Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: T+TU5kdRez0Tui3AbhTWFATPdbwiBFwTh96zEzSyeLo=
Subject key identifier: 69:66:18:13:71:5E:2F:89:37:37:4F:3D:EA:73:2C:92:9D:5C:90:97
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EFE3C4C4F51D54FC2B36A157BDBBC2FAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 197D
Signing time: Thu 25 Jun 2026 10:03:44 +0000
Manifest this update: Thu 25 Jun 2026 10:03:44 +0000
Manifest next update: Fri 26 Jun 2026 10:03:44 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: JSQaE4W2YDKKpJ+O8BqQqgHaViuWexECEidQ9yntCAg=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 08:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fe:3c:4c:4f:51:d5:4f:c2:b3:6a:15:7b:db:bc:2f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 25 10:03:44 2026 GMT
Not After : Jun 26 10:03:44 2026 GMT
Subject: CN=69661813715e2f8937374f3dea732c929d5c9097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:a0:6a:3a:1c:ef:74:2d:d4:bf:87:2f:37:
dd:b9:d7:c0:4a:de:3f:19:5a:51:38:67:64:2b:85:
0f:22:83:6b:37:aa:1e:b8:71:f8:15:45:de:14:38:
d4:4f:81:11:7c:0c:51:e5:84:e6:c6:75:7d:d7:26:
7e:7b:79:36:dc:e7:5a:d7:62:30:40:e1:ca:2a:cb:
0d:35:13:e8:32:43:7b:0e:a5:46:1a:2e:e5:39:5d:
c9:f2:41:48:06:e3:a2:56:c8:42:03:7b:dd:3f:de:
4e:e9:98:e8:79:f7:de:99:04:c7:43:16:b4:d2:08:
0a:53:79:b1:8e:58:bc:a4:f4:b5:e1:34:ee:69:b8:
1f:c4:04:af:4a:61:e1:e0:d4:94:ce:82:82:4b:43:
0c:46:d2:64:36:9b:c1:f7:7c:88:2b:1b:6d:91:10:
13:63:65:e6:f2:2f:e8:7b:98:92:7e:71:45:00:37:
43:26:cc:dc:eb:e3:7a:40:6c:2c:a4:9d:bc:64:e5:
77:99:53:bd:b3:19:9c:9b:30:f1:bc:cf:9c:aa:e9:
ed:dd:d4:26:c1:5c:c3:5f:3f:66:65:a2:27:19:73:
50:85:85:66:a4:a9:90:c9:66:b7:94:e8:4d:47:e2:
e6:da:75:91:e9:0a:11:af:e0:72:ec:f8:b1:45:3a:
06:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:66:18:13:71:5E:2F:89:37:37:4F:3D:EA:73:2C:92:9D:5C:90:97
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:5b:91:c2:6b:96:65:21:a1:9b:61:b4:f4:8a:b4:76:15:2a:
65:9a:a4:29:ed:99:0b:81:e6:b8:71:19:81:cf:41:3b:eb:b9:
74:d9:d8:a6:21:ee:61:83:7b:df:68:0f:f3:ba:41:ff:11:01:
09:88:6e:7c:c3:6a:23:10:a7:13:d5:c8:a6:49:fc:05:eb:1a:
30:31:66:20:3c:e8:e6:dd:2a:78:d5:c2:34:dd:0a:89:fc:9b:
48:b9:41:0b:4e:e1:1f:f3:14:5f:84:7c:d2:3f:ab:b1:9a:06:
0b:17:88:ee:b2:d6:c0:1e:90:9b:ef:f5:7c:44:df:2c:1e:3e:
c4:ae:7a:1a:f2:f1:b0:97:62:e3:4c:93:87:e4:df:38:b3:ca:
7d:77:d4:e9:3a:0c:17:ca:cd:45:ec:dc:bd:1d:64:63:7f:d8:
c3:ca:fe:54:0d:19:3a:1b:a3:5f:db:52:c3:55:0f:a5:cf:8c:
8f:43:ee:03:49:2f:b5:b7:b3:82:28:75:94:4e:31:ac:ac:96:
f9:ab:4f:be:fd:36:a5:cf:65:19:01:55:f1:97:10:ab:b6:06:
77:42:25:9a:90:ab:67:14:fb:32:fd:b2:82:c3:2b:35:19:bb:
87:0a:b8:be:41:e3:38:0c:f9:19:08:ff:99:7c:26:80:fb:a6:
31:9d:77:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 17:31:30 2026 by rpki-client