Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: X+1qtPa9awYocFwcQx67adRQDjHHi2wrmldFd2ueE+M=
Subject key identifier: CF:E5:E6:D0:6D:9B:2F:1B:E4:0B:B6:95:54:1E:62:89:D4:6F:A6:D4
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CBB83490E0B19243DB321FB0539311266
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1850
Signing time: Thu 05 Mar 2026 01:01:09 +0000
Manifest this update: Thu 05 Mar 2026 01:01:09 +0000
Manifest next update: Fri 06 Mar 2026 01:01:09 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: d4CTAcT8VzsdqBoHqnyR49JD2CWahUs0YIV0FfrVd5M=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 19:55:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bb:83:49:0e:0b:19:24:3d:b3:21:fb:05:39:31:12:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 5 01:01:09 2026 GMT
Not After : Mar 6 01:01:09 2026 GMT
Subject: CN=cfe5e6d06d9b2f1be40bb695541e6289d46fa6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f8:b9:4e:1e:28:33:dd:fd:6c:5a:5c:cf:0f:
7d:00:b5:b3:e9:47:98:91:cb:e1:60:5a:bc:29:d0:
eb:0b:73:3c:79:26:74:2b:a7:68:b5:9a:0f:c8:23:
cb:f5:a3:09:d4:91:15:88:08:ef:a3:f3:88:19:dd:
8c:73:31:b9:3a:12:e4:2e:33:fc:ff:3e:b8:e7:fd:
28:18:bd:e3:a6:cc:20:78:68:fe:3e:06:71:05:f2:
c1:28:30:f1:4f:a1:40:b4:94:6b:6d:8a:33:db:06:
cd:61:88:2f:58:71:56:59:2a:e6:03:74:65:7e:9d:
61:3c:45:ec:df:7c:46:9e:9a:84:c4:df:12:3d:62:
f5:44:20:b2:d0:97:de:12:92:75:cb:d1:04:8d:aa:
59:ba:b3:d9:30:d8:2e:b0:a3:13:90:21:95:f5:02:
7c:2d:56:e4:00:f0:e2:01:47:2c:21:6d:10:74:fb:
92:a4:ec:dd:89:ae:cc:ba:5b:b0:8e:cc:cb:ed:66:
a7:94:d8:4f:5f:70:e4:66:76:92:10:60:42:85:68:
b5:09:e5:6d:5a:53:62:47:33:1d:1c:e3:76:1a:05:
19:36:d3:ce:ba:78:6a:1d:a6:ae:fe:ee:f7:a9:54:
27:fc:4d:bb:63:c7:50:ae:48:3f:6f:1d:07:b8:73:
d0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E5:E6:D0:6D:9B:2F:1B:E4:0B:B6:95:54:1E:62:89:D4:6F:A6:D4
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e2:d2:82:33:93:c1:5d:f0:c7:ce:76:91:f3:de:8a:92:d3:
7d:b1:90:74:18:71:a3:de:75:f0:5c:6f:e4:24:81:0a:3b:96:
5a:f0:de:fe:80:f2:72:ef:48:0d:e9:97:1d:34:52:92:0a:c5:
36:a8:44:53:a4:7f:8a:c3:ab:cd:30:1e:25:1d:0e:e4:09:03:
d0:af:b4:5a:88:e6:e8:b2:70:e1:37:4b:35:50:3a:ef:c9:a9:
cc:a3:27:c1:21:9d:57:6e:da:c2:08:b7:3c:c2:81:8c:f4:85:
2b:97:1c:73:a5:87:1d:12:b5:bd:d0:ae:24:bd:9d:2f:d1:04:
df:57:ea:57:10:70:70:ee:f9:fc:6b:37:3a:68:38:90:cc:f5:
97:37:7a:d4:33:81:f4:23:15:ce:e7:60:d7:dd:6a:e6:ac:62:
ed:0e:4d:f4:3f:67:d2:8d:0c:da:8c:23:7c:eb:8b:9b:d1:35:
82:e0:18:0e:83:93:f8:b7:e0:7b:89:28:52:fb:c8:4c:ba:fe:
2a:9a:dd:d9:97:03:b1:77:ea:44:82:be:8d:72:0f:25:20:ba:
b2:92:ea:85:33:df:cb:64:8f:94:44:e9:d9:cd:ae:81:b6:04:
31:fa:1f:df:3d:20:e2:2c:26:ce:b7:f9:fc:c7:f5:52:ce:ab:
80:4b:b2:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 05:28:13 2026 by rpki-client