Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: n2OqVOMJorqJ1fVLJYoKO7BBVtjNMFgwhDrD25iKF+8=
Subject key identifier: 44:96:16:B6:78:B1:79:FF:1D:96:C1:1E:C8:83:6C:EA:EE:77:8F:7A
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E49568EA6E2DAEBFCC29A28B540350C02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 191F
Signing time: Thu 21 May 2026 07:01:09 +0000
Manifest this update: Thu 21 May 2026 07:01:09 +0000
Manifest next update: Fri 22 May 2026 07:01:09 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: L9KoElvVJc9OF1x4gzaFvGBlRlIKwok2yIJvzvrSs4c=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 07:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:49:56:8e:a6:e2:da:eb:fc:c2:9a:28:b5:40:35:0c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 21 07:01:09 2026 GMT
Not After : May 22 07:01:09 2026 GMT
Subject: CN=449616b678b179ff1d96c11ec8836ceaee778f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6b:2a:d3:38:ca:5f:be:7f:b5:84:85:60:16:
c1:69:3e:0d:ed:28:cb:f6:c2:95:b6:6d:5f:b4:20:
8c:7e:8d:cc:bb:5f:b5:8d:c4:9b:9e:4d:ac:1d:f9:
66:46:4b:ea:c5:28:c4:ff:fa:1f:87:78:02:5d:6b:
b0:5e:dc:54:f9:af:8c:2f:10:66:ab:1d:c5:58:97:
d2:64:94:00:d6:30:7c:88:ce:50:12:53:68:5d:e3:
91:a4:74:f3:21:05:3c:cd:e2:62:29:67:8b:c2:fc:
2f:b8:e9:5e:71:7d:74:74:b8:60:ee:04:22:28:33:
d6:a5:7d:35:dc:13:26:85:56:f5:1a:6f:32:cf:a3:
a9:73:02:ae:c5:5a:40:f4:a8:bb:0e:f5:93:98:af:
2c:79:84:45:82:c1:0d:3a:90:13:83:57:4f:3a:75:
87:13:54:3f:0b:ef:e5:95:b2:54:9c:5c:c6:d5:a6:
9d:d0:46:d0:1b:26:55:f3:b0:f4:8f:c0:cf:0d:86:
4c:d6:b9:9f:eb:dc:90:62:a3:4c:61:2b:d4:7a:6b:
f1:d1:a9:43:d3:be:c7:92:87:4b:cc:02:01:94:9c:
a1:fc:6f:ef:7c:aa:e8:bd:15:46:3f:5e:fa:cc:68:
1d:e1:65:c1:ad:6f:8a:06:64:ae:3f:71:37:a5:3f:
42:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:96:16:B6:78:B1:79:FF:1D:96:C1:1E:C8:83:6C:EA:EE:77:8F:7A
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:78:b8:85:81:51:e2:80:66:78:6c:27:ea:37:38:eb:8a:2a:
e6:36:e3:ce:bc:08:4d:57:5b:2a:21:bf:11:4f:34:ee:b9:84:
8f:d9:a5:9f:c5:55:e6:9f:71:7b:2a:10:0a:77:b8:36:40:82:
7d:16:5b:ed:59:77:35:a0:1a:95:e1:cd:62:3e:51:05:2c:1a:
62:01:06:d8:98:ec:2d:da:be:c8:86:af:64:80:2d:90:c8:01:
6a:54:e8:d8:c9:4e:6f:3d:83:7f:d7:d3:90:fe:81:7e:ca:b0:
e4:cd:a4:59:6b:cf:9f:2c:c9:9e:ac:0a:6d:a4:d0:1a:2d:56:
ee:34:07:fb:e0:98:b4:3b:4b:03:ab:5c:56:1a:e0:02:c2:eb:
91:cb:e9:23:f9:bb:da:25:2d:a3:d4:e2:e3:20:3a:92:1d:75:
32:4f:6e:8b:eb:8f:69:28:dd:9b:a6:1b:75:3f:b8:04:2a:ce:
b9:aa:d9:f1:4b:ce:c8:bd:08:42:b3:df:ba:a7:52:ba:11:74:
a7:64:b8:9b:de:e0:3e:4f:dd:9e:8a:1e:bd:db:81:91:3b:45:
46:c5:aa:2f:5d:2c:07:6e:d8:21:b4:39:3e:31:e3:ce:5f:2d:
5c:0d:12:4b:58:b6:e4:99:7e:ca:01:a3:2f:6a:4e:c2:84:21:
df:0c:e2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 16:12:35 2026 by rpki-client