Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: QOqNbJ7rQp6/4pCfp8g/04xvW1dRf8hPEAtfB8izrfk=
Subject key identifier: C2:0F:0F:6E:61:57:8B:40:58:8E:E1:21:6D:01:11:1D:93:A9:A1:6C
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D2F619BF407B773A15BE4B0C52957B7E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 188C
Signing time: Fri 27 Mar 2026 13:00:19 +0000
Manifest this update: Fri 27 Mar 2026 13:00:19 +0000
Manifest next update: Sat 28 Mar 2026 13:00:19 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: n08OdZaa9n91ND6RLrGocgz5EkNFKME7oH4fQQN6h4M=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2f:61:9b:f4:07:b7:73:a1:5b:e4:b0:c5:29:57:b7:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 27 13:00:19 2026 GMT
Not After : Mar 28 13:00:19 2026 GMT
Subject: CN=c20f0f6e61578b40588ee1216d01111d93a9a16c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d2:ff:99:36:53:54:9c:d9:37:a9:ce:14:2b:
2b:49:95:58:d7:f7:4e:1f:04:82:11:31:3b:2e:0b:
73:f5:56:ba:5e:cd:ef:9a:95:f4:47:27:bc:1c:92:
5c:04:5c:00:74:14:68:db:f5:89:e6:6c:1e:7e:e1:
37:92:2a:cb:dd:e0:7f:8a:d3:33:eb:8d:ba:70:10:
66:c3:0d:5f:5b:12:a8:21:08:56:de:79:31:14:00:
44:c9:73:49:f5:33:17:eb:9b:d9:66:3c:7c:cb:b4:
25:97:62:56:8e:e2:3d:9b:15:1c:f1:35:6a:9b:fa:
80:71:9c:6c:7c:29:2d:1b:da:7f:bc:d5:76:17:1b:
72:ab:a5:8c:64:7f:aa:27:8f:7e:f0:53:14:b3:0a:
21:91:9b:2b:a0:e4:93:08:f7:06:b8:da:5b:77:a0:
4e:11:53:80:54:73:21:bb:3d:93:c4:e0:83:0d:84:
47:a5:19:f3:76:f0:ac:bc:f5:67:c0:24:b3:35:0b:
d2:36:a7:d6:6d:5a:bb:2f:4b:e0:77:ab:71:b6:e4:
14:b5:06:e6:a0:7e:f3:3b:18:05:6e:bb:92:61:36:
87:f2:70:fd:cb:74:c9:28:c6:43:68:a0:36:50:88:
3e:54:0a:59:f9:07:b4:a6:52:8c:f3:33:3e:1a:40:
b5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:0F:0F:6E:61:57:8B:40:58:8E:E1:21:6D:01:11:1D:93:A9:A1:6C
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:af:40:ab:bc:51:e1:74:ee:29:d7:35:eb:37:70:eb:79:ef:
5c:0f:fc:19:3f:df:01:e5:26:46:e2:28:da:6a:5b:48:69:1d:
bf:37:29:ac:b5:f3:a6:ef:21:5f:42:03:02:f1:41:60:55:ad:
f2:6c:24:b0:08:34:21:44:64:b7:b8:53:8f:72:b6:2e:23:0d:
c2:e9:94:33:e6:f6:55:63:8c:8c:6d:71:28:e7:c3:b2:c6:8b:
c1:c0:92:0e:a3:3c:e4:67:93:c4:31:fd:50:8d:ab:e9:94:74:
63:24:fc:fd:62:40:c0:f8:bc:94:db:f2:ce:b2:26:79:1b:98:
8e:91:19:0d:f5:ed:a8:c8:a6:39:98:5f:91:0a:e2:0a:bd:3a:
ae:74:3b:fd:c6:30:5c:44:75:e0:13:45:ae:ae:a3:5d:4c:8a:
d5:35:17:43:ae:4e:04:20:b7:03:e9:82:54:08:b1:d3:93:0d:
70:a6:9d:fb:14:74:e3:66:0e:18:ba:3f:22:ff:9d:7f:15:14:
af:ea:95:33:af:c0:fe:c0:ad:bb:c8:63:ca:54:f8:4e:b6:07:
11:f9:7a:10:fe:b7:5a:fa:81:fc:99:7f:6a:f4:4a:82:65:b9:
9e:74:ce:b1:8e:f1:7c:6c:3b:5a:50:74:a1:f2:25:88:34:91:
12:6f:98:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 23:17:55 2026 by rpki-client