Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: SsewTlt0KKJsjZK2fgxG/qITodWAcPC779ZFC3jk/oc=
Subject key identifier: D2:BF:D2:9D:32:60:D7:CB:CE:54:DC:B9:0D:BA:0B:51:08:58:04:CF
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CC14E25E1E144FC8630FA39F60C7E7156
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1853
Signing time: Fri 06 Mar 2026 04:00:50 +0000
Manifest this update: Fri 06 Mar 2026 04:00:50 +0000
Manifest next update: Sat 07 Mar 2026 04:00:50 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: Y32+JJaCAERKvQXE3Fw3r3fDnA+pupXXeKcExbP4Fb4=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c1:4e:25:e1:e1:44:fc:86:30:fa:39:f6:0c:7e:71:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 6 04:00:50 2026 GMT
Not After : Mar 7 04:00:50 2026 GMT
Subject: CN=d2bfd29d3260d7cbce54dcb90dba0b51085804cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9c:1a:8d:76:62:5f:62:03:f2:d5:a7:14:cb:
5d:75:60:ea:56:cd:06:4a:b9:b1:fd:d6:9a:4d:f7:
75:7f:90:85:cd:a3:36:5d:58:e5:3e:50:1e:8b:38:
cf:ab:30:72:cc:71:53:ed:1e:a1:1c:df:62:e7:31:
ec:2c:fd:cf:23:07:b9:d0:27:91:ad:4a:31:f5:b9:
07:28:5d:e9:a6:f5:a3:ac:79:ed:0b:e4:ea:17:8b:
c1:35:26:d2:69:a4:ba:1f:b8:78:f2:f7:f2:36:79:
33:1d:e0:23:81:72:b9:f8:8b:95:6e:58:96:b0:b8:
ba:3a:1d:22:1d:4f:b1:0e:c4:fd:27:bf:d6:e1:32:
5a:08:7e:4e:5d:71:40:3a:dc:17:d8:16:1d:2c:17:
da:07:9a:9f:35:18:be:90:0e:24:ac:9f:76:a4:7a:
f3:96:74:91:35:b3:35:54:f3:c8:3a:91:f4:ad:2b:
2d:49:18:42:61:90:6f:9f:9f:80:5a:34:69:bf:d2:
a2:43:25:11:df:a3:5a:ed:73:b3:b2:1c:69:0b:32:
cd:62:58:5a:39:20:fa:07:23:e7:d2:72:13:59:f9:
8c:a1:8d:d0:23:11:8d:7b:b0:bb:62:1e:58:59:b6:
c1:ae:9a:b5:03:cd:a1:98:7e:0d:a8:ae:f9:92:84:
ac:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:BF:D2:9D:32:60:D7:CB:CE:54:DC:B9:0D:BA:0B:51:08:58:04:CF
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:26:ab:40:2a:3f:f3:4b:57:49:0d:81:0d:90:a8:94:03:85:
7c:52:a5:51:2c:4d:ae:68:67:55:cf:38:71:23:ff:08:04:17:
34:d7:26:55:e4:20:50:86:c3:c7:9d:3e:b8:92:b1:7a:a2:e8:
ce:22:e8:ac:15:f3:f6:06:d0:77:68:cd:06:77:cc:ee:30:11:
78:28:f8:08:78:ed:6b:eb:0c:bd:61:b9:0e:90:15:1f:75:29:
bc:0f:e0:7b:29:16:8a:70:9f:4e:bf:a0:5a:1d:1c:19:97:7e:
5a:8e:9f:2e:03:a4:fe:9f:77:3e:0d:f8:76:62:66:74:0c:26:
05:00:3c:5e:2a:e7:a2:0b:23:4d:8f:86:64:68:6e:31:18:1a:
f5:f5:4d:45:01:db:1a:4c:aa:09:57:68:dd:ba:95:07:14:dd:
32:42:c6:d1:55:a5:07:bd:3a:98:b7:25:77:17:c6:d1:2e:2a:
74:06:34:2d:98:9d:dd:ff:48:92:c5:be:40:16:bc:54:29:47:
62:7e:47:de:3a:a9:24:37:d2:0f:17:d2:eb:79:f0:96:bf:1b:
7e:ad:4a:33:5c:d0:ba:d7:f3:d3:d1:f2:e8:93:e3:09:ae:97:
1d:43:c5:8c:77:3c:71:b6:8b:3c:a3:b6:b3:6d:e4:84:a6:6d:
33:8b:fc:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 08:09:50 2026 by rpki-client