Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 76QfIMZkdqKFlSlC+sbyAuhYS965foa7/1KCeT8m19E=
Subject key identifier: 72:6C:C8:93:2E:7F:D9:72:00:DB:41:76:B7:17:C1:60:F4:74:8A:72
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EE3D55636B42AE36BA1BCE8100013884F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 196F
Signing time: Sat 20 Jun 2026 07:01:09 +0000
Manifest this update: Sat 20 Jun 2026 07:01:09 +0000
Manifest next update: Sun 21 Jun 2026 07:01:09 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: LS9LZg3WqnWtZRzWfghuHW64n6PDzsNNVRcScQc3vIE=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e3:d5:56:36:b4:2a:e3:6b:a1:bc:e8:10:00:13:88:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 20 07:01:09 2026 GMT
Not After : Jun 21 07:01:09 2026 GMT
Subject: CN=726cc8932e7fd97200db4176b717c160f4748a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c6:df:bb:cb:c9:3a:0b:11:0c:d5:e3:e2:87:
7b:aa:b7:4e:a7:45:f4:b4:48:68:91:a6:16:d4:d3:
95:93:f9:32:4c:14:7b:63:d7:08:df:97:31:35:21:
c0:b3:83:7d:dc:fb:26:79:84:59:c3:80:e7:ae:45:
fa:16:f0:46:c4:d4:e4:56:b8:13:ad:56:84:a3:c3:
3e:17:3c:c5:e4:d2:7b:a8:47:9e:9c:66:2c:78:da:
8b:81:12:b8:57:18:a5:61:ec:bc:e6:4b:49:d9:57:
53:3f:15:4c:e0:c7:03:04:3d:a4:3c:b2:09:cc:45:
1b:47:e3:4c:a6:27:21:7d:d7:c0:a6:28:de:6c:9b:
30:5f:ad:58:78:fc:e0:f1:05:61:dc:97:84:62:b0:
7e:55:be:5b:6e:a4:4d:99:88:0d:13:eb:ad:fa:e9:
d7:9a:ad:f3:03:e9:db:2a:86:79:75:cb:ec:d3:cc:
dd:1b:29:25:1f:92:78:c0:0f:99:5f:f6:0d:a0:bb:
d3:3f:76:eb:c5:5e:3d:9d:2b:91:56:52:69:74:30:
5f:f6:8f:c4:8d:47:13:86:c9:e6:d2:db:ae:1d:18:
14:99:92:21:39:7a:06:73:d9:3b:42:16:3b:8b:b4:
52:3b:c3:03:fd:20:e4:6d:a0:33:89:6c:0e:25:88:
5e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:6C:C8:93:2E:7F:D9:72:00:DB:41:76:B7:17:C1:60:F4:74:8A:72
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:58:d8:73:77:dd:04:95:4f:c9:22:ca:2f:6b:cf:c7:f0:14:
e6:f9:50:c3:70:de:c4:31:29:5e:34:07:2c:33:31:df:27:4e:
4f:53:19:b0:a9:a8:f9:6b:73:aa:f9:4b:f1:74:74:98:a7:45:
14:40:83:ac:ae:89:ad:ba:d3:c2:de:37:c3:87:78:f4:26:57:
11:0c:c0:6d:8e:cb:12:bc:b7:80:53:ee:90:3d:15:01:9b:f7:
e9:ef:71:f7:69:52:82:f1:cc:98:5c:c1:f3:64:20:de:4b:7e:
5b:e3:d5:27:cc:5b:e6:18:0e:55:97:78:e7:4d:73:56:13:e9:
61:80:18:ea:1c:37:22:a2:b9:53:77:d9:b3:7b:67:88:cb:4e:
b3:1e:8b:25:58:cd:ce:e3:3a:b5:cf:30:ce:f2:b4:76:32:f2:
8b:36:28:40:4d:8f:95:ca:c1:ce:8c:30:b2:c5:52:7e:3a:26:
84:b0:2e:39:2b:4a:ef:89:29:38:fe:47:e6:91:42:92:a4:d3:
83:70:98:aa:01:04:65:71:ec:14:98:91:95:d6:71:1a:b3:ed:
88:7d:88:02:aa:fa:84:1d:65:f8:e3:85:1f:c1:66:c3:b7:9e:
1a:1c:94:c9:19:9e:a0:25:61:91:9e:d4:ab:4d:39:12:0a:a5:
8e:9e:78:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 15:03:30 2026 by rpki-client