Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: GyddBzpeXwZAKPZ+QgNcuXIMSVtkdyMC8Xn06AB7tK4=
Subject key identifier: E9:1C:E0:2A:E7:D6:B3:CB:85:7D:4A:22:A5:02:B4:A3:C1:33:42:24
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E6A2B55BB5D25581E6FC69B9AADC04286
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1930
Signing time: Wed 27 May 2026 16:01:25 +0000
Manifest this update: Wed 27 May 2026 16:01:25 +0000
Manifest next update: Thu 28 May 2026 16:01:25 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 9f0bW3KW9dSlS14MW1vOSALogn0VnLGo1h5Q11lswEs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 May 2026 14:25:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6a:2b:55:bb:5d:25:58:1e:6f:c6:9b:9a:ad:c0:42:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 27 16:01:25 2026 GMT
Not After : May 28 16:01:25 2026 GMT
Subject: CN=e91ce02ae7d6b3cb857d4a22a502b4a3c1334224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:38:4b:ac:54:73:fe:a9:64:d5:99:6d:43:65:
ff:98:ba:ad:b9:d1:58:66:c1:bf:25:3c:5d:1d:ad:
a1:be:c5:b2:39:9b:5f:69:fa:08:25:da:0f:11:9a:
07:0f:f5:84:2e:f1:47:18:49:88:6e:58:44:ec:6a:
20:fa:ca:ca:8b:f7:35:8c:01:20:dd:f5:ba:8e:92:
5b:1f:30:ac:73:5e:d9:21:5b:f1:d6:ca:27:d6:f7:
5d:dc:aa:40:b0:ba:bc:f3:05:66:83:ac:62:f9:fc:
90:1b:9b:8c:70:2b:30:92:f0:8a:b2:57:c0:76:d3:
ed:f9:b9:8d:cc:eb:ce:1b:49:9f:ea:a7:c8:85:66:
59:45:b2:9e:30:7b:a4:98:f7:40:29:47:db:18:f5:
03:65:b5:ae:c2:f7:c8:fc:63:f3:a5:60:06:61:d1:
55:4c:6e:92:60:20:a2:40:6b:14:4f:d2:ad:7c:36:
25:cb:c7:37:08:62:3e:6b:2b:df:d8:54:ad:d0:eb:
96:76:85:4d:ca:c3:c7:4e:cc:1b:f5:04:8c:33:11:
21:c3:26:ff:89:9d:d7:cb:d0:16:33:9f:13:69:84:
a3:29:a0:24:81:ba:2f:a0:54:ef:49:43:b2:32:ec:
ad:6c:6a:0a:6f:62:9e:de:ca:be:13:fc:3e:fa:e5:
8a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:1C:E0:2A:E7:D6:B3:CB:85:7D:4A:22:A5:02:B4:A3:C1:33:42:24
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:95:5c:cc:f2:cd:d3:a2:00:c6:5b:a0:e3:e0:c8:c0:9d:f1:
58:95:af:e9:18:6f:e2:6f:f8:55:67:4e:e0:2c:5b:99:b3:d3:
62:40:a0:b4:21:d2:1a:9d:61:30:39:20:3b:50:d3:e2:9c:03:
ad:4e:53:13:66:57:9e:ba:61:f9:93:31:ab:eb:03:c8:aa:0b:
13:d6:e7:99:ec:e3:65:82:ec:70:a3:25:e3:3e:f8:5f:0f:90:
74:2a:5c:dc:6b:f4:25:2c:eb:a3:0b:52:d8:a3:4d:03:8f:d3:
d7:62:66:39:2d:df:dc:87:e4:04:2b:41:8c:f9:f7:e9:fb:40:
a8:8f:1c:1f:48:45:0d:5e:2d:ee:4e:a6:ff:ec:c5:9b:88:14:
3f:24:6d:1d:aa:b8:7e:7a:a4:ee:c3:c7:47:d4:6a:43:8a:17:
5c:c8:4e:8e:ff:b8:32:6e:88:33:91:4e:48:3a:3b:0d:74:22:
63:fe:b2:2c:39:b4:43:72:45:4f:86:0a:fe:da:4b:ad:29:61:
55:cf:32:b9:13:08:a2:88:26:9c:07:bb:d8:d6:87:be:de:6f:
16:70:bd:3b:d4:d6:c3:9b:ba:75:6a:f5:fa:69:a5:0d:bd:c9:
51:a8:6a:ed:dd:96:fc:3c:db:00:aa:28:2c:b3:97:64:a6:0e:
d0:d9:36:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 27 20:09:29 2026 by rpki-client