
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: oYlKLjlty1Pm6Q4VJdTF+kVK9yPrgVHggpAa9LoN/NY=
Subject key identifier: 28:47:18:7A:A0:01:D7:70:45:7F:91:F2:BA:4B:75:C8:1C:57:B0:CA
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F6E3D077C9C17CA53E1CBE8AA306F7993
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 19B7
Signing time: Fri 17 Jul 2026 04:02:01 +0000
Manifest this update: Fri 17 Jul 2026 04:02:01 +0000
Manifest next update: Sat 18 Jul 2026 04:02:01 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: IKUTDalC+XuD6fvdn+l9iti2tlCu5RwQXyFk8NKqqzY=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Jul 2026 23:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:6e:3d:07:7c:9c:17:ca:53:e1:cb:e8:aa:30:6f:79:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 17 04:02:01 2026 GMT
Not After : Jul 18 04:02:01 2026 GMT
Subject: CN=2847187aa001d770457f91f2ba4b75c81c57b0ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b6:fc:ce:c0:91:d4:38:9e:3d:65:7b:01:cc:
ad:7e:34:b4:6e:4d:d0:b0:70:6a:8e:fb:89:e6:40:
3c:26:40:6c:f9:4c:b1:38:06:71:09:2b:ff:9d:e2:
b9:6d:82:b4:f0:e7:13:78:54:22:ec:2f:eb:8e:44:
81:44:4e:b0:b3:39:cf:eb:47:ed:07:75:fd:72:d3:
0a:65:20:d3:5a:d5:fe:f6:d3:b5:d5:d8:26:37:35:
79:1a:24:50:3f:1a:ba:90:fc:ce:16:70:fd:0a:19:
4a:f6:61:c7:5f:48:30:15:39:87:6e:fc:8f:c3:56:
6e:df:86:88:87:4e:0b:80:df:9a:33:8c:97:8b:38:
94:97:b5:84:13:b0:5a:e4:7e:c1:88:f2:90:00:f9:
16:dd:3f:8e:ef:1f:27:5f:28:aa:67:f4:79:04:81:
05:4e:9e:e9:24:15:78:26:20:c5:67:b6:7e:42:f1:
b9:e9:02:83:90:5f:75:d9:88:7b:f4:4b:99:93:d2:
ad:fd:f8:9d:49:19:59:98:a6:3f:2a:5e:0b:02:55:
55:ae:d0:51:a6:e6:46:21:e2:f3:1b:9f:6a:77:ef:
35:97:fe:b2:ac:18:23:92:94:50:fc:ed:4c:71:e7:
c7:71:37:55:29:57:3b:b1:6f:31:22:c1:7e:83:ed:
ae:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:47:18:7A:A0:01:D7:70:45:7F:91:F2:BA:4B:75:C8:1C:57:B0:CA
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:5a:ab:38:c5:1a:40:cd:8f:21:11:22:64:0b:36:a1:5d:7a:
a4:d6:7a:a5:80:cc:ce:df:a3:fc:ff:af:89:4e:07:e9:42:6f:
5d:59:b8:69:c5:0d:4c:e9:10:33:6e:6d:d5:a8:a9:03:24:fb:
53:bb:74:52:bb:7e:b3:30:9a:88:82:a1:da:b2:61:f7:46:4e:
25:53:37:7d:b9:88:7c:d9:a6:ad:10:bd:e5:9d:72:89:32:c2:
e2:38:db:0c:a5:d6:07:70:18:b2:43:de:ff:1f:13:57:b6:33:
50:29:46:ee:77:13:de:e0:63:9e:cc:18:6c:d5:2f:ca:86:b6:
ed:00:51:0d:55:7a:47:6d:60:60:98:16:77:7e:29:43:cb:30:
84:89:9e:45:da:31:ef:d1:52:77:a0:4c:7a:3c:8b:1b:a1:c6:
42:a6:ab:02:e2:fd:5e:f1:3c:b2:fc:6b:4f:0b:48:8c:03:54:
94:de:b2:0d:3b:cf:3a:7d:b6:fa:71:fd:38:d6:85:f6:c7:35:
ab:c2:5d:2b:88:92:54:8d:50:03:c7:95:f7:0e:40:73:e5:8c:
9a:93:44:2e:d3:14:00:9c:46:fe:06:7c:4b:d7:74:f4:ae:6f:
9e:4d:ea:10:dc:0e:b3:ba:e0:b8:69:5a:e5:f5:d0:8b:b0:00:
d8:5b:74:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 07:56:56 2026 by rpki-client