Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: lnI0lD/C+57WKM7v57+cLyHuF7lkfx4BKL85j8WcDxQ=
Subject key identifier: 2B:04:E8:6B:EF:A8:73:A3:C8:01:3B:90:6C:85:34:25:F7:22:2B:BC
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E94A7077623F2C0ACC6FD4C52ED3BC846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1946
Signing time: Thu 04 Jun 2026 22:00:34 +0000
Manifest this update: Thu 04 Jun 2026 22:00:34 +0000
Manifest next update: Fri 05 Jun 2026 22:00:34 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 6yoZVXhDgkq9sBXyl5ILveuaka/epU1W/QCZGk0GzD0=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 22:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:94:a7:07:76:23:f2:c0:ac:c6:fd:4c:52:ed:3b:c8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 4 22:00:34 2026 GMT
Not After : Jun 5 22:00:34 2026 GMT
Subject: CN=2b04e86befa873a3c8013b906c853425f7222bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e5:3e:5a:b0:d2:80:a3:46:9c:e6:48:db:be:
a3:5b:49:4c:aa:18:0b:40:06:8a:38:78:46:6f:0c:
17:33:4c:fd:a5:9e:bd:a3:64:7b:3a:ce:af:b7:59:
ad:fc:8a:e1:84:93:9c:d8:91:a2:fa:02:bf:2b:2e:
b6:09:14:ff:1a:95:45:56:9e:79:03:d3:04:99:f4:
8e:b4:d9:14:e3:3e:97:7d:2e:34:18:5d:f2:eb:ec:
67:03:5f:d7:c0:fb:4f:09:29:de:4a:12:87:bc:7b:
2e:e7:2b:33:08:2e:7e:f1:cc:4f:41:01:9d:78:df:
07:33:dd:79:ea:6b:96:03:78:1e:da:27:f6:a4:34:
be:31:ed:0f:47:ba:44:05:a9:6e:65:6b:12:07:45:
f7:03:98:cb:05:85:4f:07:8e:47:e6:9b:4a:13:f4:
6f:f3:15:aa:92:91:c0:ce:2a:e0:53:08:a0:55:8a:
66:43:20:0d:2d:7d:1b:b7:86:2a:54:70:fc:e8:89:
fd:30:a0:ec:bd:06:87:ca:66:3b:7c:1e:2f:00:99:
2e:24:86:53:aa:7a:a0:c2:4c:1e:aa:8b:5c:36:e0:
5b:b9:88:d9:a2:34:f6:d2:c6:f9:e2:71:0d:30:f6:
1a:97:a6:92:9d:3d:c5:0b:dd:60:54:8e:bc:a6:e6:
ae:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:04:E8:6B:EF:A8:73:A3:C8:01:3B:90:6C:85:34:25:F7:22:2B:BC
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:43:25:c6:4e:bb:db:94:3e:33:93:be:ac:8d:45:f0:28:68:
49:10:50:a6:b9:d3:1c:08:2b:e2:9d:72:92:80:7a:6a:09:16:
17:67:d4:a8:67:bc:b9:d1:56:6f:f7:da:0d:6d:3e:7d:56:a3:
fa:d1:33:20:b9:03:46:ca:40:eb:ec:70:9e:d3:c0:cf:35:4d:
aa:54:35:ea:d2:d2:9d:b7:36:c6:37:16:99:7d:48:eb:52:24:
f0:52:fd:64:5e:49:95:56:46:4d:e2:4a:d1:f2:4a:c2:cd:dc:
cc:c2:c9:ec:98:49:cc:95:b0:30:41:f3:f3:bf:59:2e:93:cc:
22:d5:39:bd:4a:b7:bc:87:a6:66:df:e6:e6:d4:b3:90:d9:a1:
6a:f6:bc:8a:bd:22:d1:bf:6b:b1:ba:e5:95:06:c1:bf:1b:0a:
f1:44:30:16:0b:f7:84:cd:57:f5:f6:4d:1a:6f:66:67:37:73:
79:80:6d:79:78:52:92:e6:4b:f9:d0:95:90:6c:54:8b:12:f7:
bb:8c:cd:dc:98:c2:fc:f9:ad:b4:0d:3c:76:73:36:cb:24:55:
c8:64:6e:3e:81:e3:e9:03:23:20:d5:35:6c:71:28:74:7a:15:
2a:fe:0f:f8:98:5e:87:e4:a7:6d:24:09:12:cc:08:9e:d2:93:
95:83:a2:72
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6Upwd2I/LArMb9TFLtO8hGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNjA0MjIwMDM0WhcNMjYwNjA1MjIwMDM0WjAzMTEwLwYDVQQD
EygyYjA0ZTg2YmVmYTg3M2EzYzgwMTNiOTA2Yzg1MzQyNWY3MjIyYmJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOU+WrDSgKNGnOZI276jW0lMqhgL
QAaKOHhGbwwXM0z9pZ69o2R7Os6vt1mt/IrhhJOc2JGi+gK/Ky62CRT/GpVFVp55
A9MEmfSOtNkU4z6XfS40GF3y6+xnA1/XwPtPCSneShKHvHsu5yszCC5+8cxPQQGd
eN8HM9156muWA3ge2if2pDS+Me0PR7pEBaluZWsSB0X3A5jLBYVPB45H5ptKE/Rv
8xWqkpHAzirgUwigVYpmQyANLX0bt4YqVHD86In9MKDsvQaHymY7fB4vAJkuJIZT
qnqgwkweqotcNuBbuYjZojT20sb54nENMPYal6aSnT3FC91gVI68puauOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCsE6GvvqHOjyAE7kGyFNCX3Iiu8MB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACEMlxk67
25Q+M5O+rI1F8ChoSRBQprnTHAgr4p1ykoB6agkWF2fUqGe8udFWb/faDW0+fVaj
+tEzILkDRspA6+xwntPAzzVNqlQ16tLSnbc2xjcWmX1I61Ik8FL9ZF5JlVZGTeJK
0fJKws3czMLJ7JhJzJWwMEHz879ZLpPMItU5vUq3vIemZt/m5tSzkNmhava8ir0i
0b9rsbrllQbBvxsK8UQwFgv3hM1X9fZNGm9mZzdzeYBteXhSkuZL+dCVkGxUixL3
u4zN3JjC/PmttA08dnM2yyRVyGRuPoHj6QMjINU1bHEodHoVKv4P+Jheh+SnbSQJ
EswIntKTlYOicg==
-----END CERTIFICATE-----
Generated at Fri Jun 5 03:21:06 2026 by rpki-client