Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: H7aGyvSStprl4YhApSKY24KxiBEHvCY1ooaiw8w8rl8=
Subject key identifier: DE:8F:D7:4D:5A:8F:C4:95:2A:85:09:19:85:7C:12:8A:7C:C1:5C:72
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D8839919E64D2A33CAE610E7E435C080B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18BB
Signing time: Mon 13 Apr 2026 19:02:47 +0000
Manifest this update: Mon 13 Apr 2026 19:02:47 +0000
Manifest next update: Tue 14 Apr 2026 19:02:47 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: TZVXpRyc1ftAxguYD8ssIEyT9uDwxReCY462FrIjXKs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 Apr 2026 19:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:88:39:91:9e:64:d2:a3:3c:ae:61:0e:7e:43:5c:08:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 13 19:02:47 2026 GMT
Not After : Apr 14 19:02:47 2026 GMT
Subject: CN=de8fd74d5a8fc4952a850919857c128a7cc15c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:c3:8d:57:82:86:e9:32:2b:f4:c2:04:7b:
4f:c5:07:69:4b:43:d9:1e:b2:b1:70:62:8e:5b:b6:
45:24:19:2b:24:49:6a:42:b3:2d:58:ba:a8:9a:3f:
47:48:5d:7c:0a:0d:43:57:2b:ce:ba:43:5a:22:ec:
55:89:7e:16:f9:7e:f0:4b:df:57:60:0e:be:3e:88:
87:a2:a2:44:fe:fc:93:5a:c8:a2:71:99:04:89:32:
3a:eb:22:7f:8b:3a:d1:b2:58:2c:1a:b6:fc:3e:2d:
e0:da:99:55:42:17:11:d0:db:0e:79:f5:a9:1c:9f:
63:26:d3:8b:18:6a:d4:b7:ef:af:0e:3f:5d:8d:39:
b4:d5:bd:f1:95:c3:5f:b8:1f:28:7a:a1:f4:71:7c:
31:f8:5c:5e:f2:e9:2e:82:9b:ef:42:89:79:c1:05:
7e:c2:99:e0:be:3e:97:31:7c:e8:4a:4c:24:03:19:
06:42:5f:ec:a6:60:79:ec:a4:e8:53:ac:50:82:2a:
22:42:e9:6f:f1:81:c6:44:57:4c:f4:04:24:29:a2:
9a:94:69:ac:0b:90:c7:9d:b8:e9:2e:c3:e2:77:00:
79:38:97:c2:f2:2a:de:6d:0a:d8:1f:b3:8f:99:e9:
8a:1b:02:6c:74:a5:08:18:b1:9c:04:de:70:6f:02:
45:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8F:D7:4D:5A:8F:C4:95:2A:85:09:19:85:7C:12:8A:7C:C1:5C:72
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bd:96:cf:09:1d:14:3f:61:95:b3:59:21:00:98:08:c5:dd:
3c:77:e6:42:84:53:32:71:13:e3:cc:ad:7e:28:35:c0:26:d7:
c0:b1:01:14:c6:9e:bd:e4:37:3a:8f:90:41:56:19:76:1b:9f:
62:02:3e:11:97:41:16:76:a8:bb:22:c5:a9:ad:64:01:f6:ab:
7d:af:70:0c:36:4a:13:a5:ee:a8:35:c5:3d:7e:1e:dc:56:cd:
7b:fa:61:31:88:0d:d4:eb:94:64:5e:9d:57:18:c3:57:d1:97:
a3:1e:e5:bf:1b:99:54:ca:90:4f:40:b1:f1:6b:22:25:84:46:
8e:ea:b3:fb:a2:de:e7:15:01:11:23:54:96:75:fc:c5:10:bd:
e9:16:2b:5f:dc:7e:63:91:41:3d:2a:78:ad:15:49:16:d7:da:
7e:c3:1a:11:76:ee:34:2e:09:d1:e8:f8:17:29:17:ff:a2:37:
3d:1e:51:9f:d9:3f:1e:8c:55:11:42:8f:02:27:40:25:e2:6f:
4d:b0:93:4f:96:55:9c:34:4e:38:bb:18:69:4d:fb:9b:0e:b6:
27:95:f0:5c:58:b7:02:7a:63:23:52:00:02:09:db:d0:78:f0:
03:04:09:e0:6f:35:78:bc:76:b8:1c:b0:11:7c:fc:e6:e8:29:
9f:95:35:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 14 05:10:49 2026 by rpki-client