
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: LBcbPWwY36l2SEexIeSjp5X++FYcsZi89+PtNxqXJuQ=
Subject key identifier: 02:57:78:20:AD:0E:F5:F0:13:89:67:61:56:67:1E:C3:11:46:CA:6F
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F4D6833008BF0115C018D4251CCD5EFC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 19A6
Signing time: Fri 10 Jul 2026 19:01:42 +0000
Manifest this update: Fri 10 Jul 2026 19:01:42 +0000
Manifest next update: Sat 11 Jul 2026 19:01:42 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: meMw3pKVXY0tkGOhl04LM4BqviTAunuORyLq5muDE+s=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 11 Jul 2026 19:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:4d:68:33:00:8b:f0:11:5c:01:8d:42:51:cc:d5:ef:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 10 19:01:42 2026 GMT
Not After : Jul 11 19:01:42 2026 GMT
Subject: CN=02577820ad0ef5f01389676156671ec31146ca6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8e:ab:cd:8a:b9:a5:c2:ac:71:ed:e5:c3:72:
42:ee:c5:d4:0a:d5:00:79:92:8b:6b:ef:3c:6d:52:
14:db:4e:28:6d:c9:55:16:c9:8c:4f:3a:7f:17:27:
31:4e:0a:78:40:a4:f6:28:a1:f6:57:b9:fd:03:e0:
a9:d2:d1:6a:52:f3:1f:34:96:68:e0:cc:92:b6:ad:
02:41:c1:dd:54:e4:4a:3f:70:47:a9:95:c8:dc:06:
13:5c:0d:13:d0:24:97:57:4b:9b:d1:e4:b3:85:dc:
87:b2:09:fb:92:37:a8:f5:f0:98:2b:2a:4f:64:62:
90:c8:c6:f5:e3:57:24:1a:f0:3f:1a:61:d4:57:a4:
a3:6c:da:84:9e:1d:34:d4:27:57:34:26:0d:ce:e4:
04:c6:e5:54:94:94:ae:5a:c6:ee:72:7e:4b:d9:4d:
7c:ff:3f:5f:00:18:d0:86:2b:cf:33:0b:3e:7d:66:
55:69:8c:a4:6d:7f:9a:0f:c7:a9:5e:da:e5:62:80:
a9:21:7f:70:e2:8e:f2:74:c9:7a:81:87:b8:08:d2:
94:0a:81:22:2c:d5:de:d6:fe:e3:bc:31:8c:35:b2:
50:ea:7d:51:4f:35:55:eb:a9:7f:26:d8:6f:98:c7:
67:b9:c5:b9:49:6b:44:de:31:c7:ec:a5:ff:96:0b:
29:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:57:78:20:AD:0E:F5:F0:13:89:67:61:56:67:1E:C3:11:46:CA:6F
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:b5:cb:a4:de:33:0b:db:16:4c:52:ba:ab:ea:4d:9e:54:1d:
98:17:03:66:b3:8e:51:79:92:73:8b:f8:78:27:d8:31:be:41:
1e:fa:3c:7e:71:1b:2a:6d:fe:62:fb:59:d1:db:90:43:25:52:
ad:8d:99:fb:b5:98:3b:a2:6d:b3:a4:5e:45:54:ff:e9:99:a8:
09:09:12:cd:1b:78:99:88:db:0b:4b:88:a7:5d:8e:c0:73:a0:
7c:d3:34:f2:b6:f6:53:fc:ec:85:f7:51:aa:9e:22:8d:bc:b8:
95:e0:3a:db:26:76:6d:2b:26:a1:34:d2:ae:48:d1:03:82:a7:
18:57:0a:d8:4d:9a:20:9c:92:ce:e9:76:0e:cf:21:c1:4f:2d:
8a:47:18:06:84:c3:ba:93:da:d1:75:c2:36:a4:2c:2e:2f:8f:
ee:fe:37:57:42:b5:4e:09:d5:e9:0c:c9:44:a9:63:e2:b0:63:
e6:5d:d4:dd:9c:e3:9a:e6:61:5f:9b:ab:12:8e:2e:90:57:6b:
e1:28:4e:b6:ed:bb:60:67:8a:48:dd:b2:9c:a7:4b:73:29:c9:
6a:82:2c:a1:84:bb:11:63:0c:74:83:e4:69:b9:fc:b8:b2:cb:
06:3c:8e:43:76:ce:66:07:8d:ab:dc:c3:ba:e6:a6:b9:e5:08:
7a:0f:fe:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 04:36:35 2026 by rpki-client