea:f0:6e:ff:d1:6f:2d:94:89:f1:1a:
fa:47:88:b8:4b:57:c4:06:3a:9a:16:93:34:47:9f:
0e:4a:2f:47:55:e8:31:5b:d2:71:e3:ad:2f:03:7f:
06:5f:01:41:67:44:5a:26:72:c6:1a:15:7f:fc:fa:
55:fb:ef:9c:ac:f5:67:29:c9:ed:d7:26:f9:75:e3:
85:6e:38:31:95:8f:0a:3c:a8:07:a1:e7:53:3b:55:
b5:a5:40:5f:f2:3d:52:41:56:96:28:6d:73:ae:dd:
e7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FF:EF:D5:A8:0A:ED:11:86:A5:17:CC:99:BD:93:77:A4:95:13:C2
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:6e:cf:45:fd:a1:e6:08:02:d5:21:5a:e9:98:0d:c9:2f:d5:
46:d1:72:fc:44:d4:4e:db:94:0e:5c:7a:4c:77:e0:43:aa:ea:
32:d2:66:a9:76:df:d6:0d:9b:c8:08:ad:7a:7c:b4:a2:27:27:
b9:54:82:5d:a0:c4:70:ab:31:60:ff:a7:66:60:be:c4:42:74:
7b:b0:35:bd:86:f1:c2:76:c1:4c:02:0e:be:1c:31:67:90:b8:
9c:fc:95:ab:86:5e:c3:77:cb:ac:94:0f:a2:41:ec:a4:74:3c:
02:fd:ad:0a:cd:30:fa:75:b4:4e:25:1b:85:e6:7d:2f:bd:07:
e7:77:b7:fb:b3:9d:0b:b5:69:d2:8b:c7:71:82:22:25:57:d3:
a3:2a:8c:2d:ec:6f:44:3b:e8:8e:6e:3f:8a:34:70:91:28:48:
bf:08:96:c6:29:50:07:5a:b5:bb:40:a6:31:f0:7a:e8:4f:52:
7a:3f:88:0e:8b:a9:09:26:56:49:a4:dd:d4:71:1b:4f:2d:f8:
cd:66:f7:1a:ff:77:ce:95:5b:11:bb:ec:95:1f:ef:65:e6:24:
e5:6e:a1:b2:2d:fb:60:89:31:cb:a1:cd:77:28:3a:5e:23:83:
a9:3e:21:cb:c3:45:a1:0c:d0:f6:4d:61:3b:02:f2:a5:9c:af:
71:f1:65:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ121l8jM6B7wiTyw8QxpP4BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNDEwMTAwMDUzWhcNMjYwNDExMTAwMDUzWjAzMTEwLwYDVQQD
Eyg4ZWZmZWZkNWE4MGFlZDExODZhNTE3Y2M5OWJkOTM3N2E0OTUxM2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnChekSCDVUpYLgiqxaEtngfNcfE
DreuVI5u1UG2n81s9/9woZCXPqUmXhXd4hd8YSFt7Gechz2Mptlh0GkjkomhG0e7
jwYoJmAa9QhzAV1PoW4R1urcOt2DwuiRw6J+C6+z8QDFMx3zxcnUa3KDen2qXM/+
Fe/B+Y/e30t94lb4Y5Vd3iEYywEESI2lTTK0GZjFcFK3yz7o6vBu/9FvLZSJ8Rr6
R4i4S1fEBjqaFpM0R58OSi9HVegxW9Jx460vA38GXwFBZ0RaJnLGGhV//PpV+++c
rPVnKcnt1yb5deOFbjgxlY8KPKgHoedTO1W1pUBf8j1SQVaWKG1zrt3nmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI7/79WoCu0RhqUXzJm9k3eklRPCMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvW7PRf2h
5ggC1SFa6ZgNyS/VRtFy/ETUTtuUDlx6THfgQ6rqMtJmqXbf1g2byAiteny0oicn
uVSCXaDEcKsxYP+nZmC+xEJ0e7A1vYbxwnbBTAIOvhwxZ5C4nPyVq4Zew3fLrJQP
okHspHQ8Av2tCs0w+nW0TiUbheZ9L70H53e3+7OdC7Vp0ovHcYIiJVfToyqMLexv
RDvojm4/ijRwkShIvwiWxilQB1q1u0CmMfB66E9Sej+IDoupCSZWSaTd1HEbTy34
zWb3Gv93zpVbEbvslR/vZeYk5W6hsi37YIkxy6HNdyg6XiODqT4hy8NFoQzQ9k1h
OwLypZyvcfFlow==
-----END CERTIFICATE-----
Generated at Fri Apr 10 13:15:38 2026 by rpki-client