
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 5DArFYiTuf42dbM33tkZj7EplHCFkMRvmh806z31lNc=
Subject key identifier: 21:16:EA:B6:D1:35:3E:95:BB:3F:F0:5E:3E:42:94:BF:91:A4:9F:C1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F22EBA88EEFEA6A0A8F249371CD037B4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1990
Signing time: Thu 02 Jul 2026 13:01:37 +0000
Manifest this update: Thu 02 Jul 2026 13:01:37 +0000
Manifest next update: Fri 03 Jul 2026 13:01:37 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: bfUPkVPQTYD40c0TXk6URfRytR5OPe4zHM8XMPN/XXQ=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 Jul 2026 13:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:22:eb:a8:8e:ef:ea:6a:0a:8f:24:93:71:cd:03:7b:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 2 13:01:37 2026 GMT
Not After : Jul 3 13:01:37 2026 GMT
Subject: CN=2116eab6d1353e95bb3ff05e3e4294bf91a49fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:32:19:0c:be:b1:d6:eb:2b:d5:8e:88:79:0a:
40:d3:bb:5d:b0:ac:d1:7b:b8:48:cd:ed:21:88:29:
2b:70:99:bf:05:7f:70:2d:d9:32:72:e3:f1:6b:1a:
1a:ae:37:98:58:bf:3f:9e:0e:b7:d5:6e:44:d3:da:
1f:40:8f:b8:f0:a9:c5:52:fc:db:31:9f:0d:d0:18:
a0:7c:ad:57:f5:0c:e3:0c:7e:19:0d:eb:70:1e:26:
26:99:eb:67:9a:1f:31:d4:67:7f:e7:c0:74:29:80:
ff:fe:09:18:c9:4a:4e:aa:68:18:29:24:ab:24:ca:
32:17:73:82:b7:85:af:f1:fc:32:e5:03:32:2f:c9:
22:7b:c5:cf:37:ed:26:0f:f2:6e:d0:09:17:70:79:
8b:44:f3:35:8f:39:29:35:f6:61:89:61:d1:89:0a:
9c:14:d6:a1:8f:8b:44:4b:f7:06:6e:df:b1:93:74:
56:82:b9:7c:02:de:3f:50:34:22:84:80:be:55:41:
5f:d4:7a:89:7b:08:be:ec:24:b6:c4:ca:99:b8:fe:
80:a1:b3:1a:99:12:5f:99:0d:c0:f2:b3:b8:90:25:
a5:25:88:b2:38:c5:8a:0b:01:c6:06:99:cd:f8:6b:
05:5a:bf:d8:af:5c:9f:f5:bd:36:7a:ca:fd:4e:48:
44:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:16:EA:B6:D1:35:3E:95:BB:3F:F0:5E:3E:42:94:BF:91:A4:9F:C1
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:73:f0:6a:b7:44:86:ba:1b:ab:a2:90:8b:da:4d:e9:5a:49:
06:1e:13:66:7f:47:dd:cd:fc:52:fc:91:52:ff:e5:c5:49:dc:
d9:78:0d:28:67:be:74:d9:07:9d:c9:3a:47:33:5a:86:b1:f4:
64:54:b7:60:31:5d:a6:10:ae:02:2a:9c:76:20:c6:f2:ec:95:
06:d4:1e:d7:37:4d:7c:19:97:d7:7c:ad:95:7c:a6:85:b2:4a:
79:fe:9f:b9:5c:5b:10:d1:0e:cd:24:de:5a:4b:c5:c8:4f:fb:
50:e4:67:5b:86:4e:9c:03:06:cb:8d:1b:0a:c9:32:e2:f0:7e:
0b:fe:1e:e3:eb:79:b9:95:66:79:7c:0a:91:23:20:24:83:9c:
d5:77:4c:35:36:61:49:02:65:47:6a:11:8d:b4:f7:d9:24:d7:
c1:83:45:d4:74:db:24:b6:61:8a:f3:32:84:86:b0:df:38:29:
8f:b9:65:98:99:14:e6:8d:d3:94:36:a3:c2:cf:f0:14:9b:dc:
45:74:7d:db:36:bf:4b:61:f6:30:bc:47:4e:e3:f1:ec:22:5e:
45:fa:91:34:70:24:1c:94:ec:f1:e9:fb:2b:8b:dd:c4:b4:44:
b0:15:45:4e:94:9e:05:29:c6:4e:7d:79:3c:08:c0:81:59:d6:
2f:20:28:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8i66iO7+pqCo8kk3HNA3tNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNzAyMTMwMTM3WhcNMjYwNzAzMTMwMTM3WjAzMTEwLwYDVQQD
EygyMTE2ZWFiNmQxMzUzZTk1YmIzZmYwNWUzZTQyOTRiZjkxYTQ5ZmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxTIZDL6x1usr1Y6IeQpA07tdsKzR
e7hIze0hiCkrcJm/BX9wLdkycuPxaxoarjeYWL8/ng631W5E09ofQI+48KnFUvzb
MZ8N0BigfK1X9QzjDH4ZDetwHiYmmetnmh8x1Gd/58B0KYD//gkYyUpOqmgYKSSr
JMoyF3OCt4Wv8fwy5QMyL8kie8XPN+0mD/Ju0AkXcHmLRPM1jzkpNfZhiWHRiQqc
FNahj4tES/cGbt+xk3RWgrl8At4/UDQihIC+VUFf1HqJewi+7CS2xMqZuP6AobMa
mRJfmQ3A8rO4kCWlJYiyOMWKCwHGBpnN+GsFWr/Yr1yf9b02esr9TkhEEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCEW6rbRNT6Vuz/wXj5ClL+RpJ/BMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt3PwardE
hrobq6KQi9pN6VpJBh4TZn9H3c38UvyRUv/lxUnc2XgNKGe+dNkHnck6RzNahrH0
ZFS3YDFdphCuAiqcdiDG8uyVBtQe1zdNfBmX13ytlXymhbJKef6fuVxbENEOzSTe
WkvFyE/7UORnW4ZOnAMGy40bCsky4vB+C/4e4+t5uZVmeXwKkSMgJIOc1XdMNTZh
SQJlR2oRjbT32STXwYNF1HTbJLZhivMyhIaw3zgpj7llmJkU5o3TlDajws/wFJvc
RXR92za/S2H2MLxHTuPx7CJeRfqRNHAkHJTs8en7K4vdxLREsBVFTpSeBSnGTn15
PAjAgVnWLyAotQ==
-----END CERTIFICATE-----
Generated at Thu Jul 2 21:31:24 2026 by rpki-client