Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: RBgtmjJHHMGbUJPEF5fbTOh8s4XcwQDgBawFWZHTZpw=
Subject key identifier: 28:C4:02:29:F4:45:8B:58:2A:1B:89:61:EF:42:78:C1:9C:E4:C4:73
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E6E07DE77F5384189D84CBD598647ADDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1932
Signing time: Thu 28 May 2026 10:01:09 +0000
Manifest this update: Thu 28 May 2026 10:01:09 +0000
Manifest next update: Fri 29 May 2026 10:01:09 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: e4ynSGx2adEEIIUuxFNoW10CmJnifrUn8hyD5ojIh7g=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 29 May 2026 10:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6e:07:de:77:f5:38:41:89:d8:4c:bd:59:86:47:ad:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 28 10:01:09 2026 GMT
Not After : May 29 10:01:09 2026 GMT
Subject: CN=28c40229f4458b582a1b8961ef4278c19ce4c473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5a:bb:73:3c:39:dc:62:e6:aa:4b:72:16:9d:
07:9f:bc:78:77:5b:4d:1e:97:6d:a0:ac:ab:ae:25:
8e:a1:a0:80:e4:df:58:48:b8:6a:4b:b8:3e:e8:32:
b1:05:7c:d6:e5:e3:97:af:18:1f:b9:ab:3d:3a:37:
4c:b4:15:3b:35:1d:ee:0a:7e:23:0c:29:bc:ec:5b:
37:cc:4a:60:65:af:43:86:21:86:01:5b:55:a8:1b:
cf:b5:32:6e:fe:f1:a9:20:75:72:c4:eb:ce:8a:8c:
24:d2:b6:33:c0:1c:a3:2a:b5:3d:be:72:b1:ac:2a:
8c:25:54:85:c6:ba:5b:98:6e:46:db:8a:cb:87:a5:
d5:e0:53:a3:ba:ba:c1:ba:d7:01:c5:1a:6f:39:90:
4a:19:2a:d9:9a:49:f0:7d:2c:0f:36:13:74:6b:e3:
ae:67:c6:65:57:7f:9a:67:26:72:8a:96:6a:7b:4c:
bc:cb:cd:a4:97:4d:0d:bf:7a:84:fd:63:1d:0f:d0:
b7:a9:f6:99:7a:61:35:b1:8d:e3:51:3a:07:f9:18:
eb:00:a2:71:99:ed:0c:87:56:55:6e:61:75:f3:e3:
25:1a:cb:72:7d:d3:79:04:01:d8:a0:7f:c9:c0:83:
a0:ae:80:b5:24:a3:a6:91:b6:ce:d1:1b:c8:28:1f:
4f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:C4:02:29:F4:45:8B:58:2A:1B:89:61:EF:42:78:C1:9C:E4:C4:73
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:fe:34:11:52:61:f9:65:29:48:a3:19:6d:35:55:2f:65:c8:
38:0c:83:f2:1d:5e:9f:19:0d:d1:1f:66:bd:61:f5:ce:34:af:
ca:9e:15:75:b6:91:02:73:a4:54:75:2c:fc:36:a8:94:87:d9:
d5:45:69:7b:0d:4d:fc:97:18:63:1e:da:60:cd:8e:9d:25:56:
3d:09:60:2f:77:da:af:9e:d1:7c:79:4a:75:38:65:63:86:44:
7a:70:95:3f:76:3c:45:69:17:5f:c3:87:e6:81:35:c6:c9:5b:
f0:63:58:d3:f4:2d:91:41:b2:3a:8c:15:03:0c:e0:7a:5b:00:
3f:e9:ae:e4:a7:9c:69:03:02:36:b9:67:f1:40:20:0b:5b:21:
96:bf:85:29:64:68:6a:66:eb:55:41:40:95:fc:26:a5:88:ff:
73:3c:5d:ff:b5:23:13:67:25:24:90:a4:1a:a0:ec:4d:7b:c4:
f3:d5:89:1a:f0:00:de:35:26:91:16:19:89:4d:77:bb:3f:72:
90:e5:35:64:10:15:fa:e0:32:9f:d7:43:d9:ad:e4:5c:af:48:
f2:82:d1:b9:9e:34:4a:14:3f:97:3a:a3:61:cf:2a:e5:3a:59:
0b:ee:e9:c8:6d:48:1f:48:a8:e7:63:43:87:ab:e1:68:d0:20:
62:0a:a8:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5uB9539ThBidhMvVmGR63bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNTI4MTAwMTA5WhcNMjYwNTI5MTAwMTA5WjAzMTEwLwYDVQQD
EygyOGM0MDIyOWY0NDU4YjU4MmExYjg5NjFlZjQyNzhjMTljZTRjNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFq7czw53GLmqktyFp0Hn7x4d1tN
HpdtoKyrriWOoaCA5N9YSLhqS7g+6DKxBXzW5eOXrxgfuas9OjdMtBU7NR3uCn4j
DCm87Fs3zEpgZa9DhiGGAVtVqBvPtTJu/vGpIHVyxOvOiowk0rYzwByjKrU9vnKx
rCqMJVSFxrpbmG5G24rLh6XV4FOjurrButcBxRpvOZBKGSrZmknwfSwPNhN0a+Ou
Z8ZlV3+aZyZyipZqe0y8y82kl00Nv3qE/WMdD9C3qfaZemE1sY3jUToH+RjrAKJx
me0Mh1ZVbmF18+MlGstyfdN5BAHYoH/JwIOgroC1JKOmkbbO0RvIKB9P7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCjEAin0RYtYKhuJYe9CeMGc5MRzMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjP40EVJh
+WUpSKMZbTVVL2XIOAyD8h1enxkN0R9mvWH1zjSvyp4VdbaRAnOkVHUs/DaolIfZ
1UVpew1N/JcYYx7aYM2OnSVWPQlgL3far57RfHlKdThlY4ZEenCVP3Y8RWkXX8OH
5oE1xslb8GNY0/QtkUGyOowVAwzgelsAP+mu5KecaQMCNrln8UAgC1shlr+FKWRo
ambrVUFAlfwmpYj/czxd/7UjE2clJJCkGqDsTXvE89WJGvAA3jUmkRYZiU13uz9y
kOU1ZBAV+uAyn9dD2a3kXK9I8oLRuZ40ShQ/lzqjYc8q5TpZC+7pyG1IH0io52ND
h6vhaNAgYgqoNQ==
-----END CERTIFICATE-----
Generated at Thu May 28 20:34:40 2026 by rpki-client