Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: S2hiUkkX4I5iw+EvugKFdflwSH+LOY1PPIJAULuIATg=
Subject key identifier: 18:09:19:D7:46:17:E7:49:35:65:9B:C8:D1:7D:D5:62:DA:F9:76:59
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EC111DC66C352EDF21DC36CB1C2E84F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 13:00:33 +0000
Manifest this update: Sat 13 Jun 2026 13:00:33 +0000
Manifest next update: Sun 14 Jun 2026 13:00:33 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 5Lfg6STMyzeyZnAEUucOT/vZhG1TcN2Wd71fOKZu79Y=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:dc:66:c3:52:ed:f2:1d:c3:6c:b1:c2:e8:4f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 13 13:00:33 2026 GMT
Not After : Jun 14 13:00:33 2026 GMT
Subject: CN=180919d74617e74935659bc8d17dd562daf97659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:33:92:82:8f:ae:17:a7:fd:3f:f7:2f:c5:45:
d5:0f:88:1a:ee:13:8d:6e:8e:7e:7a:a3:e5:98:f8:
17:42:01:69:de:58:29:12:7c:15:28:74:23:49:14:
eb:5b:29:81:a0:83:6b:b3:90:93:ca:7e:c3:45:1b:
cd:fb:e7:aa:1c:3f:4e:46:51:4b:ec:d9:80:e7:dc:
99:7f:20:9f:17:ef:f2:a9:41:24:b9:6d:2a:b1:59:
8c:cb:e0:ca:e3:2a:16:4e:48:d2:5c:2c:96:99:a6:
fb:8b:4e:f6:34:5e:11:fc:c6:51:94:67:a4:45:e9:
77:32:eb:63:f0:ec:3e:eb:81:d3:10:2f:b8:69:d7:
c4:a0:cf:78:4b:8f:36:7b:b3:bf:50:c2:19:f7:43:
0b:5a:cd:ec:7d:3c:e0:be:c0:04:5f:c7:40:71:26:
45:4f:62:d8:86:72:fe:c7:39:b7:59:b8:15:8c:ca:
4f:a6:41:3b:53:b8:39:68:14:d7:e7:3b:c4:1a:d5:
bf:a0:e3:47:c6:f7:2c:f2:06:03:e1:c5:dc:95:45:
70:69:0c:df:30:47:c5:7d:7a:e4:c8:36:b6:52:c9:
0d:55:8f:98:ac:0f:72:00:a1:e5:ed:9c:31:d2:9a:
6e:eb:64:10:e8:fa:5c:1a:39:fc:8b:5b:3d:54:a6:
28:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:09:19:D7:46:17:E7:49:35:65:9B:C8:D1:7D:D5:62:DA:F9:76:59
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:dc:fc:e8:d4:a4:a5:f3:04:db:61:a0:f3:8b:0b:ec:8a:93:
15:b1:d8:8f:a8:5c:e5:52:65:c7:fb:8d:4f:93:3d:33:1d:4f:
e7:b2:75:b5:0a:6b:6e:f6:10:6c:88:93:68:de:94:1d:eb:f2:
a7:4c:d2:13:13:98:d4:87:f6:ee:ed:c8:83:9d:e9:ab:f6:40:
f9:93:6e:9d:8b:9b:bc:6e:01:09:35:d3:d7:31:a7:39:17:aa:
a5:f6:c1:0d:b9:6b:9e:3a:7e:33:f6:74:bf:1e:cb:8b:25:34:
fc:6f:29:23:3d:f3:2f:c8:82:f6:64:19:53:cb:79:c7:ea:5b:
bc:09:68:e9:71:37:4d:65:a7:bd:a9:ce:c7:e3:ac:89:7d:2b:
9e:2d:a3:38:20:59:14:42:94:4e:85:f2:9a:ed:85:bf:11:18:
37:a5:8c:19:ba:a3:f4:44:d4:dc:59:26:dc:eb:67:87:1c:a5:
77:80:70:f5:10:6a:b3:a7:86:89:3d:8a:97:3b:82:cb:12:4b:
a8:3d:f8:20:36:00:92:e6:b3:29:e1:0c:9c:f9:e0:41:27:3d:
c6:91:c7:a0:16:73:dd:15:2b:9d:80:54:f8:94:7b:52:7e:bf:
54:76:f0:63:82:f5:04:f9:0e:37:6d:88:34:42:e6:b3:5e:53:
a5:b8:ca:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:34:17 2026 by rpki-client