Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: XTsEp3akhiEoURF7SAVHGQduDq9chrw63IIpB4MnS40=
Subject key identifier: 14:11:C8:9C:1B:4A:B1:45:4D:90:AA:4B:5C:BC:CD:E4:45:28:98:14
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019ECE975C1E5495D9554E797FC5BF944ED4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1964
Signing time: Tue 16 Jun 2026 04:01:26 +0000
Manifest this update: Tue 16 Jun 2026 04:01:26 +0000
Manifest next update: Wed 17 Jun 2026 04:01:26 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: LXsflh1XrAHmpM93FUU5UOEW5JO1GhJldWtJCK+mrrk=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 04:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ce:97:5c:1e:54:95:d9:55:4e:79:7f:c5:bf:94:4e:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 16 04:01:26 2026 GMT
Not After : Jun 17 04:01:26 2026 GMT
Subject: CN=1411c89c1b4ab1454d90aa4b5cbccde445289814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c4:3c:e5:8a:ff:ce:f7:53:fb:1a:f4:6c:4b:
64:1c:bf:c2:e7:85:82:df:9e:54:de:fe:a7:76:e9:
69:c2:0c:dc:7b:2c:60:09:33:6d:48:7f:42:d4:88:
b9:98:fa:0a:53:1e:66:1d:a8:01:0b:73:4f:c9:f6:
26:ac:e6:bf:e7:05:9d:f0:d1:3e:c2:f1:2f:bc:af:
ea:d8:24:d3:23:37:a4:43:18:d5:bf:fe:c1:80:20:
ae:07:88:16:14:e9:1f:86:fb:ec:db:ff:57:79:ee:
d4:2b:58:bb:77:45:c6:0e:7d:62:c8:35:b4:e2:ce:
fe:33:80:fe:5b:4c:c2:af:dc:18:3c:57:52:19:41:
ff:09:d4:35:c0:89:32:7b:26:cc:03:3c:63:f1:93:
15:8f:4a:ba:78:fd:d1:9a:38:9d:de:d1:f0:df:46:
1b:16:7e:c0:00:99:54:e5:1b:ad:2e:ad:71:7b:41:
1b:df:a3:31:ce:41:d1:49:37:54:c5:82:cb:b5:e6:
ca:12:e2:ac:ca:93:5e:d8:9e:66:8c:a0:58:e5:ac:
81:64:98:a2:c3:37:1b:28:62:ef:b7:02:64:51:61:
4d:c2:0c:73:65:cc:cd:1f:f6:73:93:af:fe:c8:c7:
93:9f:f1:a0:b5:dc:d2:14:27:51:64:b2:c2:a9:e0:
55:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:11:C8:9C:1B:4A:B1:45:4D:90:AA:4B:5C:BC:CD:E4:45:28:98:14
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:36:42:c8:a9:5b:63:0e:95:6f:bf:a5:84:f7:f8:51:25:ba:
fa:d0:02:b3:6b:82:24:2e:93:61:5d:cf:68:2d:06:d8:48:5a:
c9:55:12:d9:b2:71:92:9d:1e:3d:f7:2c:28:27:dd:79:bb:16:
a1:59:fa:db:fc:e4:c7:97:3b:be:ed:cd:c8:a8:d4:7f:49:53:
29:8d:5f:20:e7:7b:4a:fe:07:27:3a:f9:58:90:76:46:91:81:
e8:b8:d9:c3:57:e8:e2:00:3b:57:38:42:93:a0:51:6b:e2:65:
cc:6f:9f:e8:cb:43:a9:98:61:e7:ff:0d:9d:61:46:ce:8d:cf:
58:27:38:4a:e3:9a:4c:06:8c:0d:62:b9:8f:ba:ed:43:33:1c:
87:3f:b5:ed:ea:f4:27:53:e3:e4:84:b3:5c:de:ab:98:34:c5:
9b:88:47:90:df:a5:0d:9d:5f:fa:87:8e:72:f1:6d:9d:c9:64:
b4:26:d9:b9:a5:bb:7e:dd:96:a4:4b:03:9e:c0:20:09:d2:b5:
5a:03:e8:9b:f5:48:ee:e6:4b:d2:bf:d6:68:ba:8b:c8:2d:5b:
ac:a4:b6:c7:1a:37:76:64:12:31:6f:ef:d3:7e:8b:f4:07:67:
7c:cc:2a:17:89:74:cc:4b:ec:f9:9f:28:75:2b:70:0b:8c:2c:
ff:91:9c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 13:11:39 2026 by rpki-client