Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: pv7DMsiR2A9RLkMlMzuHJTvEeDLWbdKH1OvzKiwXI5U=
Subject key identifier: CD:31:34:35:87:11:73:0C:31:8B:AA:01:A7:02:C5:C8:F4:7B:A5:F4
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E853411F0A15BAD08FF8AD172222EAF98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 193E
Signing time: Mon 01 Jun 2026 22:00:42 +0000
Manifest this update: Mon 01 Jun 2026 22:00:42 +0000
Manifest next update: Tue 02 Jun 2026 22:00:42 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: vbky9EWSxkkbX0E5bWFIx4puOInppU9u/R+gggYptQw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jun 2026 16:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:85:34:11:f0:a1:5b:ad:08:ff:8a:d1:72:22:2e:af:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 1 22:00:42 2026 GMT
Not After : Jun 2 22:00:42 2026 GMT
Subject: CN=cd3134358711730c318baa01a702c5c8f47ba5f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:23:01:ac:05:96:e0:f0:05:7d:04:6b:70:be:
a0:7c:db:84:07:bd:be:2a:74:9e:ac:22:d4:1b:f7:
7c:39:c6:ba:2d:69:6f:39:cc:84:0e:c0:2b:c3:e6:
2a:18:c7:0c:53:78:2a:f3:52:d1:5e:3c:7d:1f:3f:
8c:2c:68:d5:c9:f0:b3:52:c7:7f:a3:43:db:97:fd:
31:e2:c1:51:e6:29:b8:47:b2:1f:b0:18:b4:06:8c:
9a:00:a5:e2:17:57:ba:6e:31:e3:c1:e4:c4:fb:99:
50:6e:ce:e4:73:25:cc:c6:e9:16:87:85:59:e3:0d:
1c:cc:94:e4:79:6d:0f:b6:be:ae:df:cc:12:15:8b:
17:a8:79:de:c2:40:c4:e5:0f:4f:b5:33:d3:0e:e9:
19:0d:38:70:b7:41:ee:53:16:c4:d2:e7:c7:7a:9c:
02:de:80:32:5e:25:48:8c:2d:2b:0d:39:da:90:d2:
3b:1b:2e:7d:3b:8e:a5:11:3a:ff:e4:7c:14:ea:63:
f3:53:95:86:da:2d:78:c7:e9:95:54:92:17:81:2d:
d4:5d:93:cb:25:0d:a7:3e:a0:47:43:a3:df:ba:dd:
27:ef:e7:c7:2f:52:66:46:ed:4a:5f:71:04:50:74:
db:fc:a5:9c:bb:79:04:d0:0e:f2:40:d2:e0:0f:c9:
97:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:31:34:35:87:11:73:0C:31:8B:AA:01:A7:02:C5:C8:F4:7B:A5:F4
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:5c:5c:bc:e4:5b:11:c8:84:e8:55:1e:a1:77:24:f8:26:1d:
ec:e0:31:ca:d5:85:a3:83:b9:4f:21:4e:ab:83:39:d6:e5:30:
ab:03:bf:51:37:d1:62:b1:d5:b4:4a:17:78:83:5d:bd:9c:5a:
76:0c:19:11:9c:8e:a3:24:70:02:c2:97:7d:3f:70:b3:58:94:
dc:8c:3e:0a:fd:84:a1:88:1c:b2:6a:1f:c8:e5:a2:1a:43:50:
67:31:0a:d9:e9:3b:c9:05:ca:cf:8b:64:ab:f1:f1:89:2c:4e:
cb:46:da:8a:75:c6:63:51:ef:09:6b:8d:e0:de:30:d1:78:b9:
89:13:01:d7:4c:57:22:f5:97:82:30:5c:f0:7f:90:d6:ac:2a:
c4:ca:99:73:da:b5:30:61:08:61:9c:75:24:d2:c1:5e:74:4d:
82:f4:ec:41:ae:1e:08:18:b4:6a:70:9c:19:9c:3e:50:58:54:
a7:1b:aa:08:2a:56:64:b6:10:2d:5e:2b:39:5f:d1:09:3a:c3:
97:e7:b2:1e:00:c8:5e:8c:22:04:ae:cd:61:0f:f8:9c:2c:10:
ce:de:63:dc:75:4b:d8:84:4b:82:7b:ec:27:11:28:c8:96:fb:
54:6a:56:2d:aa:ef:9f:70:bf:4e:ce:d2:42:58:3a:3d:7e:9b:
fd:82:49:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6FNBHwoVutCP+K0XIiLq+YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNjAxMjIwMDQyWhcNMjYwNjAyMjIwMDQyWjAzMTEwLwYDVQQD
EyhjZDMxMzQzNTg3MTE3MzBjMzE4YmFhMDFhNzAyYzVjOGY0N2JhNWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CMBrAWW4PAFfQRrcL6gfNuEB72+
KnSerCLUG/d8Oca6LWlvOcyEDsArw+YqGMcMU3gq81LRXjx9Hz+MLGjVyfCzUsd/
o0Pbl/0x4sFR5im4R7IfsBi0BoyaAKXiF1e6bjHjweTE+5lQbs7kcyXMxukWh4VZ
4w0czJTkeW0Ptr6u38wSFYsXqHnewkDE5Q9PtTPTDukZDThwt0HuUxbE0ufHepwC
3oAyXiVIjC0rDTnakNI7Gy59O46lETr/5HwU6mPzU5WG2i14x+mVVJIXgS3UXZPL
JQ2nPqBHQ6Pfut0n7+fHL1JmRu1KX3EEUHTb/KWcu3kE0A7yQNLgD8mXlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM0xNDWHEXMMMYuqAacCxcj0e6X0MB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD1xcvORb
EciE6FUeoXck+CYd7OAxytWFo4O5TyFOq4M51uUwqwO/UTfRYrHVtEoXeINdvZxa
dgwZEZyOoyRwAsKXfT9ws1iU3Iw+Cv2EoYgcsmofyOWiGkNQZzEK2ek7yQXKz4tk
q/HxiSxOy0bainXGY1HvCWuN4N4w0Xi5iRMB10xXIvWXgjBc8H+Q1qwqxMqZc9q1
MGEIYZx1JNLBXnRNgvTsQa4eCBi0anCcGZw+UFhUpxuqCCpWZLYQLV4rOV/RCTrD
l+eyHgDIXowiBK7NYQ/4nCwQzt5j3HVL2IRLgnvsJxEoyJb7VGpWLarvn3C/Ts7S
Qlg6PX6b/YJJ8g==
-----END CERTIFICATE-----
Generated at Mon Jun 1 23:35:20 2026 by rpki-client