Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: FVawaYil4gDuilqx3nDdvr1sJFtFGUWECMB32A2rNJw=
Subject key identifier: 90:22:F6:4A:9B:39:59:C2:FB:DD:E4:60:D5:7B:73:C3:4A:8D:1F:D0
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E8EDC4BE5E2F43E291269018BBE1EB634
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1943
Signing time: Wed 03 Jun 2026 19:01:02 +0000
Manifest this update: Wed 03 Jun 2026 19:01:02 +0000
Manifest next update: Thu 04 Jun 2026 19:01:02 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: Qjzh9iht8eGo8S795uhHGOgnKvV98seo7sqrriFm53U=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8e:dc:4b:e5:e2:f4:3e:29:12:69:01:8b:be:1e:b6:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: Jun 3 19:01:02 2026 GMT
Not After : Jun 4 19:01:02 2026 GMT
Subject: CN=9022f64a9b3959c2fbdde460d57b73c34a8d1fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6e:a8:76:56:51:c9:23:19:67:ef:29:db:15:
d4:fa:69:8f:fb:60:f6:c6:42:0d:bc:ec:3e:f9:4c:
ca:af:80:92:b0:b0:7e:74:cd:d5:82:6f:67:a7:03:
b6:d2:1f:e1:9e:2f:77:b4:6c:2b:d3:29:ad:33:a4:
ee:3f:07:c9:4a:3a:67:88:3e:4a:48:d4:66:a1:2e:
b0:3d:cf:d4:25:8f:c7:30:46:ab:5a:c9:cc:35:12:
3c:7a:d8:c3:37:2f:59:31:1b:e9:e8:09:87:fe:30:
bf:e0:9d:03:0b:28:e9:bb:5f:d6:cd:87:2b:f2:50:
96:48:19:66:11:a1:64:b9:ca:72:b0:52:07:fd:36:
e7:e8:07:55:ad:55:c6:12:7e:7d:7f:fe:cb:3d:b5:
ce:cc:a8:be:bd:e7:27:fe:c2:58:7a:23:b1:ce:15:
cd:13:69:53:49:81:b1:0e:b2:7a:5b:93:fe:49:97:
8c:fd:d2:5d:7c:44:9e:60:61:48:40:6e:0a:ee:24:
e1:d9:e2:5e:58:3c:d7:09:e9:67:9c:b4:cf:8e:7f:
79:c5:8c:7f:7e:0c:62:60:e0:8b:51:cd:d1:2a:af:
a1:80:b3:3d:a1:f5:a8:ab:46:84:71:ea:34:9c:5f:
f0:80:6c:92:22:0f:9d:c5:f5:44:e9:7b:ae:dc:98:
8a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:22:F6:4A:9B:39:59:C2:FB:DD:E4:60:D5:7B:73:C3:4A:8D:1F:D0
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:28:12:8b:bf:a6:71:69:9d:fe:44:fc:fa:75:a4:11:a6:fa:
c7:9a:de:60:02:7b:77:b6:70:21:90:09:39:b2:19:a2:a8:b2:
2c:0c:02:72:a2:1f:7b:cc:de:47:61:fe:a4:3b:0a:61:96:ac:
81:1e:9f:f2:f8:fa:9b:2d:f0:6d:25:41:28:54:fc:09:9d:9a:
7d:ac:53:76:5a:90:e8:30:8d:be:e0:12:ba:83:3c:05:d7:30:
37:2f:8a:27:c4:61:e8:2b:98:80:04:9b:25:1c:10:7f:32:d6:
e2:7c:0a:11:c3:49:8c:47:70:48:f7:6e:f1:f0:00:9b:3c:c8:
dc:7a:2e:c6:e4:7d:df:1b:9f:13:cc:6a:8b:b2:bd:6b:77:eb:
fd:d8:b8:fe:85:55:ee:8d:4b:ed:b6:5f:46:0c:21:e9:4d:a1:
72:f7:78:c9:fc:41:a1:2d:35:4c:d0:78:48:89:61:e5:c2:72:
87:e0:9f:6b:7e:52:b6:fe:d6:8d:b0:66:a0:88:6f:f8:4c:01:
bc:7b:12:f2:9a:2f:fb:d3:55:07:61:38:90:5f:ef:5b:5b:48:
a8:11:9a:69:e6:bd:fb:f4:cd:8e:1a:04:36:49:94:29:06:df:
c8:c5:0a:15:2c:55:ee:46:bb:ad:ff:73:6f:66:24:ba:d7:7f:
50:9e:c3:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 02:49:51 2026 by rpki-client