
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: eauxJUfuFkJJxuNgNONKrFIEUKOdEk+p3cYmAyjshmI=
Subject key identifier: AF:B0:9B:39:D4:CD:43:B0:F9:AE:BE:BE:24:87:E8:CA:9F:E7:36:18
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F7406EED5AA0FA3BD6BD58898876CC595
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 19BA
Signing time: Sat 18 Jul 2026 07:00:38 +0000
Manifest this update: Sat 18 Jul 2026 07:00:38 +0000
Manifest next update: Sun 19 Jul 2026 07:00:38 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: lc+0QR30SF052tGhYlwOfL5hBDppiptMdNqPFR4Dg5Y=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Jul 2026 02:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:74:06:ee:d5:aa:0f:a3:bd:6b:d5:88:98:87:6c:c5:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 18 07:00:38 2026 GMT
Not After : Jul 19 07:00:38 2026 GMT
Subject: CN=afb09b39d4cd43b0f9aebebe2487e8ca9fe73618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:df:4e:d8:9e:5a:f5:89:f3:5e:02:7d:d0:d6:
29:91:b5:be:dc:9a:ae:2d:8b:18:92:2f:6e:87:ff:
b1:43:2c:79:1c:cb:27:d5:73:61:89:1d:a4:47:c9:
55:f4:6b:81:96:97:1d:79:71:4c:19:54:4a:9c:74:
d9:f6:e3:9f:45:07:27:0d:fa:f5:00:2a:36:1a:13:
e5:21:5d:35:e8:0a:08:1a:8f:56:d0:6f:ee:a6:0b:
54:c1:6c:c3:b6:1b:65:3d:5d:dd:e7:d6:a6:e1:55:
a7:02:44:68:ed:1e:bc:17:29:90:2a:09:42:3c:47:
1f:b0:8a:28:05:95:eb:13:c8:34:b3:ad:d9:99:47:
c6:8a:26:d4:4d:9a:2d:89:29:e9:c4:e2:e5:a2:1f:
9b:16:9b:e2:46:d4:da:a3:69:d2:46:ef:88:62:1d:
47:7a:9b:f6:08:79:6e:02:db:44:ae:40:98:f4:d7:
e8:53:11:4d:92:43:99:9f:9d:d9:d5:a1:5a:10:ab:
31:9c:9d:a5:6d:69:ce:5f:3b:71:89:fa:a9:27:4c:
e3:b5:88:a0:89:00:14:b4:f9:43:a9:6b:d8:6a:12:
a7:ff:0e:3d:28:7a:5a:86:d2:14:8a:0f:91:d7:da:
8f:f7:3f:08:53:38:36:a6:41:b3:e1:6c:4a:e7:71:
e2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B0:9B:39:D4:CD:43:B0:F9:AE:BE:BE:24:87:E8:CA:9F:E7:36:18
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:33:1b:a9:4e:7b:ac:6a:cd:1f:3c:76:8b:8d:72:23:5d:29:
82:51:23:5e:5b:86:d3:f1:01:eb:fd:88:75:d4:59:cd:c2:f9:
e0:93:eb:a5:80:1a:58:2b:04:6f:91:98:92:87:5c:9f:ab:4f:
00:53:85:b7:6e:d8:cb:3b:20:1e:8e:c0:b8:9e:ca:ef:22:de:
7e:a1:70:ca:7f:7b:6b:d0:7d:81:ef:a0:73:2f:4d:c5:a0:75:
d4:00:4a:fd:a7:8b:d9:24:b1:be:cb:8e:02:e1:24:25:08:1a:
9d:e7:a6:3d:28:47:b7:f6:2c:d0:3c:2e:13:c4:84:9a:31:fc:
65:6f:c2:77:fe:80:fd:5c:fc:da:0e:46:2f:cb:64:48:6e:41:
2b:c4:f2:36:82:60:31:50:fd:40:3c:98:98:fb:46:65:58:d5:
26:51:5e:94:e7:a3:1e:ec:bf:73:2d:ca:df:44:26:c8:06:fb:
24:22:d2:b9:6f:5c:da:af:f6:c5:0e:e3:d8:ce:1c:f3:89:e8:
7c:0f:08:51:47:e6:3c:1a:e2:3d:59:0f:62:2a:16:c2:42:f1:
b4:bc:a7:da:42:a1:ee:c0:c8:2a:0c:7a:a6:f2:3c:71:dd:7d:
20:2c:2d:3a:80:75:f5:43:77:16:be:fa:f2:46:f5:05:84:48:
c7:fd:ff:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:32:01 2026 by rpki-client