Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: GbzgGuja3Ouhb7AkraZ63TOat5NggrqrcUArVC3JUBw=
Subject key identifier: C2:B8:C8:09:4E:CD:30:91:16:C1:0E:2D:FE:62:7E:67:68:98:E7:E9
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019C6A66F8A835BCBE210D0A2C6E51DC277D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1826
Signing time: Tue 17 Feb 2026 07:00:59 +0000
Manifest this update: Tue 17 Feb 2026 07:00:59 +0000
Manifest next update: Wed 18 Feb 2026 07:00:59 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: j2/+e8kjcPHVXquHHfBDuWe1sRQ+49Mke/btXwgnN2w=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Feb 2026 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6a:66:f8:a8:35:bc:be:21:0d:0a:2c:6e:51:dc:27:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Feb 17 07:00:59 2026 GMT
Not After : Feb 18 07:00:59 2026 GMT
Subject: CN=c2b8c8094ecd309116c10e2dfe627e676898e7e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:2a:24:8f:71:b4:11:3b:51:f4:1f:56:05:
62:29:23:c5:c2:6b:ee:b7:52:20:eb:3d:1d:fc:27:
9a:fc:73:ea:d2:9c:5f:ab:25:ff:0d:5c:54:a4:c4:
58:cf:18:32:4e:61:5a:2a:04:65:1d:5f:8e:90:e5:
6e:18:f2:e7:27:c8:4b:41:b8:99:78:9b:a1:dd:21:
b1:c6:33:d2:ab:d1:1e:51:17:0e:52:f1:24:de:2a:
cb:62:5d:d8:4c:31:e0:60:4e:38:7d:ea:97:3c:87:
2d:04:19:c1:53:5d:46:f5:f2:89:95:1f:3b:00:07:
23:2e:70:13:ab:1d:05:a1:c1:b7:7a:d0:b6:54:6d:
50:04:3b:00:89:61:df:72:9a:16:82:73:31:4a:44:
8e:1a:73:e4:21:3e:3b:97:0f:7f:8e:cb:6e:cd:4d:
08:97:45:2b:bc:9c:ee:b5:75:dc:f1:40:e3:74:30:
64:23:29:43:2d:09:5b:c5:61:9f:f4:e5:14:67:b1:
39:ea:8f:40:f4:49:33:52:f4:7c:84:f5:d0:fc:ac:
0d:82:7e:9b:f9:23:29:27:81:35:96:50:31:a1:0c:
c5:78:52:d1:c8:25:c1:1c:42:22:cc:75:f6:91:47:
79:0c:6a:02:87:c7:5f:e7:34:60:9a:98:d5:d9:f0:
4a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B8:C8:09:4E:CD:30:91:16:C1:0E:2D:FE:62:7E:67:68:98:E7:E9
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c9:68:cf:ab:2d:c7:45:e8:f5:16:d8:08:42:45:64:b0:9d:
8d:67:4a:da:20:1b:cc:2d:4f:e2:40:6b:6a:c3:e1:fd:09:3f:
ff:88:f2:ba:02:8d:61:8a:76:d3:07:f5:69:89:a1:d0:67:6f:
dc:71:65:3d:7b:72:45:08:ac:ac:3b:c8:9a:31:06:00:a1:43:
3e:ac:e9:70:2e:40:69:e8:38:92:a6:d2:87:7c:51:e3:f1:1e:
71:12:12:d8:9b:34:f9:b6:dd:b6:e9:ef:79:c4:c0:ce:cf:81:
1b:86:d5:54:69:0b:3b:e1:db:5b:1b:42:5b:37:19:ce:13:4a:
93:30:47:6d:0e:40:63:5f:40:f9:c1:73:d3:df:94:fb:62:67:
76:2c:fc:7e:34:38:78:61:6d:90:ed:99:c2:65:a7:87:a1:5a:
73:f2:5e:7c:25:88:34:f1:cf:78:40:25:30:cf:fe:32:84:c3:
78:cb:0a:00:43:b1:6f:17:64:bd:00:5c:84:53:60:32:09:a0:
15:07:e8:7b:14:41:f1:d6:1e:83:65:3a:95:d6:02:ee:cf:e2:
f5:17:7c:ff:64:f3:05:c7:fe:6f:f2:35:f4:b3:13:ee:24:6b:
67:bf:7a:c8:d4:ff:70:78:62:19:31:0c:79:4e:33:6d:90:74:
26:c0:f5:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZxqZvioNby+IQ0KLG5R3Cd9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwMjE3MDcwMDU5WhcNMjYwMjE4MDcwMDU5WjAzMTEwLwYDVQQD
EyhjMmI4YzgwOTRlY2QzMDkxMTZjMTBlMmRmZTYyN2U2NzY4OThlN2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVEqJI9xtBE7UfQfVgViKSPFwmvu
t1Ig6z0d/Cea/HPq0pxfqyX/DVxUpMRYzxgyTmFaKgRlHV+OkOVuGPLnJ8hLQbiZ
eJuh3SGxxjPSq9EeURcOUvEk3irLYl3YTDHgYE44feqXPIctBBnBU11G9fKJlR87
AAcjLnATqx0FocG3etC2VG1QBDsAiWHfcpoWgnMxSkSOGnPkIT47lw9/jstuzU0I
l0UrvJzutXXc8UDjdDBkIylDLQlbxWGf9OUUZ7E56o9A9EkzUvR8hPXQ/KwNgn6b
+SMpJ4E1llAxoQzFeFLRyCXBHEIizHX2kUd5DGoCh8df5zRgmpjV2fBKQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMK4yAlOzTCRFsEOLf5ifmdomOfpMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVsloz6st
x0Xo9RbYCEJFZLCdjWdK2iAbzC1P4kBrasPh/Qk//4jyugKNYYp20wf1aYmh0Gdv
3HFlPXtyRQisrDvImjEGAKFDPqzpcC5Aaeg4kqbSh3xR4/EecRIS2Js0+bbdtunv
ecTAzs+BG4bVVGkLO+HbWxtCWzcZzhNKkzBHbQ5AY19A+cFz09+U+2Jndiz8fjQ4
eGFtkO2ZwmWnh6Fac/JefCWINPHPeEAlMM/+MoTDeMsKAEOxbxdkvQBchFNgMgmg
FQfoexRB8dYeg2U6ldYC7s/i9Rd8/2TzBcf+b/I19LMT7iRrZ796yNT/cHhiGTEM
eU4zbZB0JsD1fw==
-----END CERTIFICATE-----
Generated at Tue Feb 17 12:45:16 2026 by rpki-client