Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
File: aH2bViukcmGPk5jiZcoOcQj2h6M.mft (raw, json)
Hash identifier: PbbsvVrvIVrIpIbahDVnu1ZMXAz0VwgfJR4VIE2cCvo=
Subject key identifier: 26:AA:24:9B:32:30:84:26:41:AE:7B:68:35:06:8B:93:1C:9F:A9:A1
Authority key identifier: 68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
Certificate issuer: /CN=687d9b562ba472618f9398e265ca0e7108f687a3
Certificate serial: 019E326097F19BF1BC9361949FEA3A6F0ABC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
Manifest number: 18A4
Signing time: Sat 16 May 2026 20:00:51 +0000
Manifest this update: Sat 16 May 2026 20:00:51 +0000
Manifest next update: Sun 17 May 2026 20:00:51 +0000
Files and hashes: 1: 7AOoMOGVRmNfzkuDKRu3Sk1W0eA.roa (hash: +394RmOY/Sxcv9d3Us94xh5+rW7+06GfmeDJKppUg3M=)
2: aH2bViukcmGPk5jiZcoOcQj2h6M.crl (hash: qs6gmBpY5V7Vw9IjVtYl36ri/gawk13pLeh8Kz8Z9h0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:60:97:f1:9b:f1:bc:93:61:94:9f:ea:3a:6f:0a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687d9b562ba472618f9398e265ca0e7108f687a3
Validity
Not Before: May 16 20:00:51 2026 GMT
Not After : May 17 20:00:51 2026 GMT
Subject: CN=26aa249b3230842641ae7b6835068b931c9fa9a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a2:4b:fd:37:91:8c:58:87:2c:da:6d:aa:7d:
dd:ad:d0:48:57:ed:35:54:0f:ba:ce:6c:76:76:1c:
49:d4:ab:0e:20:21:0d:96:23:0d:39:f7:36:15:02:
bc:63:5e:cf:1f:e7:f6:03:ec:36:fe:8a:53:b4:00:
05:4d:fa:7e:06:58:bb:e3:fb:57:a2:c3:94:da:cc:
ab:a2:33:24:f5:6f:e3:8e:9a:ce:bc:e9:7f:95:bc:
f2:7e:ae:f1:96:bf:98:89:68:a5:fc:2c:9d:f4:9d:
71:d3:a7:7d:8f:7d:44:4a:e1:12:46:a3:cf:1e:71:
ec:aa:44:cf:27:77:2f:9e:39:8d:16:de:67:b6:bd:
3a:f5:3c:cf:0c:dc:32:6c:0e:26:71:67:38:1e:5d:
4c:1c:aa:f2:ef:40:a8:c4:0d:0a:84:00:ae:a1:d2:
74:b9:eb:41:44:0d:da:2e:77:96:e5:aa:68:81:0b:
00:8c:01:73:47:27:c8:c6:18:65:e2:ff:04:27:46:
12:58:88:c8:52:c6:ce:0c:43:48:a9:b7:e0:4d:40:
2b:31:a2:a8:a9:e8:26:a5:1b:eb:8f:39:a9:62:83:
52:7d:6d:26:b6:b9:02:b7:79:a8:bc:27:38:d8:fd:
ca:05:2c:89:ef:99:7f:f1:2b:d6:05:ea:29:f2:e6:
7d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AA:24:9B:32:30:84:26:41:AE:7B:68:35:06:8B:93:1C:9F:A9:A1
X509v3 Authority Key Identifier:
keyid:68:7D:9B:56:2B:A4:72:61:8F:93:98:E2:65:CA:0E:71:08:F6:87:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aH2bViukcmGPk5jiZcoOcQj2h6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b89c1f-8dcb-438b-8afd-605d135136f7/1/aH2bViukcmGPk5jiZcoOcQj2h6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:4e:59:89:72:0a:6c:f2:3a:53:39:90:98:37:5b:8c:cf:ea:
de:e3:08:8f:fc:af:45:93:a4:ab:c7:1a:de:0b:40:ab:10:45:
e4:69:ef:c9:a9:a7:d2:54:86:9a:e1:02:90:38:3b:34:72:b7:
9c:09:a6:a6:71:97:2a:89:e9:bd:a6:04:ee:53:39:85:e6:d9:
49:99:70:fb:2a:c5:07:99:2e:cd:2b:1d:bd:0b:33:ea:c2:a7:
8e:fb:9a:a7:a3:79:c2:9b:c5:79:78:18:19:c9:c5:4d:ff:19:
82:3a:7d:27:76:eb:d7:00:d2:a0:09:16:e2:35:9a:a4:46:8f:
93:50:ef:93:e9:3a:bd:8e:52:ee:16:54:28:9e:dd:bc:c2:c0:
00:50:30:a2:a6:6c:1a:c3:a5:b8:fa:44:f1:62:d7:de:a0:5e:
bf:3b:dc:5e:b1:99:63:f1:f2:c2:53:ad:df:60:fd:75:83:49:
22:7d:e5:56:d7:80:76:30:7d:29:75:56:4a:02:f8:2e:0d:e9:
76:95:3b:89:7c:8c:87:b2:93:92:f4:7d:ab:29:68:c8:00:86:
92:fa:da:58:b5:11:6e:ee:d9:b9:24:02:3f:4d:af:3b:94:02:
bf:01:cc:26:79:10:ab:18:54:c7:f4:b9:47:b3:11:1e:96:23:
dd:fa:ae:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:28:35 2026 by rpki-client