Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 5YeESqIB0lvgLYqCo5vMUAfeun3lK0Qvyc5wE7LMhSk=
Subject key identifier: F0:5E:AB:2F:DD:E5:B8:3E:3F:2A:C7:2F:C4:7A:EE:72:01:EB:51:95
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E4F216B822FCB11C8578E578A8DDDA227
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1922
Signing time: Fri 22 May 2026 10:00:50 +0000
Manifest this update: Fri 22 May 2026 10:00:50 +0000
Manifest next update: Sat 23 May 2026 10:00:50 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: Oimmra6ktAcNdxSgqjTR3PCxnqLWAaxT0uNMvls+Wpc=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4f:21:6b:82:2f:cb:11:c8:57:8e:57:8a:8d:dd:a2:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 22 10:00:50 2026 GMT
Not After : May 23 10:00:50 2026 GMT
Subject: CN=f05eab2fdde5b83e3f2ac72fc47aee7201eb5195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:23:1f:a7:fb:2e:97:c6:da:ae:ff:56:21:ca:
90:c8:1f:27:56:c7:c6:a0:3c:61:7f:ff:9a:44:29:
ff:c9:2f:84:a2:74:a9:a0:e0:32:06:5c:6d:57:fc:
50:9f:aa:4c:8a:f9:59:7d:92:e2:b9:92:a1:34:a8:
e1:e1:8a:9b:57:5f:b7:a6:c2:b7:25:ed:d9:9a:07:
c1:91:02:02:2e:7b:0e:e9:38:c2:d1:e0:e8:7f:ea:
b7:b0:5b:19:99:fc:9f:de:92:c4:59:11:8f:a3:50:
39:4d:5a:4d:14:db:8a:2c:74:77:68:e8:c3:82:9d:
fb:51:d5:8a:35:22:21:da:ed:b2:7e:c2:99:66:31:
d7:24:48:89:4b:c1:5f:b6:55:0e:6e:89:7c:9f:15:
6b:a2:c1:63:db:b0:34:86:be:0b:a2:37:c6:d9:0e:
60:8e:98:f3:a4:b1:84:85:be:1a:fe:a2:3a:2a:22:
25:6c:47:e8:b3:75:58:f7:6c:16:1a:94:27:65:da:
3c:26:5a:e9:8a:ad:82:33:f9:8c:d1:71:4c:e7:a2:
ae:a5:bc:60:8c:b2:ba:79:e7:48:91:b4:16:c7:72:
c4:2b:8f:ee:43:fc:aa:36:0b:ed:c2:c8:26:50:a7:
27:b1:17:b9:db:3f:8e:11:57:43:86:6d:29:f3:ea:
f6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5E:AB:2F:DD:E5:B8:3E:3F:2A:C7:2F:C4:7A:EE:72:01:EB:51:95
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:54:e9:72:2d:75:19:4e:d6:7c:de:cf:c6:e2:ec:06:51:e0:
57:04:ec:33:e1:b7:7f:42:bf:22:e1:48:cf:0d:20:1c:62:ef:
00:8e:a3:a0:e6:ec:4d:e1:61:87:f5:d6:ce:90:9c:2a:b4:ca:
1b:ba:23:fc:2f:d0:4b:c6:9a:89:49:fc:ee:60:59:25:cd:58:
49:c2:93:e1:dc:fe:be:33:a4:2d:7e:ca:f5:ef:23:35:28:e4:
2b:8d:63:aa:f9:30:53:e5:f2:07:05:99:7f:dd:4d:01:3d:c3:
8b:33:d4:8a:f3:0f:36:39:25:1d:b6:23:61:a8:82:b7:6a:81:
cb:30:b8:63:04:1d:8d:85:af:c2:5c:40:2f:cc:12:11:78:d4:
62:d8:ac:40:36:63:be:e3:e4:8b:02:88:e7:5c:5b:2f:44:c9:
c9:d3:5b:c7:53:e9:91:f4:22:03:79:8a:09:3e:2a:43:41:60:
c4:10:41:ea:ec:d3:7c:d2:ae:6f:14:6d:92:52:2a:35:58:6c:
bc:54:0e:84:f6:60:11:65:87:4f:00:5f:43:c5:df:ac:f0:39:
34:f7:f1:e6:99:40:1e:d1:21:63:f6:25:32:1b:31:99:a0:22:
ae:3c:f3:e9:7b:60:59:af:1a:32:4c:57:3e:39:76:83:f9:77:
76:fb:a6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 22 18:32:32 2026 by rpki-client