Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier: 44pf9b0CXUdG5jshA88+HLlv1cmfBiBrtrbOaOyGzJw=
Subject key identifier: F6:75:87:24:C7:A6:F3:28:0D:E0:9B:63:DD:36:F0:1F:49:29:52:4A
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer: /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial: 019E1CEB6D8760064248009A40848489C12C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 16:00:51 +0000
Manifest this update: Tue 12 May 2026 16:00:51 +0000
Manifest next update: Wed 13 May 2026 16:00:51 +0000
Files and hashes: 1: IGA1ulxSxKGkoLSG34jnJfGS8GM.asa (hash: Wb9Cwa31gXG46doK7XO0BE6KGITY40XEAXzduJEsDJA=)
2: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: kThxPj6ltwfnY7Aecn5c3gxCoHzEUNbRkZUrMScBPvs=)
3: xJQowT_Tnb4ieuT2nnX57E1i8Bg.roa (hash: FZ2f/lnbWXsd7+lHlVJ1AgksXQQVTj6Vr+zQW+G3nfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:6d:87:60:06:42:48:00:9a:40:84:84:89:c1:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Validity
Not Before: May 12 16:00:51 2026 GMT
Not After : May 13 16:00:51 2026 GMT
Subject: CN=f6758724c7a6f3280de09b63dd36f01f4929524a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:ba:33:e0:2e:95:6d:bb:30:4a:04:33:d9:f5:
a2:28:6d:79:7a:7d:7f:34:06:1b:0e:6f:da:16:c6:
9c:26:96:30:0b:62:b0:bf:62:07:2b:88:59:59:15:
bd:15:25:61:62:c5:f1:7d:32:a1:cf:31:34:db:a8:
5b:d6:11:95:ec:bd:45:94:e9:bc:01:62:65:a9:ae:
b4:39:33:ec:f4:4b:c3:f3:d8:b9:e0:50:a6:8f:0b:
69:41:25:d3:54:dd:5a:bb:5b:12:4e:af:d7:31:31:
1a:b1:f4:07:25:6f:7f:12:18:c1:e0:14:04:10:c1:
02:8e:57:f6:39:cb:b6:59:c8:73:ba:91:9a:97:2d:
71:dc:74:a0:a5:e6:a4:20:af:81:e9:74:fe:85:59:
af:61:79:c0:ce:a0:dc:89:fe:49:63:c0:08:e8:c9:
da:55:48:5e:e3:3b:be:57:38:2d:cf:5f:80:89:cb:
69:46:d6:2c:e9:5e:39:a3:48:a0:d5:01:db:42:9b:
44:44:40:5d:74:5a:bb:1e:c6:a4:70:a6:d3:43:36:
0e:63:f1:ee:9b:23:fa:62:38:5e:ca:f2:a2:a5:02:
f9:cc:e9:be:3d:23:14:71:ee:b2:8c:ed:99:62:ce:
04:24:72:43:98:07:87:a6:44:7c:70:ea:7c:54:da:
ac:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:75:87:24:C7:A6:F3:28:0D:E0:9B:63:DD:36:F0:1F:49:29:52:4A
X509v3 Authority Key Identifier:
keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:8c:0d:56:db:f9:79:55:75:1d:16:38:e4:1a:cd:77:2d:0b:
b6:16:a0:0a:5f:e4:67:7c:0e:d0:44:23:1d:bf:39:05:1b:fb:
5e:c6:d5:39:a2:23:98:30:ed:a1:f4:26:89:5f:98:c4:0d:bb:
66:93:71:c5:d5:17:35:c8:51:cd:3c:b7:99:10:bc:b5:98:21:
f5:c0:44:48:c2:df:8c:7c:ae:ab:93:11:96:fe:cf:a2:bc:21:
8e:9d:19:d3:3f:86:0c:e1:48:f3:a6:5f:62:bf:48:46:6c:c0:
90:35:fe:dd:a2:ee:bb:07:f2:4a:93:34:99:61:96:83:1d:93:
80:4e:23:cf:97:f3:50:3d:a1:2a:55:5b:6f:a2:61:24:eb:0a:
34:78:91:87:f8:cf:fa:de:b8:d5:37:b0:aa:3e:0e:10:c2:62:
7b:d2:03:ad:fa:a8:9c:79:a9:2f:df:09:21:b4:0d:b5:ed:31:
3f:d6:b7:e8:7f:f7:3a:ec:2b:04:ff:f3:4f:99:29:f6:b3:56:
9e:df:e3:08:b9:be:35:26:42:69:53:a8:21:ce:0f:22:8f:ac:
61:7f:66:b5:fc:51:85:84:93:5c:de:dc:52:a5:00:8f:83:24:
ee:d4:0b:59:c3:18:40:8d:b2:51:07:20:39:93:3d:93:d1:2a:
c5:e8:20:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c622HYAZCSACaQISEicEsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjYwNTEyMTYwMDUxWhcNMjYwNTEzMTYwMDUxWjAzMTEwLwYDVQQD
EyhmNjc1ODcyNGM3YTZmMzI4MGRlMDliNjNkZDM2ZjAxZjQ5Mjk1MjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Loz4C6VbbswSgQz2fWiKG15en1/
NAYbDm/aFsacJpYwC2Kwv2IHK4hZWRW9FSVhYsXxfTKhzzE026hb1hGV7L1FlOm8
AWJlqa60OTPs9EvD89i54FCmjwtpQSXTVN1au1sSTq/XMTEasfQHJW9/EhjB4BQE
EMECjlf2Ocu2WchzupGaly1x3HSgpeakIK+B6XT+hVmvYXnAzqDcif5JY8AI6Mna
VUhe4zu+Vzgtz1+AictpRtYs6V45o0ig1QHbQptEREBddFq7HsakcKbTQzYOY/Hu
myP6YjheyvKipQL5zOm+PSMUce6yjO2ZYs4EJHJDmAeHpkR8cOp8VNqsawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZ1hyTHpvMoDeCbY9028B9JKVJKMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEowNVtv5
eVV1HRY45BrNdy0LthagCl/kZ3wO0EQjHb85BRv7XsbVOaIjmDDtofQmiV+YxA27
ZpNxxdUXNchRzTy3mRC8tZgh9cBESMLfjHyuq5MRlv7Porwhjp0Z0z+GDOFI86Zf
Yr9IRmzAkDX+3aLuuwfySpM0mWGWgx2TgE4jz5fzUD2hKlVbb6JhJOsKNHiRh/jP
+t641Tewqj4OEMJie9IDrfqonHmpL98JIbQNte0xP9a36H/3OuwrBP/zT5kp9rNW
nt/jCLm+NSZCaVOoIc4PIo+sYX9mtfxRhYSTXN7cUqUAj4Mk7tQLWcMYQI2yUQcg
OZM9k9Eqxeggsw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:33:53 2026 by rpki-client