Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: t/diyEIjQeIRsMRN/JSW0gHrNPDawWiXagEJeDvGr6g=
Subject key identifier: 52:BE:D8:37:5A:4B:FA:63:D2:D0:2C:9A:23:C9:F3:55:7F:5F:3E:0E
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EF492D3D9678CAA934025E48A1A6A0AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1978
Signing time: Tue 23 Jun 2026 13:02:03 +0000
Manifest this update: Tue 23 Jun 2026 13:02:03 +0000
Manifest next update: Wed 24 Jun 2026 13:02:03 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: KSohD8qWMu4CPRtY4ZjoQOhV2xKN0wnp0Essd771tis=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 13:02:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f4:92:d3:d9:67:8c:aa:93:40:25:e4:8a:1a:6a:0a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 23 13:02:03 2026 GMT
Not After : Jun 24 13:02:03 2026 GMT
Subject: CN=52bed8375a4bfa63d2d02c9a23c9f3557f5f3e0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0b:61:c7:dd:91:a5:42:73:e8:b6:33:71:5b:
89:dd:1a:01:c3:ea:a5:1c:1b:02:f5:41:e3:80:09:
14:fc:35:5e:b3:a6:7c:35:ea:18:c2:7b:7c:3a:23:
7b:88:a9:34:3a:42:eb:85:c4:6d:69:7e:a1:cf:69:
98:93:fd:80:4b:0a:c8:56:0c:23:00:f4:ee:7a:f0:
61:dd:47:5e:c8:bb:9f:48:e0:00:72:00:7d:57:fa:
f0:d6:0a:e8:9a:7a:1f:10:c8:07:d8:cd:34:40:8b:
1a:10:4c:00:4a:3b:5a:a2:7f:cf:32:96:ef:bb:11:
47:33:ef:62:60:70:3d:49:fe:12:f7:f6:63:4e:9d:
62:53:aa:eb:73:6e:1b:17:dd:11:88:3d:e9:fc:7d:
1a:91:a2:d1:a9:0c:0a:a2:64:93:09:57:4f:e7:48:
2e:5f:ed:f9:7a:f4:3c:83:3d:4f:c9:5c:0b:52:94:
7a:8e:ab:93:f0:3e:87:7a:4f:0f:43:e0:f4:42:44:
8b:69:e0:58:a1:4e:75:0e:f8:5b:ea:33:22:e5:74:
32:5e:64:0a:9b:92:fb:bc:b9:3c:0e:ed:b9:5b:5e:
47:98:7f:14:fb:80:96:f3:72:15:61:0d:7d:a7:d1:
3b:02:0e:e0:aa:a5:e0:ab:f8:70:8f:24:01:a0:bf:
62:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BE:D8:37:5A:4B:FA:63:D2:D0:2C:9A:23:C9:F3:55:7F:5F:3E:0E
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c0:73:06:76:46:b7:4f:f3:2a:d9:2d:ae:65:c7:b6:eb:1a:
66:7c:a2:3f:03:da:8d:73:61:64:84:f0:8d:9f:ec:96:5b:e3:
ba:c2:b6:ed:6b:02:21:d4:3d:de:8e:e9:62:80:94:d5:5c:c8:
ff:a2:59:71:2d:c6:4d:3e:ba:d3:d3:4e:45:f3:63:fd:71:ea:
a6:ba:9c:14:68:65:6c:f5:ff:13:c2:c8:72:dd:c0:f1:ae:cc:
01:69:97:3a:94:32:99:37:22:8e:67:d9:1b:fa:19:4c:59:12:
61:43:12:e7:d8:d3:51:d1:c8:fe:e5:bf:cc:77:92:77:20:72:
b1:ac:6c:9d:d8:11:d2:8c:31:a8:a8:3f:a9:7b:06:dc:54:ca:
20:c9:6b:11:d6:79:ff:82:c0:e0:fc:7c:c0:72:5e:38:14:c3:
78:35:48:30:fa:60:ff:41:35:b4:2d:5a:c0:c9:ff:5a:9c:d6:
2c:31:ab:8a:36:47:24:99:7f:49:6c:4b:4b:68:0b:56:5d:1f:
6f:22:60:33:4a:6a:a8:fd:ab:ef:57:0e:c6:f6:9a:81:49:3a:
fc:8f:fa:af:85:4c:77:81:cb:4f:98:9b:c1:bc:52:ff:81:43:
a5:1a:dc:30:b9:8f:f8:89:65:13:3e:d0:57:01:00:75:ce:1a:
76:63:49:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 16:54:53 2026 by rpki-client