Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: Icqx4phxBJ7eqQUCymp2VblGUlAKbkPHFyfjQPdSyCc=
Subject key identifier: 7D:7E:0D:7B:1D:84:C2:76:38:DA:17:6B:74:60:06:75:B0:FA:05:7E
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019CC719C544754074B4AA839523069C397D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1856
Signing time: Sat 07 Mar 2026 07:01:20 +0000
Manifest this update: Sat 07 Mar 2026 07:01:20 +0000
Manifest next update: Sun 08 Mar 2026 07:01:20 +0000
Files and hashes: 1: 4pTe3zVq_LBaEng6PDXChOvOrYM.asa (hash: ajIeKP46hnwug0OLXYz0+5iBNt1utjAL/IG5/ovLQUU=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: RvlBnaWIEIi+zhUYrpQg/ih6w4on3j01BNm9Lbi9UBY=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c7:19:c5:44:75:40:74:b4:aa:83:95:23:06:9c:39:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Mar 7 07:01:20 2026 GMT
Not After : Mar 8 07:01:20 2026 GMT
Subject: CN=7d7e0d7b1d84c27638da176b74600675b0fa057e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:72:5d:e9:8e:7b:bf:bf:81:61:85:8f:9b:2d:
98:7b:d9:29:2e:8f:c6:29:4b:c8:a2:bd:27:9a:fd:
d7:63:9d:56:de:fc:84:76:05:82:95:d5:35:3d:91:
ba:d2:47:88:63:8b:6e:3a:ad:a4:51:77:e5:bf:70:
46:73:85:52:d4:17:96:91:a9:7b:67:38:68:fd:07:
d8:48:cd:6d:c1:f0:9e:80:38:57:6d:35:ab:14:32:
da:44:6a:56:ba:e6:ff:39:b5:70:cb:6e:ea:1d:13:
09:a0:f2:2a:c7:97:bc:30:3a:78:94:80:28:e5:99:
df:31:73:8a:56:2c:ab:d7:d8:c4:a3:c4:4c:b8:d9:
0c:66:1a:9c:70:70:66:2b:e1:06:78:df:7f:0c:38:
d4:96:f3:32:d1:86:a7:e8:ec:e4:6f:e4:3f:ac:69:
48:66:d9:e1:3f:c8:f5:cb:5d:45:58:6c:05:c8:f0:
52:0d:7e:d3:47:8d:1a:42:3b:5b:44:33:6b:e2:9b:
71:e1:f8:2a:05:9e:b4:9a:a2:c9:4c:e3:9c:c5:63:
50:ea:8e:ef:0c:f5:be:8d:d9:9e:18:84:03:a6:f6:
1b:db:c9:e4:77:2e:09:2b:40:6e:94:68:ba:5e:13:
33:24:8b:a8:6d:a7:84:c2:4a:e9:52:59:38:23:4d:
f6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7E:0D:7B:1D:84:C2:76:38:DA:17:6B:74:60:06:75:B0:FA:05:7E
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:6d:9f:2f:4b:b4:0f:ec:dd:23:04:22:84:03:8b:ea:b9:9c:
42:f3:b8:0c:c9:13:bb:45:2f:bb:45:07:13:19:48:19:2d:9f:
c5:d9:ff:44:76:88:4f:e4:b1:78:6b:80:f2:dc:19:25:52:2d:
2a:8d:51:a5:e0:06:65:d9:65:1c:15:aa:6f:8c:12:ec:9d:47:
09:20:14:d3:14:3d:ef:27:a3:87:f2:21:c4:37:86:49:5d:27:
43:38:fa:5c:82:f6:2e:d4:d4:f3:0a:e8:db:d3:f2:59:b5:0c:
51:ce:bb:c3:88:e4:2e:dc:4d:71:f2:da:e6:97:f7:01:40:de:
95:23:2e:3b:9a:15:e1:f3:56:19:2a:6e:1d:a3:e1:07:73:92:
28:fa:cb:93:3d:0b:03:dd:62:e6:bb:da:52:df:90:61:b8:65:
a8:6c:c6:82:f4:51:e7:e6:e0:ce:bd:1b:90:6b:f3:e9:4f:fa:
f5:b0:4e:c1:c6:7a:94:75:fd:e7:bd:1b:1a:60:f2:86:2b:c1:
0a:48:44:78:11:d5:25:14:01:aa:09:8a:9c:7d:a4:7e:0b:4d:
54:84:10:b3:04:db:4a:08:9d:91:be:12:28:ac:f1:81:2e:7a:
46:99:ef:c4:34:f7:a1:c8:96:1a:c4:5a:0f:49:51:fa:8c:b8:
31:86:64:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 09:58:33 2026 by rpki-client