Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: E45uOCqUzPNehsAcgs1ymFSpraoS2lak6oAZfoMbUB4=
Subject key identifier: 6E:A2:D7:AE:94:01:2F:B0:98:CA:3F:C8:02:38:02:78:F2:45:AD:96
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019ED4628A99B132032D856CC32C0A8AAC20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1967
Signing time: Wed 17 Jun 2026 07:01:28 +0000
Manifest this update: Wed 17 Jun 2026 07:01:28 +0000
Manifest next update: Thu 18 Jun 2026 07:01:28 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: B44MNfLu+vmy7FVj5AqxruDe7EzZc+9nUs+DShwoaAw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 07:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:62:8a:99:b1:32:03:2d:85:6c:c3:2c:0a:8a:ac:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 17 07:01:28 2026 GMT
Not After : Jun 18 07:01:28 2026 GMT
Subject: CN=6ea2d7ae94012fb098ca3fc802380278f245ad96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:50:9e:01:38:db:65:a2:fb:86:b7:26:cf:b1:
48:ff:fc:0e:8b:bb:4b:1b:f4:84:e3:8a:e2:4e:43:
3f:20:9c:d8:55:da:4f:b9:e0:9e:59:85:ff:05:53:
30:87:41:71:79:51:72:3f:92:d1:d4:64:4e:05:17:
09:a9:62:36:b8:88:38:7d:5c:5c:ac:61:0e:50:e3:
f8:25:09:9a:29:26:3e:e6:c9:9a:77:bd:cb:43:ed:
89:a2:b0:17:ef:65:b8:f5:59:d7:36:54:2c:99:a5:
dc:77:4c:54:27:aa:81:44:c0:09:00:9f:07:b1:9a:
08:2c:8e:8f:15:24:a8:23:42:51:30:e1:fb:8c:86:
88:92:2d:5c:f8:0d:88:6f:b4:03:6d:a9:01:7e:0d:
7b:07:b1:d0:dd:23:7f:a0:f6:9a:71:ee:9c:50:2d:
bf:61:3a:91:f7:41:51:71:61:5d:e2:f4:d2:ab:66:
59:20:92:90:aa:e0:b9:4b:de:8f:dd:fe:7e:2d:ba:
4a:26:49:3a:23:52:42:9f:5f:61:c3:a7:bf:8c:ae:
10:94:76:dd:aa:46:7d:74:ee:ac:ed:3f:4f:2f:39:
89:52:c8:3f:2e:6e:cd:6c:2c:16:ca:87:8b:3e:4a:
12:78:84:54:47:d1:02:8d:23:5b:dc:72:39:52:8d:
e7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:A2:D7:AE:94:01:2F:B0:98:CA:3F:C8:02:38:02:78:F2:45:AD:96
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:46:dd:2b:f7:86:f0:b4:e5:09:19:9b:fd:d7:bd:82:e2:5d:
ae:f7:39:b6:14:4b:35:eb:d8:85:35:ba:c2:9f:11:95:fb:db:
11:aa:13:5d:91:93:83:b7:16:72:b8:bc:e3:9f:08:f6:5b:b1:
eb:6c:0c:4c:b7:0a:1b:ff:b7:72:6c:ba:96:6f:d3:ce:1e:0b:
65:03:fa:09:d8:f9:c7:35:cc:7a:3d:bd:af:78:29:d5:bb:1a:
63:a3:ba:15:b2:c7:9d:aa:6d:cf:1a:8e:94:71:a8:0d:60:5b:
50:25:3f:ca:a7:9a:1e:d0:79:3c:aa:9a:74:b6:c7:61:c5:0a:
01:67:30:e2:8a:46:f6:0a:09:7b:7b:a1:ed:46:d3:97:0c:b0:
f9:d8:26:8f:ba:35:e8:d0:94:42:be:1b:5a:ad:15:34:f7:ba:
b0:7f:28:5d:9c:14:d8:5d:8c:e3:2a:24:11:d3:db:89:6a:0a:
d1:c5:98:cd:11:e6:59:32:8d:33:07:7d:21:1f:bb:f2:1b:30:
f0:52:e1:dd:95:7b:bc:03:e6:c3:bd:e1:f9:e5:97:10:38:8f:
3c:4d:81:ae:17:dd:73:05:5d:4c:85:6e:dd:1e:98:a2:ab:5c:
6f:99:9a:c2:d8:c2:f7:bd:11:49:40:78:d8:e8:18:0b:3e:23:
3a:34:6b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 13:43:14 2026 by rpki-client