Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: nFLapXkdZ76UZlg3UQL/8gfoje6+npCgEjmdBHChqSM=
Subject key identifier: 98:9E:F5:D1:52:E4:85:46:BF:08:EA:D6:0F:10:E5:69:6E:BF:FC:FD
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EB38D57657EDAEDED9AE99698C4ACE217
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1956
Signing time: Wed 10 Jun 2026 22:00:45 +0000
Manifest this update: Wed 10 Jun 2026 22:00:45 +0000
Manifest next update: Thu 11 Jun 2026 22:00:45 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 3ZwZeijU9Aya/xiA1IYPqKOBsrsLwqZLijQkfUWhHeA=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Jun 2026 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b3:8d:57:65:7e:da:ed:ed:9a:e9:96:98:c4:ac:e2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 10 22:00:45 2026 GMT
Not After : Jun 11 22:00:45 2026 GMT
Subject: CN=989ef5d152e48546bf08ead60f10e5696ebffcfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d6:da:b2:30:34:4a:5d:2b:4e:14:da:4c:b2:
ab:24:13:f7:10:8c:c5:67:d4:51:b9:da:78:1c:e4:
41:e6:6c:52:39:57:fa:dd:c3:a6:56:00:3e:5c:0a:
f4:b8:5a:6e:32:9e:dd:47:63:b7:3f:72:71:1f:a0:
f8:18:90:69:ff:ab:48:d0:a1:51:76:92:61:05:61:
9e:c8:23:6e:30:64:8a:0e:6d:cf:4c:a5:a6:ba:31:
51:02:39:04:a1:64:d0:68:5a:49:55:22:90:28:e5:
19:04:31:88:84:c7:3d:88:66:91:94:fd:cb:ab:1f:
17:74:b3:39:4f:a0:c0:f3:ee:d1:29:64:fd:f7:69:
db:bb:4a:75:54:ce:ea:70:a5:47:8f:ce:e7:7c:7d:
74:b1:0e:64:d5:3e:8b:9a:ff:ab:3e:ef:33:f6:d9:
bc:8c:26:20:78:81:bf:87:3d:95:60:45:bc:32:a8:
84:6a:d8:cd:17:16:9d:b2:52:b2:44:aa:b4:b7:1e:
64:11:ee:65:bf:e1:ff:79:86:94:f7:d1:e1:9f:9c:
e2:6e:78:83:6c:28:1f:9b:d3:31:cd:fb:6e:f3:7a:
b3:10:6f:02:96:b7:30:5c:84:f3:d0:a9:88:ee:a2:
5f:fe:c6:3d:b1:fa:0d:ec:8d:95:ff:59:ef:43:88:
a5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:9E:F5:D1:52:E4:85:46:BF:08:EA:D6:0F:10:E5:69:6E:BF:FC:FD
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:b0:67:ae:64:39:40:76:bc:18:83:c3:6f:6b:a0:02:ff:5f:
44:13:ce:4d:61:ad:dd:e5:9a:6b:07:b6:dd:d7:2d:e1:15:1c:
16:6e:23:c8:c3:fe:42:a9:46:84:af:4e:75:18:9c:9a:e6:ea:
4b:15:4d:e4:f4:43:37:3b:48:cf:f9:e3:55:22:00:7e:d2:29:
5e:e1:cc:42:3a:27:2f:08:00:78:f4:0b:cd:1f:ca:39:68:fb:
b5:94:68:e8:1f:70:9b:bb:3b:51:63:1a:a1:2a:31:9a:d5:ba:
ff:3f:22:0b:32:c9:9d:72:63:19:7e:31:5f:bd:ef:53:1e:2e:
3f:17:9d:35:8f:ac:21:6b:14:5d:68:f3:bf:38:83:e8:72:18:
0d:31:23:d8:99:e2:93:f6:73:ee:04:16:2a:ee:ef:96:29:ed:
8e:58:12:d2:92:cc:54:ac:39:2e:87:0a:0a:49:59:63:bd:b2:
f7:b8:b4:88:6e:d9:a6:60:fb:5b:4a:e3:fe:76:ca:ac:ba:51:
4b:e0:54:cc:4e:ef:59:af:15:6f:79:11:8b:26:c2:54:76:99:
60:52:e7:8c:bc:f4:29:ea:1d:df:04:e7:c6:91:96:fa:53:ff:
e5:30:0b:f9:2f:43:90:ae:e3:35:74:dd:c0:e8:ec:16:1c:7d:
47:3a:ae:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 07:47:35 2026 by rpki-client