Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: GVzugaFEwWA8ngCRB/46SyOeJUhEcJ++Z4lmy9CBbYM=
Subject key identifier: 74:90:96:2C:E0:24:CF:C0:CA:B2:B2:AF:97:DD:C4:F2:C2:0F:26:C9
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E891154C80E7F824199A9B8BA10435D68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1940
Signing time: Tue 02 Jun 2026 16:01:14 +0000
Manifest this update: Tue 02 Jun 2026 16:01:14 +0000
Manifest next update: Wed 03 Jun 2026 16:01:14 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: aDOCApMjXVRiIbBGTDzn0qBAyj11DA0G84zilTaLeKU=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jun 2026 15:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:89:11:54:c8:0e:7f:82:41:99:a9:b8:ba:10:43:5d:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 2 16:01:14 2026 GMT
Not After : Jun 3 16:01:14 2026 GMT
Subject: CN=7490962ce024cfc0cab2b2af97ddc4f2c20f26c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:84:55:01:cd:e8:b0:f6:81:f2:83:f5:aa:6d:
61:aa:98:0f:43:3c:24:4d:43:05:aa:d0:a6:6a:7f:
f0:e7:c5:1d:39:9e:01:cd:87:75:4f:e6:5a:25:c9:
56:f0:22:05:32:31:c3:b4:d9:c9:e8:b6:de:86:ab:
3c:a4:c7:46:eb:8c:d2:82:3d:fc:17:b6:c2:a3:e1:
35:d6:d0:4b:64:10:19:a3:7b:59:f5:0d:8b:44:9a:
e9:1d:72:aa:48:5a:c5:29:cd:13:62:b2:2f:57:5b:
0b:a7:9b:60:14:0b:9d:b7:0e:3f:3f:f4:8f:df:a4:
4d:9b:57:19:1d:aa:2e:59:7c:99:62:36:2b:fe:42:
e2:94:ba:ca:a7:3c:d1:79:22:7f:ca:3d:9a:83:97:
c4:5f:64:e0:92:cf:ad:f1:e8:7b:69:f9:14:02:e7:
6a:df:f7:2d:80:19:68:9a:30:7f:e6:49:09:fa:5f:
6d:bd:e2:aa:5a:bc:22:d8:a2:c7:7b:68:08:62:df:
2d:39:5f:a3:78:a6:98:d1:5a:26:de:bf:10:ce:74:
ff:a7:73:d8:38:0e:a8:41:3f:13:b2:98:9d:fa:38:
cb:2c:db:10:92:2d:4f:5f:16:d1:23:98:7a:fe:cd:
b7:0c:c3:09:c4:74:a9:4b:82:c9:40:71:f3:a8:47:
d0:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:90:96:2C:E0:24:CF:C0:CA:B2:B2:AF:97:DD:C4:F2:C2:0F:26:C9
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:7c:d1:90:d1:e6:aa:2b:e9:76:62:df:29:12:1b:db:5d:7d:
8a:18:76:f9:2c:f0:03:4d:a7:1f:ea:9d:87:c8:6c:f7:db:26:
44:e3:b2:ff:64:e3:6d:c0:d3:13:67:be:32:bb:ef:29:d8:ec:
74:08:4d:de:4e:d5:fe:fe:6d:f7:90:fc:f8:d3:b6:dd:e4:ff:
f2:4f:42:1a:45:fe:43:7e:fe:0d:1a:9d:79:07:73:1b:04:d1:
d0:b1:99:75:ed:29:2f:1d:fe:e9:8b:b9:3d:11:a4:83:0d:dc:
ec:e7:e4:fe:de:8d:39:78:86:d2:d6:44:6d:b1:bb:2d:6d:33:
99:da:d5:e4:10:a2:e9:2a:07:37:7e:31:3d:6f:bd:30:0d:a4:
78:83:59:82:d5:f2:e3:c8:22:ad:9c:e3:c8:f8:2f:eb:35:28:
11:3f:11:78:d2:19:31:8f:ea:2c:bc:7e:fb:9e:48:82:7c:30:
f1:41:44:4f:18:22:11:e6:d9:dd:51:51:52:d1:b7:1d:c0:4c:
7e:de:67:d3:49:4a:88:e8:bc:fc:b5:83:2a:62:45:fa:9c:04:
cf:57:49:7c:76:0c:46:85:b2:8d:b3:0e:fe:d6:da:93:bc:4b:
f5:db:b1:99:a4:ae:9b:f4:87:aa:8f:0c:c2:31:37:69:d3:71:
56:68:6e:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6JEVTIDn+CQZmpuLoQQ11oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNjAyMTYwMTE0WhcNMjYwNjAzMTYwMTE0WjAzMTEwLwYDVQQD
Eyg3NDkwOTYyY2UwMjRjZmMwY2FiMmIyYWY5N2RkYzRmMmMyMGYyNmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoRVAc3osPaB8oP1qm1hqpgPQzwk
TUMFqtCman/w58UdOZ4BzYd1T+ZaJclW8CIFMjHDtNnJ6Lbehqs8pMdG64zSgj38
F7bCo+E11tBLZBAZo3tZ9Q2LRJrpHXKqSFrFKc0TYrIvV1sLp5tgFAudtw4/P/SP
36RNm1cZHaouWXyZYjYr/kLilLrKpzzReSJ/yj2ag5fEX2Tgks+t8eh7afkUAudq
3/ctgBlomjB/5kkJ+l9tveKqWrwi2KLHe2gIYt8tOV+jeKaY0Vom3r8QznT/p3PY
OA6oQT8Tspid+jjLLNsQki1PXxbRI5h6/s23DMMJxHSpS4LJQHHzqEfQEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSQlizgJM/AyrKyr5fdxPLCDybJMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE3zRkNHm
qivpdmLfKRIb2119ihh2+SzwA02nH+qdh8hs99smROOy/2TjbcDTE2e+MrvvKdjs
dAhN3k7V/v5t95D8+NO23eT/8k9CGkX+Q37+DRqdeQdzGwTR0LGZde0pLx3+6Yu5
PRGkgw3c7Ofk/t6NOXiG0tZEbbG7LW0zmdrV5BCi6SoHN34xPW+9MA2keINZgtXy
48girZzjyPgv6zUoET8ReNIZMY/qLLx++55Ignww8UFETxgiEebZ3VFRUtG3HcBM
ft5n00lKiOi8/LWDKmJF+pwEz1dJfHYMRoWyjbMO/tbak7xL9duxmaSum/SHqo8M
wjE3adNxVmhuhw==
-----END CERTIFICATE-----
Generated at Wed Jun 3 01:00:38 2026 by rpki-client