Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: RP0xnu5bjMH+tDM5XlBqiUYiwv0wO+yZ/G11vuENsdM=
Subject key identifier: 23:8B:28:F1:88:05:C2:61:2B:51:6E:45:29:85:96:A0:7A:2B:12:72
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019D93CF12269590AE991578EE8CC2367260
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18C1
Signing time: Thu 16 Apr 2026 01:01:54 +0000
Manifest this update: Thu 16 Apr 2026 01:01:54 +0000
Manifest next update: Fri 17 Apr 2026 01:01:54 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: SB6NEVfRMyViujBBSnS02ujykG4dcwyPNLWnrqmK19w=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 Apr 2026 23:51:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:93:cf:12:26:95:90:ae:99:15:78:ee:8c:c2:36:72:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Apr 16 01:01:54 2026 GMT
Not After : Apr 17 01:01:54 2026 GMT
Subject: CN=238b28f18805c2612b516e45298596a07a2b1272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6d:37:b8:fa:21:ea:60:c7:8a:7a:ff:b5:33:
de:f3:e1:10:b5:32:97:f8:c7:07:01:00:fa:cb:24:
dd:4a:b0:d3:74:cc:ec:de:f8:a7:dd:58:2e:8f:94:
5e:1c:03:ca:34:fc:c6:1b:94:e4:c7:93:c7:4e:8a:
55:1b:73:a8:70:cb:ee:6d:a9:ad:fe:e3:74:03:5f:
d9:eb:8a:ca:76:24:b3:f6:ae:14:de:6b:e6:4f:c8:
5a:35:31:86:12:b6:f7:e4:ce:a3:4f:80:e7:ae:da:
de:21:05:6b:c2:4a:43:55:72:1e:b4:af:5e:88:67:
07:3b:53:a1:ce:0f:46:47:78:1c:08:5b:3e:8f:4e:
5b:2a:56:38:75:1e:e3:b4:89:26:9a:83:94:b9:02:
70:fe:31:c7:93:6b:7a:12:7b:f8:e5:68:10:ab:b2:
88:60:5a:d6:ef:c8:98:f7:3b:12:a6:0c:72:e4:e1:
63:d1:2f:08:e9:2c:2b:57:92:d6:21:cd:f4:34:11:
c3:a1:d7:98:4d:a3:c0:a0:5d:3c:21:5c:50:d3:71:
7f:b4:18:a6:db:b1:83:b1:c8:77:1d:05:e6:c6:fe:
97:9b:bf:a3:f1:0a:f9:80:67:34:5c:31:14:18:2c:
5e:70:cb:80:d6:fc:df:19:83:af:3a:0d:a7:7a:3b:
c4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:8B:28:F1:88:05:C2:61:2B:51:6E:45:29:85:96:A0:7A:2B:12:72
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:09:e3:13:46:e1:72:b4:ec:f2:0c:6b:0d:dd:42:78:17:d2:
47:20:a2:eb:4b:2b:ca:80:96:d1:8c:b0:08:b7:fd:0e:ac:6c:
38:94:e8:21:98:94:00:0f:f3:f5:78:78:c1:6a:a4:46:8a:4b:
31:9a:c4:76:48:0c:7b:00:a4:b4:8b:5f:4c:8d:6b:b6:1c:93:
88:85:a0:ff:ae:29:e5:e1:71:5b:c2:9a:c4:ca:eb:b3:76:6a:
ae:2f:ba:08:19:b6:18:f2:d2:f7:16:49:06:da:d5:5c:a4:7b:
e1:b1:2a:50:71:ff:74:d4:a6:8e:d9:e0:be:90:69:43:72:0e:
2e:f9:7d:df:e4:e0:a2:66:37:a5:eb:24:c2:8d:bf:f2:c5:fa:
63:65:a1:11:4e:e2:93:e9:f2:69:58:63:90:c9:67:c7:76:29:
6a:63:92:9c:62:a1:7d:af:06:4d:f0:90:4f:d9:bf:74:e6:0d:
b1:94:d1:64:ab:5b:87:17:2c:87:9c:ec:6e:bb:1c:17:1f:ef:
78:75:ea:3d:ef:e0:44:3c:70:df:df:5c:c8:48:e5:b8:91:c1:
fa:43:56:2a:3b:dc:17:c3:4b:b4:17:f6:f5:8c:1e:0e:9f:5b:
1e:4a:c0:93:b8:50:df:41:6e:9b:93:5d:58:60:28:d3:1d:80:
fd:3d:81:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 05:01:05 2026 by rpki-client