Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: /kGE1UCVbEw/2XFFQlOUpNCRUGlq9rlLm0ubI/wPeTM=
Subject key identifier: EF:CB:0D:A0:91:53:D4:F0:3F:79:21:32:E3:84:68:AB:4E:39:00:27
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EDA2D2375C0F1035BC4F2B6E4BBF98B84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 196A
Signing time: Thu 18 Jun 2026 10:00:51 +0000
Manifest this update: Thu 18 Jun 2026 10:00:51 +0000
Manifest next update: Fri 19 Jun 2026 10:00:51 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: evsAG745jsDCnADm5XAqS7xqmYcpN5af7EcaxDLNg+Y=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 10:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:da:2d:23:75:c0:f1:03:5b:c4:f2:b6:e4:bb:f9:8b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 18 10:00:51 2026 GMT
Not After : Jun 19 10:00:51 2026 GMT
Subject: CN=efcb0da09153d4f03f792132e38468ab4e390027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:a3:a5:1a:7a:de:5c:6a:6d:57:2f:20:8c:c9:
d3:17:83:fd:04:5b:00:8b:9b:0b:dc:a0:e9:7f:fc:
32:cf:34:c7:6c:fb:6a:2b:ba:a9:13:20:74:78:81:
23:cb:20:0c:79:fc:55:31:76:be:8c:e0:86:00:a2:
46:be:51:8e:d1:e8:fd:87:62:11:88:b9:e4:5e:44:
66:54:d3:9e:e9:c4:45:39:c6:e2:44:b3:df:21:b4:
58:6e:74:7f:05:b3:f2:e3:7d:24:c6:98:d9:d1:ae:
10:8c:fe:0a:11:f2:6b:82:a4:59:8e:b1:61:a6:ec:
30:bf:f8:9f:eb:f2:86:57:5f:0c:ec:73:d2:59:3e:
6d:5d:78:6d:15:51:38:09:2b:fd:95:10:a0:1b:2b:
34:48:c7:e8:a7:26:cd:11:ad:e1:2e:71:f0:88:2f:
9b:3a:e8:4b:ae:24:2a:4b:68:43:9c:14:b4:c8:f7:
3a:c6:26:6c:eb:f4:8a:8d:0c:18:75:8d:9d:f2:03:
d1:6b:c5:54:e5:80:ed:53:0a:d9:63:e2:ac:5b:8d:
42:c5:1d:18:c7:5d:a0:92:d8:06:b2:aa:a9:cd:de:
40:b9:c0:10:a9:77:f2:7b:65:9e:ad:8e:4f:e3:f2:
d4:b6:02:55:db:bb:c2:e6:0c:1b:38:1a:fa:8e:89:
8d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CB:0D:A0:91:53:D4:F0:3F:79:21:32:E3:84:68:AB:4E:39:00:27
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:18:bc:2a:86:79:d6:d0:34:a4:90:d1:c1:f7:f6:36:66:73:
47:b0:d7:32:0d:b3:75:bf:db:fe:0d:d6:3d:9d:5c:db:8a:2e:
15:60:6b:a0:54:2b:66:db:38:5e:61:eb:a1:18:17:8a:d3:c8:
e9:8f:81:69:76:99:03:d0:9d:4c:9b:c6:5f:4f:05:de:cf:47:
4f:f5:64:41:82:b5:fc:d0:2f:87:35:e7:99:68:b3:d9:31:d6:
6a:ee:ec:ba:be:39:e0:92:1d:ea:5d:99:8c:86:f0:a1:29:ec:
d3:bd:62:ff:38:39:86:f7:c3:0b:b2:fa:50:bc:a8:2e:3b:2f:
49:b2:fe:08:d5:76:16:67:64:fe:5c:1c:ff:0b:f4:66:fa:72:
a9:db:22:84:88:f5:e6:70:89:b0:27:4b:05:95:17:8c:5d:49:
ab:f4:48:56:85:27:ea:92:d0:6e:5b:2f:75:44:05:c2:2d:9a:
7c:b9:d7:b7:11:2b:10:32:19:5c:2e:82:18:3c:0d:57:a7:ef:
0b:17:49:44:25:70:3f:d2:33:01:7c:8a:da:34:d1:fa:fa:22:
68:4b:76:95:a3:ba:71:ab:90:6c:3b:e3:fe:27:7b:52:8a:f0:
97:1f:d2:aa:33:62:f5:4f:5f:66:e4:2d:cf:4e:c0:4b:55:aa:
aa:e5:91:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 18 14:09:22 2026 by rpki-client