Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: YUDe6atrCLP+mtQcBZYX/GX2+vrTZpXhxwj+UGupAO8=
Subject key identifier: 4A:84:D4:D2:69:70:22:13:CB:3A:55:F4:6F:D0:A0:EB:DA:EA:49:2C
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CB7A6BC1B77A7AAB39590CE8DE2C3B9D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 184E
Signing time: Wed 04 Mar 2026 07:01:23 +0000
Manifest this update: Wed 04 Mar 2026 07:01:23 +0000
Manifest next update: Thu 05 Mar 2026 07:01:23 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 8ScpvPlQaBUbf8+i71xp76A1grFhfV/ORHcrTXtHq+M=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 07:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b7:a6:bc:1b:77:a7:aa:b3:95:90:ce:8d:e2:c3:b9:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 4 07:01:23 2026 GMT
Not After : Mar 5 07:01:23 2026 GMT
Subject: CN=4a84d4d269702213cb3a55f46fd0a0ebdaea492c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:fe:11:d2:b0:73:8a:f3:c8:6b:a9:09:7e:dc:
4a:ee:b7:9c:9b:56:01:d8:34:2b:5e:7c:b8:36:30:
36:09:2c:56:cf:30:5b:0f:26:14:a9:a5:f7:8b:74:
a7:9e:35:0a:57:2a:e3:c7:06:f9:7d:3d:fe:c7:16:
95:0e:5f:f2:ef:e4:24:82:51:76:d9:2e:ce:72:14:
13:75:6b:7f:17:c0:4f:d0:36:11:db:d6:06:72:e1:
18:b8:3d:65:ce:d7:12:65:89:21:e0:42:98:04:f7:
db:df:c1:db:b3:85:37:45:04:ab:f8:8d:07:fc:50:
dd:83:75:37:52:de:16:83:15:57:18:df:73:78:3a:
ed:1b:33:2b:13:7c:ff:6a:64:27:92:75:32:1d:c7:
5d:e2:e3:4f:57:c3:a1:47:36:ea:2b:63:6a:ea:da:
49:10:4f:24:7e:f3:87:6b:43:f9:5e:a9:7e:e8:d3:
ab:22:ff:f6:86:b9:2e:68:69:c1:86:93:1a:2a:f4:
1f:76:1d:49:df:bf:c9:45:36:1b:42:49:b3:a5:89:
7e:20:55:2c:1d:be:f1:9a:1c:9b:24:d0:7c:4e:de:
bb:61:49:6a:4e:14:4c:01:69:bd:c5:ce:48:a2:df:
a8:76:c0:53:82:33:5a:8f:b2:83:94:8e:e0:d4:0e:
3d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:84:D4:D2:69:70:22:13:CB:3A:55:F4:6F:D0:A0:EB:DA:EA:49:2C
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:9b:5a:ca:62:fe:d7:9f:8c:86:bc:f4:52:90:e2:a9:22:5c:
8b:89:51:2b:3a:15:3f:76:72:0d:3f:05:c5:38:8c:7d:87:16:
1a:a0:f8:23:7b:75:2d:0c:b5:1d:b2:ca:65:dc:7b:39:cd:80:
85:4b:8e:c5:ee:c5:a4:91:f6:d0:66:2b:4b:db:fd:73:01:8b:
03:a0:d9:37:2c:36:c1:4b:4e:bb:a4:0d:80:17:7c:14:44:b7:
d9:55:25:be:12:58:69:3b:e5:aa:29:4c:ca:de:d9:d7:9a:b8:
56:0b:b1:ed:f6:db:d9:ad:9a:df:03:e2:b8:40:c8:99:06:c7:
65:83:61:32:6a:00:e1:53:6b:f4:65:8c:1a:5a:c0:d0:67:aa:
10:52:82:c4:4f:c3:04:26:66:34:43:20:a9:94:b4:47:94:9c:
3b:cf:26:6f:18:fb:fe:bc:d6:b5:12:7d:07:c6:8e:77:8f:23:
9a:a5:f2:60:6f:69:6a:2f:59:ac:b9:4a:86:bb:51:6b:14:8a:
dd:e5:91:5f:8f:8a:6f:a7:7d:63:b1:9b:fd:df:bc:11:ef:b3:
c2:2d:1d:0e:61:60:a2:ad:9e:74:be:9a:a8:9c:93:41:f2:bd:
7a:60:f1:de:97:9d:27:92:99:fa:5c:4f:21:42:8a:8d:b1:37:
fb:95:d9:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 16:35:21 2026 by rpki-client