Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 9TdVkp9rvvzs8CuFF6HxD0RY5ejf0TzHLg9U5br0Jcc=
Subject key identifier: 17:0D:62:71:85:FB:BD:E9:25:7B:27:F4:60:83:66:A9:41:A5:D0:9C
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F19438E1C817330FE5E488BF8386621FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 198B
Signing time: Tue 30 Jun 2026 16:01:25 +0000
Manifest this update: Tue 30 Jun 2026 16:01:25 +0000
Manifest next update: Wed 01 Jul 2026 16:01:25 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: bitkUXzsrgl+Vggu2/mQdTOM1PCizztxNIEaiPbajHc=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:8e:1c:81:73:30:fe:5e:48:8b:f8:38:66:21:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 30 16:01:25 2026 GMT
Not After : Jul 1 16:01:25 2026 GMT
Subject: CN=170d627185fbbde9257b27f4608366a941a5d09c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5a:89:28:96:3d:cd:20:68:eb:2f:fe:9c:74:
a0:65:b4:64:5a:0d:cc:0b:9c:a6:dc:d5:93:f6:a4:
ed:0e:a8:36:d6:23:7b:a5:6e:53:c2:36:15:ef:52:
cc:0a:7a:36:9c:cc:87:09:61:42:8f:b9:f2:9e:10:
ab:49:40:2e:7d:49:7e:eb:0a:8c:56:49:24:47:b9:
b4:34:d7:cd:e0:92:db:d8:8f:b6:73:5f:56:67:01:
4e:14:56:99:77:1c:b1:36:df:97:3a:df:e4:27:05:
31:58:a6:eb:a5:8f:27:8f:9e:08:e3:ed:5b:b2:84:
fd:2d:00:e3:ef:5e:df:62:b3:ba:3d:30:3e:bd:f2:
82:61:1c:b4:07:28:0b:31:c2:bb:89:f1:04:ab:a6:
10:73:61:ab:f9:8d:8e:e7:83:6e:29:66:b2:03:41:
48:07:90:bd:61:92:7c:ac:9a:59:b4:0c:2e:8e:5c:
e1:ab:a4:4b:2b:2f:96:b9:4d:5e:e9:c1:7a:52:27:
34:79:4e:47:d2:66:53:83:cb:66:11:7f:27:4f:53:
d1:f3:fb:d2:09:d7:ac:72:f6:33:fa:8e:6b:0e:7a:
20:1a:e2:44:39:10:06:aa:bc:58:c2:26:f5:76:cf:
69:24:6e:d2:e8:0c:79:73:f5:67:57:1f:58:df:09:
9c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:0D:62:71:85:FB:BD:E9:25:7B:27:F4:60:83:66:A9:41:A5:D0:9C
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:56:d2:68:22:20:03:28:54:e3:d8:f1:4e:52:a5:6a:37:0e:
56:91:08:ee:3e:9d:ff:aa:4f:d0:8a:ff:d8:21:77:37:b7:36:
ef:9d:e9:93:e8:18:6c:8d:53:98:fb:88:a6:22:2e:83:78:88:
e0:d8:fb:7d:e2:4b:f3:14:e8:f8:15:fb:2f:f9:18:a4:93:ef:
b6:0c:12:62:7c:7c:46:07:5c:36:cf:58:2b:40:de:30:b2:33:
d5:54:96:86:8c:b7:97:10:90:6c:57:3a:f7:46:cf:0a:43:10:
17:22:c5:72:31:5f:4e:ea:83:53:67:e3:ad:7c:12:01:38:a2:
e9:19:66:5c:e6:3c:39:e5:a8:a7:9e:d5:7e:64:9a:af:4a:06:
07:d0:bd:e8:68:90:93:10:77:15:d6:47:a3:40:cb:58:19:ed:
71:4b:00:e8:86:9b:7c:49:5a:f3:1a:05:32:3a:4d:0b:0a:a2:
d9:3f:99:ec:97:b7:b9:1b:aa:bf:37:93:ac:8d:10:95:76:24:
5b:46:07:14:c3:7f:39:f7:43:b9:de:ad:53:bb:37:23:a4:28:
1e:77:4e:13:2b:85:70:bb:61:47:38:90:7c:b0:d9:69:47:b7:
24:ba:0b:12:fe:f4:76:e9:68:22:6c:aa:21:eb:37:57:68:da:
cf:22:0e:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ44cgXMw/l5Ii/g4ZiH7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNjMwMTYwMTI1WhcNMjYwNzAxMTYwMTI1WjAzMTEwLwYDVQQD
EygxNzBkNjI3MTg1ZmJiZGU5MjU3YjI3ZjQ2MDgzNjZhOTQxYTVkMDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVqJKJY9zSBo6y/+nHSgZbRkWg3M
C5ym3NWT9qTtDqg21iN7pW5TwjYV71LMCno2nMyHCWFCj7nynhCrSUAufUl+6wqM
VkkkR7m0NNfN4JLb2I+2c19WZwFOFFaZdxyxNt+XOt/kJwUxWKbrpY8nj54I4+1b
soT9LQDj717fYrO6PTA+vfKCYRy0BygLMcK7ifEEq6YQc2Gr+Y2O54NuKWayA0FI
B5C9YZJ8rJpZtAwujlzhq6RLKy+WuU1e6cF6Uic0eU5H0mZTg8tmEX8nT1PR8/vS
CdescvYz+o5rDnogGuJEORAGqrxYwib1ds9pJG7S6Ax5c/VnVx9Y3wmcewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBcNYnGF+73pJXsn9GCDZqlBpdCcMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAClbSaCIg
AyhU49jxTlKlajcOVpEI7j6d/6pP0Ir/2CF3N7c2753pk+gYbI1TmPuIpiIug3iI
4Nj7feJL8xTo+BX7L/kYpJPvtgwSYnx8RgdcNs9YK0DeMLIz1VSWhoy3lxCQbFc6
90bPCkMQFyLFcjFfTuqDU2fjrXwSATii6RlmXOY8OeWop57VfmSar0oGB9C96GiQ
kxB3FdZHo0DLWBntcUsA6IabfEla8xoFMjpNCwqi2T+Z7Je3uRuqvzeTrI0QlXYk
W0YHFMN/OfdDud6tU7s3I6QoHndOEyuFcLthRziQfLDZaUe3JLoLEv70duloImyq
Ies3V2jazyIOhA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 19:44:31 2026 by rpki-client