Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: fjl/A4suWG14/AnLEVRU4X7q3NPbHxGQEsU20Ix5rI4=
Subject key identifier: A5:BD:2D:55:F5:2D:2C:4F:5F:F8:0F:6F:11:95:5C:B8:F1:FD:D1:EE
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019DECA46806E7A1078712795385BB218FF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 18EF
Signing time: Sun 03 May 2026 07:01:30 +0000
Manifest this update: Sun 03 May 2026 07:01:30 +0000
Manifest next update: Mon 04 May 2026 07:01:30 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: u/VzEqg6crUwVl9MCZc3zquPXREpt+ILJRqF8UrDWAY=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 04 May 2026 02:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ec:a4:68:06:e7:a1:07:87:12:79:53:85:bb:21:8f:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 3 07:01:30 2026 GMT
Not After : May 4 07:01:30 2026 GMT
Subject: CN=a5bd2d55f52d2c4f5ff80f6f11955cb8f1fdd1ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0f:16:5d:09:27:f2:9c:a5:bb:c1:74:08:a6:
33:e5:57:ea:dd:86:6f:3c:ce:03:0b:33:bb:e6:51:
1a:46:21:a8:6a:9b:61:d5:0b:d0:e7:93:85:02:2d:
08:b5:a7:68:e1:5c:ce:1d:fc:0c:51:f4:c3:8f:26:
26:29:ed:6d:af:5b:44:14:62:60:ab:b3:49:18:b6:
83:64:a2:b1:bc:5f:7a:6d:15:ee:58:d5:d9:bc:7e:
af:a2:1e:ef:6f:77:f3:36:fc:c0:6a:f6:47:f0:bd:
fa:14:c5:22:09:f3:15:84:92:86:0c:5e:93:3f:3a:
f3:cc:d2:c2:1f:d5:f4:02:87:60:17:d6:21:b2:5c:
26:c3:8d:c4:32:cb:dc:0a:da:2c:68:dd:2d:88:c2:
f5:98:54:f7:05:f6:a9:1c:4e:eb:94:49:93:20:87:
09:8b:5f:30:66:50:4d:48:4f:a2:92:05:b2:db:cb:
79:97:c3:4f:ef:1b:6e:44:2a:a1:22:3a:35:15:bd:
f6:03:7c:d6:29:77:8b:f9:23:c2:06:be:57:81:74:
a8:6f:ba:de:11:0e:87:84:94:f1:fb:3e:47:c5:ab:
ec:c3:0d:0b:f7:ee:10:b6:73:8c:db:1e:3c:ac:d4:
7d:ba:b4:b8:aa:88:33:95:5c:66:bc:7e:64:62:52:
a6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BD:2D:55:F5:2D:2C:4F:5F:F8:0F:6F:11:95:5C:B8:F1:FD:D1:EE
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:17:92:de:25:05:76:7a:39:2d:70:c5:89:0d:ec:a4:26:9b:
c6:f7:dd:59:f9:3b:b2:74:34:ce:36:a8:a9:9c:40:7f:0d:cf:
4e:b3:4d:8f:0a:cf:80:d8:12:ee:09:70:af:77:22:9e:2b:9c:
d6:da:ac:a0:48:54:4f:2d:bb:68:81:57:f5:2e:e7:10:67:8a:
9e:26:0c:a8:0c:88:a4:3a:b5:52:eb:cb:e6:cf:d6:29:60:44:
b5:b9:ba:0a:b7:6e:ba:90:37:a0:91:c8:12:e8:98:ef:52:cd:
ea:b8:c8:53:f4:10:8e:f4:55:f7:1a:0f:04:99:62:0d:03:f6:
02:75:f4:d6:59:89:d3:ec:2c:53:7d:e7:a4:26:6c:1e:d1:61:
4f:09:37:7b:c4:28:45:60:5d:4b:6a:5b:d4:29:26:c9:f2:d2:
da:40:71:0c:50:db:56:3a:6e:af:7a:93:9e:01:22:8b:29:f2:
bd:ea:56:67:f2:a2:46:7b:dc:83:35:c5:0c:54:24:3d:02:e3:
19:2b:9f:a5:08:38:44:c4:ee:b1:09:28:0c:c7:fa:ee:cb:77:
1d:32:d6:ac:90:ed:58:0d:68:e1:56:84:7a:a1:6a:ba:5d:09:
7c:10:86:bb:e4:6f:a6:f1:b7:d9:88:34:87:f5:51:45:94:ba:
79:b2:de:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 3 08:40:49 2026 by rpki-client