Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: CITVRvUrzcEtAurFd0sQwigUaY0WoteAS6xvtknRQro=
Subject key identifier: 45:43:A8:2D:AA:5A:FC:FB:D4:3B:6D:EB:17:01:D3:70:51:53:DC:89
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EDE0A066B84A87F98F342D403CE9ACF62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 196C
Signing time: Fri 19 Jun 2026 04:00:59 +0000
Manifest this update: Fri 19 Jun 2026 04:00:59 +0000
Manifest next update: Sat 20 Jun 2026 04:00:59 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: DXzjxzw+gdz3XcAQITv3V1PWoNqcjA/nfBwJ4kqqJ2k=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Jun 2026 04:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:de:0a:06:6b:84:a8:7f:98:f3:42:d4:03:ce:9a:cf:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 19 04:00:59 2026 GMT
Not After : Jun 20 04:00:59 2026 GMT
Subject: CN=4543a82daa5afcfbd43b6deb1701d3705153dc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:41:8f:9f:68:6e:39:85:64:ff:c9:70:be:f2:
ba:a3:ca:1f:71:5d:3e:3b:46:35:52:31:91:f0:6a:
02:c1:24:21:db:dc:9c:53:78:20:7a:96:8f:0c:f8:
65:b8:9f:5e:e8:e4:a2:56:62:17:34:e1:8c:43:66:
8d:0f:99:c7:68:34:7e:3a:b7:4f:77:a6:ae:f9:b8:
c3:e2:b3:36:3e:a2:41:59:42:42:f1:78:0f:9e:2d:
ec:d0:6c:ce:54:19:43:b7:e9:ce:3c:84:9c:04:af:
12:4a:be:7c:57:04:32:52:46:ce:05:24:f6:e0:0a:
d1:c5:b0:78:cc:ed:73:10:90:45:73:b8:fa:fd:33:
7d:32:70:8e:01:64:5a:99:91:f6:39:65:7c:a9:af:
66:41:8f:12:b5:80:e7:ad:c7:c8:48:73:43:b6:9a:
b1:d7:aa:fc:fc:92:f0:e4:62:fc:0e:82:56:d7:93:
75:db:fc:f2:eb:70:d3:49:a7:35:9b:07:4d:06:57:
86:be:a6:72:66:75:cc:98:57:41:97:38:e2:d2:97:
ff:8e:ec:6f:be:64:ae:85:e8:fe:05:3c:47:a7:2a:
7b:aa:24:91:d1:1e:09:99:6f:58:9c:9b:b0:72:fd:
35:fb:bc:49:dc:74:16:1c:10:ff:91:de:94:bb:d3:
d0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:43:A8:2D:AA:5A:FC:FB:D4:3B:6D:EB:17:01:D3:70:51:53:DC:89
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:79:3b:2b:ff:79:21:52:cd:b0:c8:b6:0a:2c:8f:d9:ce:68:
e3:4b:47:18:da:c2:76:a5:94:bd:95:42:fe:b8:1e:f9:a2:47:
c6:9b:79:da:a7:2d:3c:e5:2d:99:3e:51:50:54:19:e0:0c:87:
6b:65:5f:b8:68:8a:7f:a0:e3:4b:d3:b0:df:a9:3e:78:88:c6:
c4:6d:6b:4e:61:3c:37:9d:3a:70:33:86:e5:96:a2:f9:bd:b8:
5d:d8:1e:0a:ea:50:b5:78:ec:8a:d0:19:54:e5:d7:79:3c:c2:
60:48:13:fb:ee:f1:fa:db:bc:60:65:24:d5:e0:f0:60:88:be:
76:bf:a6:a2:0c:e1:62:cc:15:79:8e:41:56:18:46:11:78:17:
17:58:1b:51:a6:1f:e9:78:23:9c:ef:fa:d6:80:70:8d:f1:81:
04:a8:12:92:c7:38:3b:da:f5:da:7a:24:02:d3:40:88:a9:96:
a0:87:88:2d:af:16:c2:0e:41:6a:39:9d:1f:ef:2a:23:aa:74:
7c:74:8d:68:36:54:36:55:0f:09:69:db:3d:88:6b:2a:5c:e2:
d7:f4:34:c6:2c:6c:43:e8:33:8f:4b:60:e9:84:f7:ab:17:e7:
f9:ef:9e:72:77:d4:d5:9e:33:6f:41:d4:15:ca:ed:c7:a0:40:
15:90:7b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 19 14:35:45 2026 by rpki-client