Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: +uCeAv7JYZMq0Rz/NdkoDE/C2wYrhNL0MOiW7LxdpXo=
Subject key identifier: E5:57:6A:21:37:32:96:EF:AC:E0:AF:91:D5:0A:29:8C:88:4D:03:C1
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E5E94BDDF21E21E178FA0E995B2BB35C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 192A
Signing time: Mon 25 May 2026 10:01:06 +0000
Manifest this update: Mon 25 May 2026 10:01:06 +0000
Manifest next update: Tue 26 May 2026 10:01:06 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: NOZ3xqd0KhFrDit3ajRQnmumlo7P1Nwe3qtRMYjUG9E=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:5e:94:bd:df:21:e2:1e:17:8f:a0:e9:95:b2:bb:35:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 25 10:01:06 2026 GMT
Not After : May 26 10:01:06 2026 GMT
Subject: CN=e5576a21373296eface0af91d50a298c884d03c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:b2:65:bb:51:e4:4c:e8:3f:ec:7b:ad:85:28:
df:09:46:dd:01:0e:10:3a:23:66:8c:9c:9e:9a:d1:
4c:24:6a:09:a2:57:65:ea:95:17:1c:ef:1d:47:10:
31:54:e6:57:3c:39:4e:d1:c0:e1:b5:a4:15:8e:94:
5a:51:37:cb:df:da:88:2c:a5:7f:1f:41:ca:56:2e:
11:0a:29:aa:48:7e:40:40:7b:b3:8b:b0:9c:2c:56:
4f:c5:58:c3:0f:99:f8:8b:21:ac:d9:8e:96:b0:34:
d1:aa:24:fb:2d:99:f8:fd:cf:bc:1e:ec:87:13:10:
1e:de:f3:aa:6b:a5:d1:a3:84:a2:45:0a:71:94:3f:
e8:1a:11:bf:93:06:aa:1a:c4:78:02:7b:44:38:aa:
29:0d:73:54:a7:fc:2d:a6:75:d3:01:f5:de:1a:9d:
11:b1:23:d0:19:80:e8:24:1b:fb:44:e0:a9:d5:a1:
6d:1c:a9:cf:da:1f:0d:67:bc:43:c5:e2:a7:ba:6e:
f9:ca:9b:75:9d:8d:d7:91:1a:e5:75:e1:43:23:e9:
dc:9d:66:42:03:44:ae:1e:2c:64:02:b6:8a:af:56:
00:4d:b7:e8:11:6f:88:56:f8:36:7e:b7:01:c7:b3:
00:94:4d:98:13:25:14:fd:93:c9:5f:d1:27:81:f7:
60:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:57:6A:21:37:32:96:EF:AC:E0:AF:91:D5:0A:29:8C:88:4D:03:C1
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:4c:06:88:c4:88:a1:bb:a6:af:ac:dd:13:e6:e2:27:5e:67:
30:f8:ba:6d:10:b4:a3:e9:6d:dd:a0:0e:d6:24:d4:43:3d:6d:
02:82:53:34:97:4c:fb:5b:18:29:e9:dc:35:b7:a9:a5:86:a8:
9e:b1:8b:45:71:f8:20:75:02:32:2d:0b:ae:ca:24:47:68:63:
ff:6f:43:b9:52:bd:fe:33:65:4a:4d:92:a5:83:36:6f:ab:aa:
59:eb:2e:f7:e8:8c:84:4b:79:e5:60:23:b4:55:24:22:2e:8a:
fa:50:4e:4f:cf:a4:71:8b:b7:4d:f6:c1:3c:7a:4e:9a:36:07:
f2:31:61:69:77:66:a9:53:fb:a0:25:28:19:46:c0:66:30:91:
9c:bd:50:0e:bd:42:f6:df:43:11:f8:b0:e8:44:1c:52:8e:30:
06:a6:ef:41:62:9b:bc:73:d9:79:06:89:0d:de:14:18:a8:db:
fa:f4:88:ba:10:24:de:e8:62:79:d8:35:0d:f3:41:46:1f:78:
dc:b0:1e:99:0e:55:54:64:dd:c2:1b:e6:f8:67:8c:cb:0f:e7:
64:7b:4c:7d:eb:3d:fa:65:dc:50:67:65:bb:e4:31:5f:e3:dd:
c5:b9:3b:2c:24:7b:c7:2e:4d:8c:23:42:d9:eb:7d:4e:08:d6:
29:ee:fd:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 25 18:44:23 2026 by rpki-client