Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: c2wECesGCN5XcTnVvaSgBmA1OGV9TEdmIzy5VGDOjOs=
Subject key identifier: E5:C0:35:15:D6:E4:62:D7:1D:85:7A:8C:01:58:3F:5B:EC:4A:2A:EB
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D7AB312D5B1A6352C48E2F9C54AD0EECB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18B4
Signing time: Sat 11 Apr 2026 04:00:49 +0000
Manifest this update: Sat 11 Apr 2026 04:00:49 +0000
Manifest next update: Sun 12 Apr 2026 04:00:49 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: Jzt0aOo6SDwMaxOL55QuSmQl+fqhK6jDYFqjwLrt8wE=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Apr 2026 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:7a:b3:12:d5:b1:a6:35:2c:48:e2:f9:c5:4a:d0:ee:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 11 04:00:49 2026 GMT
Not After : Apr 12 04:00:49 2026 GMT
Subject: CN=e5c03515d6e462d71d857a8c01583f5bec4a2aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:31:1e:9d:42:35:0d:c2:64:e0:fd:6e:b1:a4:
f4:45:b2:a6:4d:f9:84:b4:51:87:ef:bc:58:f5:de:
38:84:f0:19:fc:b1:c1:7c:25:02:e7:ac:62:54:e8:
12:6f:73:a7:1d:be:7b:da:82:8c:0f:71:84:d6:78:
4e:33:8a:78:5a:d8:78:ec:43:e8:96:10:dc:63:2f:
e6:87:f5:0f:73:bc:4b:3a:ba:b3:c7:ef:05:cd:38:
8e:9b:56:33:73:fc:d5:0a:f5:16:20:a2:b6:ac:6a:
6d:70:fe:b1:7c:37:46:8c:4c:6e:41:52:c2:77:76:
df:5d:2d:7c:21:ef:9a:89:39:1f:3d:8e:48:00:41:
90:a3:34:e0:33:06:50:a7:e1:50:ca:02:9e:cf:20:
97:ef:97:28:c1:53:78:6b:03:d3:1d:d3:e9:e2:fd:
ef:dd:10:4c:90:3a:fd:dc:6a:7f:e1:47:ab:6f:b7:
d3:72:89:b0:be:5c:0a:d8:4b:96:15:17:61:2d:d5:
14:bb:32:32:6d:a8:1d:9a:7d:5b:11:21:31:ef:7d:
cc:70:97:47:3d:b8:6e:9d:39:14:94:21:47:cf:16:
05:40:1b:97:78:2d:aa:fe:44:39:12:b7:98:37:98:
a6:18:aa:00:cb:df:1c:3f:75:e0:f0:d7:82:4d:8e:
38:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C0:35:15:D6:E4:62:D7:1D:85:7A:8C:01:58:3F:5B:EC:4A:2A:EB
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:7d:cb:d7:2c:00:8f:6d:be:0c:a8:b1:75:40:26:4c:ac:eb:
91:03:0a:cb:e4:07:76:eb:a0:1e:f2:d0:e6:71:c9:3d:0e:14:
b9:08:4a:f1:ba:4e:c1:a4:c4:09:d1:3e:9e:4c:70:02:1f:0c:
5a:80:e8:ba:73:80:69:cd:a6:07:97:b8:00:66:09:e7:99:16:
e7:dc:ab:1b:08:ca:36:ba:42:7f:60:85:8a:bd:e5:64:57:60:
cc:08:63:4d:54:4b:12:cc:97:c3:cd:f0:ce:2a:03:7f:b2:3c:
0c:bf:31:c3:8d:b0:ae:b0:ab:f9:a9:9a:a1:95:a1:21:af:b4:
a0:fd:9a:dc:77:fe:01:ae:78:76:61:84:79:9e:10:49:8a:52:
21:f3:d4:dd:1e:60:d1:dc:55:d4:e9:70:82:09:1b:6c:39:ce:
54:7a:36:8a:0b:d0:49:76:63:d0:c9:d5:b9:ac:7c:f5:b4:27:
f1:52:22:17:c9:3c:cc:bb:04:3e:94:92:ef:01:61:14:d8:a1:
bd:ed:85:aa:bc:a2:a5:c6:32:b9:df:65:0b:6b:06:bf:0b:d6:
70:33:2a:03:29:17:58:47:68:06:46:4b:5e:c4:e2:07:18:93:
8d:6e:20:e5:16:82:8b:b3:91:49:05:2b:fb:90:53:b4:b0:38:
56:82:61:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 11 13:41:38 2026 by rpki-client