
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: s4rpyYK7b8FOpWJWVKv89BK0pIDx1Q5qv7ypfOKukCQ=
Subject key identifier: 39:F9:31:A0:F9:84:4F:9B:C7:10:73:34:C4:94:51:10:FB:FC:F5:53
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019F5EC8F9C923E16DD1361A4EA14EC5F74C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 19AF
Signing time: Tue 14 Jul 2026 04:00:57 +0000
Manifest this update: Tue 14 Jul 2026 04:00:57 +0000
Manifest next update: Wed 15 Jul 2026 04:00:57 +0000
Files and hashes: 1: H-yLjUcnBU32gfTzCq1c3LA4yww.asa (hash: PBQ22jXmW2kScgr9tVTXfL6hDBrDuWL0+iTLcGowRjQ=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: 0V11xnHmeZvh9dsOngL2stqvQ/8wgQM7QRtz6hltDG0=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 Jul 2026 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:5e:c8:f9:c9:23:e1:6d:d1:36:1a:4e:a1:4e:c5:f7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jul 14 04:00:57 2026 GMT
Not After : Jul 15 04:00:57 2026 GMT
Subject: CN=39f931a0f9844f9bc7107334c4945110fbfcf553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:fa:33:82:ad:66:47:34:de:1e:ef:e4:fe:
d8:c2:26:54:82:b6:6d:2f:48:cb:31:1a:9d:7c:56:
4e:bd:5d:5b:42:c8:6e:f7:65:ac:94:80:fb:a4:30:
be:e8:16:4b:14:78:d7:18:30:66:e8:10:cc:f7:73:
78:28:eb:92:e8:57:b4:27:b8:6f:e1:0e:db:54:99:
7c:14:48:84:96:02:d4:b4:65:6a:5b:b4:b6:17:09:
eb:5d:ca:9f:ab:cd:01:be:42:b8:e9:e0:95:e4:64:
2d:0c:94:b3:87:04:75:5c:5d:d4:da:a3:8f:97:30:
6b:47:26:35:8d:07:10:ea:91:a6:b5:ba:6e:42:99:
f4:fe:f6:64:ab:9f:63:54:21:4d:e8:b6:b0:87:1f:
de:57:44:e8:5e:b8:e8:77:df:57:98:71:43:05:b2:
0c:aa:77:8e:65:7c:3a:bc:c7:ff:af:11:ca:bd:2d:
33:b7:88:5e:76:5e:54:4a:52:22:e7:75:22:03:e8:
f0:17:d6:c3:5f:f0:0b:85:b9:d9:65:4d:4e:28:e9:
a9:0b:86:d7:f4:0e:aa:1b:7c:19:b9:79:3d:92:ee:
de:74:a6:81:88:93:e2:00:02:eb:a4:1b:a9:55:de:
f5:ff:3d:ad:19:f3:cc:e1:8a:5b:69:92:9e:d2:4c:
5f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F9:31:A0:F9:84:4F:9B:C7:10:73:34:C4:94:51:10:FB:FC:F5:53
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:44:db:66:c4:f6:a8:d8:ea:8e:e5:6d:75:86:3b:9b:af:a9:
ff:df:e1:cb:ff:d4:19:e3:e4:a3:4a:5d:b6:be:a0:6b:b0:49:
9d:67:39:c7:67:55:31:e8:21:60:9f:a3:6e:ba:46:b0:0b:de:
4f:b6:cf:3e:51:4b:5a:b3:cc:52:8e:ef:dd:96:62:4c:07:0f:
86:ee:93:c0:bc:54:5b:2b:ee:92:ed:2e:23:7d:c4:a9:dd:d4:
37:46:56:44:cf:9a:19:d3:56:37:c9:20:67:2f:ac:47:e6:ee:
19:a0:19:ad:c8:76:b5:ed:6c:6d:96:07:1b:41:77:05:44:a6:
24:14:77:22:28:f0:da:53:80:50:61:06:c2:20:95:5d:54:bd:
8a:93:1c:bf:98:c9:2c:c8:9d:09:09:88:03:41:b7:7d:97:74:
8e:6d:08:60:ff:1c:1b:a1:3c:a5:81:60:08:37:4c:ec:82:24:
83:c6:b4:a9:5c:3f:8c:c5:90:a5:50:2e:77:77:60:ea:5a:be:
09:5d:ee:c4:4d:3a:98:68:fe:10:d5:9b:11:e8:d1:85:5c:ec:
f4:60:fc:d7:3a:57:3d:e2:d0:70:2f:3e:69:4f:e5:01:98:50:
ca:20:7d:f7:c8:bb:d6:b5:05:28:fb:64:1a:70:9d:40:19:2a:
0b:f7:90:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 14 06:38:25 2026 by rpki-client