Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: Edrxu01vARUjA0kxrKlOZwoWRcmXNedaDUZGaS8iQb0=
Subject key identifier: 95:B5:4E:F8:6E:4E:BB:9D:45:02:27:FE:3D:4B:28:6D:1E:21:D9:13
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019EE7B1F8673BD7CB665B7BEEA452092E50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1971
Signing time: Sun 21 Jun 2026 01:01:00 +0000
Manifest this update: Sun 21 Jun 2026 01:01:00 +0000
Manifest next update: Mon 22 Jun 2026 01:01:00 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: FbDZEOzgDgs/51XSPcb7QFWPE6i08a93by+53UcWGvw=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 01:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e7:b1:f8:67:3b:d7:cb:66:5b:7b:ee:a4:52:09:2e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 21 01:01:00 2026 GMT
Not After : Jun 22 01:01:00 2026 GMT
Subject: CN=95b54ef86e4ebb9d450227fe3d4b286d1e21d913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:bb:c2:41:86:95:a6:fb:c0:f0:43:cf:9a:dc:
30:a2:53:39:6d:a4:ab:0c:4a:41:2d:4a:62:83:8c:
09:42:02:b3:c4:01:10:e5:82:78:a6:5f:ea:43:d0:
de:e0:69:4b:31:43:64:e8:2d:73:56:0c:a8:71:d2:
d4:0d:cc:0b:a9:99:d9:b2:b5:88:46:3f:df:60:6c:
be:00:db:1f:7f:f2:67:04:b9:40:54:2d:c6:19:86:
7f:44:4c:48:07:dc:41:01:05:cf:2c:b4:29:56:95:
d5:4b:f9:74:00:12:ed:3f:0a:10:d3:bd:11:11:16:
e3:8c:56:74:dc:cf:b9:ed:ee:05:b5:9f:58:87:e0:
31:53:a6:a6:ea:fa:5f:56:62:7f:fe:37:10:6f:48:
32:e2:80:45:7f:d5:9b:6e:59:c3:b0:0f:a2:ff:c8:
15:31:ce:a4:6c:8e:c4:ce:8a:c7:db:c4:21:96:b6:
b9:31:2c:6f:fc:d0:af:54:e8:11:b6:3e:f2:34:0c:
5f:96:ac:16:b3:1b:a6:7c:9f:38:82:7e:7c:be:45:
e1:eb:7d:ac:a6:53:d9:01:a2:f4:54:ae:ce:dc:f4:
54:cd:c7:3c:18:1f:8a:5b:a3:77:19:a6:08:d0:42:
1d:19:fc:f0:c6:e0:d7:33:e2:6e:ae:25:6b:eb:1e:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B5:4E:F8:6E:4E:BB:9D:45:02:27:FE:3D:4B:28:6D:1E:21:D9:13
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:ac:ca:14:30:8a:4d:74:69:5f:46:92:75:8b:10:c7:96:e1:
cc:df:5a:e6:8d:66:e4:05:d4:bd:26:2e:dc:59:ab:b9:fc:30:
f9:fe:85:45:e9:7f:f7:d3:bd:1b:95:66:81:33:d9:97:10:56:
2e:bd:b2:2b:c4:28:af:48:ba:65:c4:b9:f8:c0:f0:0b:e0:b9:
b1:7c:3b:4f:af:90:ba:7f:18:7a:7c:d8:9f:75:d0:62:2f:e7:
bc:4e:b8:fc:ca:2e:ff:75:68:0e:89:6d:b4:ec:e9:76:a3:b4:
3f:04:a6:2f:8a:a1:4f:8f:ef:0d:31:e2:7c:62:43:2c:f9:af:
e1:35:45:30:45:97:fa:5e:cc:df:ac:97:4c:07:84:eb:44:08:
e1:ed:05:06:3d:9f:b3:12:7d:42:13:8d:f4:10:71:e0:f0:fe:
45:97:57:4f:b6:3b:d6:dd:82:2d:78:2b:27:52:38:68:56:60:
ed:13:38:e9:08:16:f6:87:56:9d:6f:46:3c:b4:48:11:39:38:
9c:79:6a:49:68:fc:20:98:7b:77:e7:80:81:ce:bf:05:2a:5a:
50:ce:0a:1e:13:c7:ec:98:d1:e9:d6:be:d4:b8:f2:b8:54:4b:
f3:01:4c:56:77:e9:7f:ae:40:04:da:b0:aa:62:79:f4:7c:fe:
33:14:37:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 08:23:40 2026 by rpki-client