Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: fzXubAEq1cD5wFkO3AfvnXS1Re3jQdVuhCFDUF+CPuk=
Subject key identifier: 42:41:AF:D1:CE:48:B6:D7:00:2B:86:A7:5F:3C:76:7B:5F:3E:EF:6A
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EA9E5AA19546F283F56EA395A0A41F5B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1951
Signing time: Tue 09 Jun 2026 01:01:01 +0000
Manifest this update: Tue 09 Jun 2026 01:01:01 +0000
Manifest next update: Wed 10 Jun 2026 01:01:01 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: MdQjiyeKX8TUffCjTNja+Svukc0lLR/gm2rGStH3cFg=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a9:e5:aa:19:54:6f:28:3f:56:ea:39:5a:0a:41:f5:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 9 01:01:01 2026 GMT
Not After : Jun 10 01:01:01 2026 GMT
Subject: CN=4241afd1ce48b6d7002b86a75f3c767b5f3eef6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:57:d8:d0:2e:c1:56:ff:81:7b:c4:0b:dd:
55:63:71:b1:a0:85:5c:28:46:43:d5:b6:ee:9f:23:
f6:16:c4:87:9a:b9:80:9b:d5:ce:3a:2a:74:c5:69:
76:84:02:cf:ed:f2:dc:25:26:a1:6b:97:97:0c:f7:
a4:00:40:03:a4:7c:44:28:0e:c9:75:ac:3d:5e:7d:
90:e2:4d:79:e6:fd:cd:b7:d7:2d:b4:37:07:fd:30:
3a:74:0d:be:7e:ec:11:aa:4d:a3:f9:a4:31:0c:70:
51:34:95:11:49:05:ce:60:97:fa:9e:e6:44:e2:7f:
4d:5e:b2:f1:a0:26:f6:e4:0c:3a:c5:01:97:50:bd:
ae:c6:47:79:6d:dc:e2:82:58:fc:90:83:6e:d3:41:
ac:52:7f:6a:c8:3d:67:a3:17:78:3c:90:32:3e:a8:
af:18:fa:c6:35:c2:23:aa:7f:11:8c:a5:2a:a1:ff:
1b:bd:44:cb:7d:cb:a6:75:1d:66:6d:dc:fc:d3:2d:
f5:48:08:ee:f7:57:e6:ce:98:4b:cb:02:0b:a1:ed:
18:53:fc:0c:41:d1:b1:0e:ca:76:0e:7f:18:12:95:
72:00:b1:90:dc:93:e7:9e:4e:25:e8:a0:5b:c0:22:
70:bd:c3:e4:40:b7:dc:70:07:a1:2e:64:54:32:61:
24:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:41:AF:D1:CE:48:B6:D7:00:2B:86:A7:5F:3C:76:7B:5F:3E:EF:6A
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:58:88:12:5e:e2:3d:27:ae:cf:9a:4a:b7:66:7f:ba:44:95:
a9:08:9e:50:c2:0b:09:74:d0:65:3c:63:d3:53:8e:13:af:76:
6f:4c:d7:29:82:2a:59:a5:96:66:4b:df:3b:09:3a:39:77:45:
dd:5a:c5:2e:79:c2:33:9b:24:0d:37:b2:3d:26:ac:89:a2:fa:
48:2a:04:39:1f:72:11:92:17:bb:0d:8d:78:47:be:21:d8:22:
dd:52:87:f3:3a:b1:bf:b3:a1:3f:8f:e4:ef:05:4f:80:02:c2:
49:51:64:61:ac:98:9c:ed:bb:04:84:58:4c:44:8b:d8:75:53:
8e:9b:33:a4:3e:ff:f6:03:02:9a:30:8f:a0:c8:52:16:5f:9a:
f7:1b:39:7c:f5:6c:b6:3e:2b:21:46:90:f8:af:23:89:ce:4b:
01:c3:6b:af:ec:95:a4:c8:ff:2f:e7:a7:80:9e:d2:a5:f5:c2:
25:62:8e:c3:a4:b8:6e:8d:83:95:d1:a8:bf:bd:ae:67:ea:a0:
60:a6:1a:55:07:f6:cf:c9:77:36:5b:8b:9f:08:63:c2:b9:14:
a6:cd:bd:a6:e0:f1:56:a2:72:8e:17:87:57:46:e9:a3:74:92:
96:fc:97:a3:1f:56:69:4c:ff:3f:13:29:4f:17:9e:6b:c5:99:
31:0d:c0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 05:26:25 2026 by rpki-client