Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: nCXIzovFDPAI7jbvnQdcmBNbeTvKgAmnOAAh62YWUu8=
Subject key identifier: 8B:B9:DD:F0:E4:B1:72:49:14:BC:21:CB:54:4A:39:BC:34:ED:B1:37
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EE9A0FA7AD506B2F60636C8B24311F53B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1972
Signing time: Sun 21 Jun 2026 10:01:41 +0000
Manifest this update: Sun 21 Jun 2026 10:01:41 +0000
Manifest next update: Mon 22 Jun 2026 10:01:41 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: UZj+lppgd5WxqhF32uIyU5IiY9tPhQe4atOZwV4pUbg=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 10:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e9:a0:fa:7a:d5:06:b2:f6:06:36:c8:b2:43:11:f5:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 21 10:01:41 2026 GMT
Not After : Jun 22 10:01:41 2026 GMT
Subject: CN=8bb9ddf0e4b1724914bc21cb544a39bc34edb137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:35:5e:68:d0:62:17:76:81:95:11:6b:ab:87:
93:a3:99:05:37:ad:89:fb:28:57:21:a4:4b:ca:8a:
76:a7:13:39:de:49:90:7b:69:66:88:3a:23:33:e3:
ec:32:21:bf:87:c7:1c:5a:f2:89:0e:38:70:b9:30:
48:ed:4f:21:61:20:8b:16:1f:3f:ea:ab:5d:9c:20:
02:6a:a8:d1:49:d2:c3:53:d5:b4:58:c1:df:15:74:
8e:62:bf:01:68:1a:3b:ed:b4:e8:e0:eb:6f:c7:94:
5b:43:32:b2:d3:d1:e8:fd:c6:ab:a6:e9:da:a1:04:
8c:6e:3b:d3:ca:df:d1:40:0b:b1:50:fc:8b:67:20:
e8:86:53:95:be:8d:7a:dc:57:62:9e:6c:6d:09:2d:
1a:e1:da:1b:f1:1c:9e:8b:50:ad:6a:6b:72:13:04:
24:e0:37:11:83:e2:d3:22:da:63:d0:58:0e:50:b3:
2e:86:5d:ca:ad:d8:b6:27:41:c3:86:b7:18:15:82:
a1:d1:f5:83:32:4a:e6:1f:ce:5a:a2:3f:1e:4a:68:
3b:4a:bf:7f:8e:ac:db:70:f2:85:a5:dd:99:a4:12:
5d:f9:73:6e:44:13:90:89:df:b2:7d:de:b6:18:75:
67:47:e0:a1:aa:31:1f:96:4c:81:ef:da:fb:c2:b4:
56:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B9:DD:F0:E4:B1:72:49:14:BC:21:CB:54:4A:39:BC:34:ED:B1:37
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:0b:61:4d:db:6b:53:6b:03:ca:2e:7b:9e:ed:d8:7b:da:c6:
6f:93:e5:b3:74:88:16:f3:c1:c6:73:a8:8e:8c:40:cc:dc:e3:
54:05:50:ea:b7:e4:86:51:7b:7d:43:80:19:5d:38:b3:80:34:
25:6d:9f:34:8b:05:0e:b1:af:a9:11:a5:07:1e:c7:3e:cc:37:
fe:63:e7:3d:67:dd:da:ef:43:22:5c:65:92:fd:65:15:7f:51:
c2:6d:9f:cb:9a:a9:45:5b:8b:7d:ba:be:d0:5d:9f:76:6a:30:
10:fc:1e:cd:8d:19:3b:43:aa:64:e6:41:8d:de:9b:40:8c:54:
c9:92:f3:46:1d:75:77:0c:f8:15:98:cf:13:ed:3b:5c:24:8e:
44:ca:9d:a3:d3:d1:b2:d3:ee:ca:a8:6c:7e:47:7f:25:43:07:
20:bd:0f:5f:e6:31:9c:a4:d8:8b:01:89:40:af:2f:65:76:17:
9f:04:bf:b3:60:fc:80:bc:e7:cd:c8:4a:73:0b:3c:af:67:96:
48:0e:cc:e6:63:6d:66:75:f9:91:39:d9:23:85:97:14:db:52:
fc:e2:96:bf:90:39:bc:d6:79:0c:14:a2:44:04:0a:70:dd:df:
78:49:01:6c:a6:2e:6e:9e:a7:48:92:98:7c:14:9a:1a:24:c7:
de:ab:fe:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 14:53:11 2026 by rpki-client