
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: lkhducAwqRahS7+Dkr8lDM3LqvN7QJfNWN/Mo8v11YE=
Subject key identifier: 04:9B:7D:47:57:06:4B:59:35:DD:F1:1F:49:74:5E:DD:DB:80:FA:10
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F1F0E6A3BA2979EBD1B6DF5D07943267C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 198E
Signing time: Wed 01 Jul 2026 19:01:06 +0000
Manifest this update: Wed 01 Jul 2026 19:01:06 +0000
Manifest next update: Thu 02 Jul 2026 19:01:06 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: WqNCOhsmWYPt5bElxVbGsF5UrzW7KxARoicGB2Asyeg=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 02 Jul 2026 14:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1f:0e:6a:3b:a2:97:9e:bd:1b:6d:f5:d0:79:43:26:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 1 19:01:06 2026 GMT
Not After : Jul 2 19:01:06 2026 GMT
Subject: CN=049b7d4757064b5935ddf11f49745edddb80fa10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:02:a8:11:2f:69:a8:14:52:8f:6a:f0:f7:91:
c1:1a:da:47:b7:58:63:d6:a5:56:b5:37:4f:ee:7f:
e6:8d:53:da:7f:46:f7:df:ca:c6:e8:79:93:44:2e:
16:3c:f7:c1:ab:6c:a0:c5:27:b9:aa:7f:9f:6b:2a:
7e:9d:25:fe:b5:fc:c7:cc:0c:a7:d0:bf:c0:c2:b2:
e7:32:8d:2b:46:ea:63:f6:65:74:0b:cd:8d:1d:58:
f4:82:4b:0b:86:86:3b:a5:1b:22:e2:65:a4:d4:da:
d8:c2:c5:c5:30:2b:23:d9:42:1f:93:5e:7a:bf:8c:
a7:7c:5c:36:4e:9d:94:e5:19:c1:12:c4:b4:b7:10:
43:4b:ba:b8:2d:2f:3d:ff:13:af:56:2e:40:c7:6f:
91:8e:4e:88:b3:fa:3d:4c:0d:81:04:d8:27:6b:16:
09:c7:87:93:a3:7f:81:55:f5:4a:cd:ff:1c:0e:59:
c9:77:21:25:0f:5b:cd:7a:07:1a:3e:3e:7d:7b:fd:
d9:bb:6c:1c:38:5e:37:54:88:0d:56:fa:39:cb:5b:
d2:0f:53:5b:27:e1:d4:51:5e:d4:4d:29:ff:46:7c:
d2:d3:ed:d7:0f:f9:d9:af:59:0b:73:83:d4:98:f7:
63:d1:aa:03:31:9c:c2:36:a9:ba:50:91:29:17:4a:
1c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9B:7D:47:57:06:4B:59:35:DD:F1:1F:49:74:5E:DD:DB:80:FA:10
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:73:1f:3e:f2:4e:87:07:d0:7e:d6:e2:65:05:f1:6f:69:b0:
09:ba:ce:77:71:4b:cc:ae:98:30:9a:21:bc:7e:b8:fa:0d:2b:
90:9c:b8:f2:5d:b0:05:19:26:c8:d6:8b:6e:f1:dd:92:92:66:
6c:4d:5e:d7:a8:71:6a:03:40:19:0b:15:c6:6b:3e:70:4e:de:
88:69:c2:87:b5:57:f1:6b:3a:ac:79:19:75:1d:d9:32:db:ab:
e1:3e:d3:7a:cd:09:9c:97:4a:3c:6f:53:04:70:85:a8:5e:37:
e6:13:ad:17:c3:89:b4:81:b8:66:ab:78:5a:f5:e8:02:63:ca:
54:3f:60:1e:04:a3:3b:78:1f:a0:b7:c6:6a:54:78:be:73:cc:
9f:24:71:db:fd:cb:43:87:d5:d5:a8:0d:8f:8f:42:13:0b:ab:
8d:be:21:b2:67:4b:d3:a0:39:12:6d:93:6f:4b:92:6d:5e:38:
b3:80:8e:2b:b2:13:2a:e7:46:78:20:6c:dd:7b:6d:50:e1:46:
3a:7d:8c:c9:96:0e:ed:f8:cb:6a:03:e7:81:63:8d:e6:c2:27:
38:31:62:4d:f0:e2:ea:9b:6e:47:b7:9f:96:7c:de:41:2e:26:
36:c3:0c:04:27:fe:3b:37:c4:e4:1e:d9:82:80:63:a8:1e:65:
f6:a0:0d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 21:04:36 2026 by rpki-client