Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: K5VoNqKU/hnBjiBZBpmPMXN9zeoBAhVkcHYRCsmVAnI=
Subject key identifier: 28:35:30:35:1B:6B:CA:28:EE:BE:F4:F6:F7:02:E4:7A:C9:C1:63:40
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EF2A3FED206CD68082988FCDC44BA06E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1977
Signing time: Tue 23 Jun 2026 04:01:34 +0000
Manifest this update: Tue 23 Jun 2026 04:01:34 +0000
Manifest next update: Wed 24 Jun 2026 04:01:34 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: CkY8ffOjTJiKQPAc0kJyUnIJGN+331fev1EA2Elt2rs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 04:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f2:a3:fe:d2:06:cd:68:08:29:88:fc:dc:44:ba:06:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 23 04:01:34 2026 GMT
Not After : Jun 24 04:01:34 2026 GMT
Subject: CN=283530351b6bca28eebef4f6f702e47ac9c16340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a4:75:69:60:71:aa:8c:4c:c0:09:d4:4b:98:
97:2c:24:e9:de:1b:b6:2d:6b:ae:27:b2:21:66:ec:
00:1c:24:e5:af:94:97:24:ab:01:c6:39:80:a0:dd:
f9:91:ea:75:b9:29:9e:5c:44:93:38:ef:e9:cf:fe:
31:71:71:c6:30:22:51:15:9b:2e:43:53:f6:6c:c8:
cd:3e:19:35:a5:0d:75:eb:4f:bc:fd:2e:2f:cc:ec:
41:76:bb:cb:9b:8c:73:c3:18:f4:fd:d0:0a:fa:c5:
cb:aa:c5:a1:e0:74:87:f1:3d:f7:35:a8:96:3a:2b:
fc:d7:60:ec:53:e1:4f:f7:f2:e4:f2:33:09:9c:32:
12:97:10:b4:77:a8:12:29:df:25:82:78:fe:83:03:
f7:a4:76:05:b3:14:7c:e8:3a:3f:60:1a:36:53:7b:
f6:b3:77:22:5e:42:0b:43:c4:69:c3:5c:29:81:0f:
db:ba:0c:c1:a5:7e:b9:ec:33:44:56:49:1f:a9:65:
92:a5:e2:47:04:36:43:79:8b:d6:66:98:60:14:a7:
1e:43:4e:4d:da:15:93:f8:eb:e3:b1:b5:bc:ee:57:
e3:d0:87:b3:19:79:b3:22:4c:ed:14:1d:f9:91:64:
01:c4:2b:28:87:c4:76:d8:e7:48:a2:2d:4c:b1:55:
23:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:35:30:35:1B:6B:CA:28:EE:BE:F4:F6:F7:02:E4:7A:C9:C1:63:40
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d5:25:00:ce:12:c1:4e:e8:20:ab:d8:79:9a:9e:9d:0d:06:
8f:2a:7a:19:70:a9:33:44:f0:3c:0c:0c:d3:af:d6:9b:b6:9c:
1a:47:b9:f8:60:bd:a6:36:1d:9e:5a:a6:97:84:59:e5:6b:1c:
3f:04:5e:89:3b:45:04:f2:08:ec:38:a6:fb:02:85:18:f5:13:
47:cc:1d:5a:d9:1e:2e:aa:f6:2b:1e:15:3b:9a:15:e6:89:bb:
5a:bf:88:8f:59:e0:ae:5e:14:b1:12:f3:a8:e7:cd:b5:f4:50:
9a:57:ac:45:6c:fa:97:c9:97:e7:f2:4d:42:83:c8:57:b6:f5:
e2:ac:ba:18:88:3e:c8:eb:82:e2:2d:57:11:80:dc:d7:56:8b:
63:60:f8:db:65:3c:69:f0:1e:09:76:8d:44:f2:a6:17:12:6b:
23:e8:94:0e:c2:1d:68:8c:cd:d6:d1:a4:47:d2:e7:e8:48:2e:
38:ba:b4:07:64:bb:e4:a2:25:34:1f:b2:de:85:13:b4:0d:07:
86:11:96:bf:c9:af:06:f7:4a:4d:19:ca:50:da:1e:62:76:3f:
e9:d8:e7:c8:e6:05:bc:97:f0:5f:a2:27:7b:4d:26:50:98:28:
15:58:35:48:83:bd:9c:0e:f1:be:6e:9d:77:42:3b:96:f5:52:
13:e7:26:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 16:09:40 2026 by rpki-client