Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 2wtlYXRya03XwiZeVLB0UlZ1cj9ISUiiqNxS9+uxYck=
Subject key identifier: 47:77:69:A8:1B:75:DC:87:85:07:D6:42:32:34:E2:62:3A:A8:78:EF
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CFB3D69D75E3F2CCD765DDE59F2B95241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1871
Signing time: Tue 17 Mar 2026 10:00:31 +0000
Manifest this update: Tue 17 Mar 2026 10:00:31 +0000
Manifest next update: Wed 18 Mar 2026 10:00:31 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 8AflrUt8ZCh2j6rwyEzAakv3LIJGIeebprGaXsvg3SU=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Mar 2026 10:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:fb:3d:69:d7:5e:3f:2c:cd:76:5d:de:59:f2:b9:52:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 17 10:00:31 2026 GMT
Not After : Mar 18 10:00:31 2026 GMT
Subject: CN=477769a81b75dc878507d6423234e2623aa878ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:64:1d:58:47:69:aa:10:a2:dd:b1:40:d8:
cb:50:fe:3c:f3:f8:b1:4b:64:25:38:d3:21:10:db:
ff:e4:f5:92:3f:4b:b5:ce:a2:ed:95:79:fb:82:f5:
44:20:f4:7a:35:28:6e:46:99:94:b6:b0:ba:b5:d8:
ce:17:d3:96:40:b1:52:cc:90:6d:97:39:04:d8:0c:
5f:ba:62:0a:ec:79:13:8e:38:4d:ac:02:02:30:11:
37:90:f3:bc:f5:be:e8:33:17:f5:1a:ac:8c:7c:05:
3c:da:26:90:f8:d8:47:f1:03:e7:b1:7b:54:6c:d5:
c0:16:3e:63:2f:e6:86:79:56:b7:53:5c:c5:18:83:
b4:98:bd:70:8c:f2:15:1a:67:74:30:b4:a5:0e:69:
8e:02:fc:62:79:fa:3e:22:a6:75:56:d8:2a:7f:59:
ae:35:0b:88:3d:ae:5b:ba:f9:8c:22:6d:8f:3f:a6:
35:74:cc:b2:d4:cd:c6:16:8c:9f:94:03:0e:ab:c0:
cf:1e:04:9f:ce:04:95:c2:01:19:ae:95:3d:2e:e3:
5b:52:31:4b:e1:fa:1d:08:0d:6e:4b:84:4c:a5:16:
34:cb:d7:45:f7:f8:d6:1e:b8:49:d4:a7:bb:fb:41:
3a:09:4d:25:4c:fa:15:a2:2c:b3:33:21:fb:92:5f:
df:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:77:69:A8:1B:75:DC:87:85:07:D6:42:32:34:E2:62:3A:A8:78:EF
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:77:c1:c4:eb:86:2f:88:c1:be:08:ce:d6:c8:21:70:2e:ff:
61:8f:3a:14:d9:62:4f:d6:b9:3e:a5:29:df:5b:d7:c9:2d:6c:
61:28:93:93:0f:df:11:b9:c8:c5:1d:37:f9:e6:6d:9c:fb:c6:
b7:28:b2:d8:2c:ec:30:f4:16:12:2f:6a:25:e7:9c:7c:ac:9f:
fa:fd:32:bb:d6:e6:f5:b6:f6:da:8c:9e:13:8c:5e:a6:f2:65:
1f:d0:da:c7:a4:d6:95:0d:69:91:3d:5e:df:cc:60:cd:1e:9e:
97:74:fa:67:81:bc:42:9f:20:13:dc:ed:33:8b:5a:63:f1:9c:
a8:da:d8:c0:86:c6:1a:74:82:25:42:d0:32:43:ac:81:f5:04:
92:d5:97:59:07:7a:a2:e7:66:a5:2a:ac:cd:16:a0:14:b6:83:
21:73:a0:da:21:5c:3c:5f:1d:a4:f1:d9:90:d6:1f:15:d9:91:
8f:d7:d9:fe:a0:c6:88:ec:26:1b:4e:4d:b2:6b:d8:ab:d5:3a:
64:47:a7:84:f0:01:6b:b9:4c:d0:22:51:a3:96:ef:fd:ab:ac:
85:16:e5:64:89:e7:88:ce:b0:9a:68:ef:d0:c7:6b:0a:d7:31:
51:c5:29:2f:1f:ff:9f:49:8a:c7:a7:6f:02:97:b1:11:8e:8b:
f7:8e:5f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 20:25:03 2026 by rpki-client