
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: B8va4SNEnPRzfcOoeZj332p8BkzR8sxZS/foLGYzKmc=
Subject key identifier: 31:98:72:70:5C:61:FE:14:0C:7C:B4:3E:09:05:2B:20:F1:12:0E:E7
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F344D22D96C1AF2F98A7946B108693D99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1999
Signing time: Sun 05 Jul 2026 22:01:38 +0000
Manifest this update: Sun 05 Jul 2026 22:01:38 +0000
Manifest next update: Mon 06 Jul 2026 22:01:38 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: ehAU9bQqM29mzt27cvZmQ6/l+SRjVjxp73Re4VTu13A=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 Jul 2026 17:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:34:4d:22:d9:6c:1a:f2:f9:8a:79:46:b1:08:69:3d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 5 22:01:38 2026 GMT
Not After : Jul 6 22:01:38 2026 GMT
Subject: CN=319872705c61fe140c7cb43e09052b20f1120ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1b:9d:9e:53:34:8b:8e:f9:79:fb:e4:c6:8e:
c4:d3:c7:5a:d6:db:86:e8:66:6f:69:db:2c:cd:f0:
84:9b:3d:5a:a0:dc:19:18:21:e1:15:60:b7:d0:cc:
28:fc:96:69:64:63:7a:e3:07:82:cc:66:64:68:f7:
9f:b5:ce:6f:73:65:7e:3c:a1:55:72:3f:3f:cb:77:
8b:0f:24:db:11:e5:a9:a4:bd:00:be:18:1b:8e:03:
99:97:ad:4b:dd:b5:f5:b2:41:56:ac:c5:15:e2:93:
37:7d:8d:bb:52:a1:73:5d:fb:6a:0f:fe:02:06:16:
2d:94:b7:7a:02:7c:c3:d6:fb:79:83:b1:2e:8e:b3:
e6:8e:c2:a0:53:c4:02:2f:93:a8:c1:75:e8:ba:6f:
a3:13:d2:97:f7:9c:62:65:fa:6f:79:cf:ce:c1:06:
a3:ba:ce:6f:ba:b3:25:54:67:d9:f3:38:df:e2:6b:
a5:30:17:55:ec:fd:e2:f6:4f:7c:e0:76:da:e2:35:
bc:ef:24:89:df:d4:7c:1c:95:47:4b:97:f7:25:09:
ed:93:0a:08:09:2f:fa:e0:5c:40:73:d4:ca:7c:50:
27:21:f8:e6:30:a3:fd:27:64:02:e0:d9:f4:20:2a:
30:43:5c:a6:6e:bb:cf:be:f9:5a:e2:ae:eb:2f:06:
87:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:98:72:70:5C:61:FE:14:0C:7C:B4:3E:09:05:2B:20:F1:12:0E:E7
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:4d:d9:2c:e0:88:fa:88:e0:e0:41:15:c1:f3:5e:3e:26:88:
93:fe:ee:3c:8e:26:1a:cf:2f:15:6b:3d:fb:6b:72:78:c6:72:
75:dc:86:5d:c9:0b:82:79:5a:60:99:83:7d:54:3b:74:52:db:
c6:6b:73:ef:70:a8:3d:44:8b:b1:a4:1e:91:1d:82:6d:3c:41:
df:fe:9f:80:da:84:b2:1e:86:83:d5:e6:4e:e9:91:5a:ca:da:
f6:5e:23:56:b6:f5:4c:a4:47:0b:43:a1:23:15:0f:b0:35:7f:
d8:62:e3:c0:13:ec:db:d2:c3:13:81:80:25:5e:aa:fc:d4:f6:
02:60:14:a2:90:a9:aa:62:50:25:3c:1d:22:0a:1a:a3:d7:8e:
2b:11:5c:47:a1:17:33:23:ff:67:10:75:1d:36:22:c4:fa:98:
73:bf:ea:db:bf:3b:0c:6d:a3:d8:83:6a:45:d1:ff:27:c8:93:
cc:b3:40:f4:bf:3d:ec:7e:80:f7:01:49:bb:b7:13:fb:21:08:
23:e1:29:b5:38:39:fc:d6:93:40:b6:e1:ca:f7:4a:70:64:8a:
c1:c3:ce:86:09:90:b1:f8:d2:e7:93:74:8c:a7:5f:23:ab:97:
32:ad:df:04:47:aa:c8:25:ca:ac:77:2a:87:df:50:34:40:7a:
b6:ea:b8:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 00:48:18 2026 by rpki-client