Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: oMnRpC5pvZY0prCNtzz29KbHOlyIuyRCFZlhH1JHlJ4=
Subject key identifier: 1A:B6:1A:FD:B7:09:41:84:D4:76:F5:4A:43:D7:5C:5B:82:CA:25:6C
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 019EB80E78222F960CC5A7DC6B81662814A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 180A
Signing time: Thu 11 Jun 2026 19:00:16 +0000
Manifest this update: Thu 11 Jun 2026 19:00:16 +0000
Manifest next update: Fri 12 Jun 2026 19:00:16 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: HjKhY9PaqrAbIau2Y7KRYCFpiJIRNRhcm25v41X+v1w=)
2: DmoDqDPowCrVpCCkIKS4Nf6g_kI.roa (hash: 7od5f7R8DSJPoJQHbrlbRFv+w64a+rw+WvHvRvhjbSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:78:22:2f:96:0c:c5:a7:dc:6b:81:66:28:14:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Jun 11 19:00:16 2026 GMT
Not After : Jun 12 19:00:16 2026 GMT
Subject: CN=1ab61afdb7094184d476f54a43d75c5b82ca256c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:c4:a0:33:19:a6:b5:70:69:6e:34:c5:e3:
f0:9e:d3:9a:27:a2:df:28:5b:68:d3:86:e6:0b:8a:
95:05:44:4f:10:9b:79:e3:2c:b6:80:3a:c6:38:4a:
a7:f9:33:00:47:40:78:05:9e:75:71:69:ad:65:7e:
84:d0:30:ee:3d:b1:98:8c:8f:da:11:bc:98:f8:cc:
3a:f9:cd:d1:21:c2:3c:4d:6f:9f:80:42:99:8d:a1:
8a:db:6f:72:d3:58:16:ae:a0:e5:4e:23:ed:07:a2:
49:3c:1a:39:c2:49:5b:05:16:58:84:01:6f:6c:43:
b2:05:cc:55:0d:b3:b3:ae:a4:b9:ff:ef:c8:e1:40:
49:4f:21:05:14:20:b0:26:3a:81:3a:d5:20:a3:d3:
5f:e1:8f:c7:32:2a:1f:05:4d:51:db:2c:a7:5e:3d:
7d:32:7c:24:53:02:6b:4e:db:7e:57:7f:4e:5f:b3:
94:d9:6a:48:3c:f6:ba:47:f6:0c:0c:af:c1:44:5f:
73:ce:b9:01:49:fa:6b:a9:8f:d2:2b:9f:3b:1e:a1:
8a:70:f6:6f:47:aa:78:00:6a:23:6a:e7:ac:1c:05:
f6:26:3c:e7:7b:a3:b6:23:e3:b2:ab:b4:1f:25:be:
f3:f3:6b:1e:a3:dd:dc:94:95:c6:93:32:82:61:c4:
9a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B6:1A:FD:B7:09:41:84:D4:76:F5:4A:43:D7:5C:5B:82:CA:25:6C
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a1:ae:b5:cc:a0:10:74:5b:38:de:fc:84:4d:ad:b7:4c:be:
a2:f6:ff:1c:f5:de:b8:cf:48:b1:e0:df:93:c4:a0:e7:a7:bd:
ee:99:ae:7e:fe:0f:b0:5e:b9:72:74:b2:e3:bc:c6:fb:e1:ff:
22:0f:35:36:5d:9c:68:ff:16:a4:87:0c:7c:ce:2a:6d:d7:d8:
39:fa:b4:a7:91:83:e6:d0:6d:ca:1d:e7:94:10:d2:0d:8d:c2:
d2:8d:45:cc:8e:82:13:2b:e2:3a:f0:e5:16:51:e9:2e:43:81:
20:75:e4:79:54:a8:17:31:15:ae:3b:5e:f0:69:49:37:e5:02:
a6:3d:aa:09:d1:fa:43:60:bd:29:36:96:a4:75:6b:05:6a:6e:
bd:a2:c7:0a:cd:cd:fe:cc:1e:43:bf:17:37:c9:74:c3:eb:e4:
e3:f7:90:5c:9b:75:50:99:d4:ab:2a:b5:02:75:53:98:6b:60:
10:6c:46:27:47:5e:28:77:87:d3:48:1a:05:36:0c:d0:a0:34:
22:ee:ce:dd:3c:bc:79:4b:3d:76:67:74:3d:51:cc:d6:d2:d4:
20:aa:01:1c:77:88:c0:b8:6b:1d:b8:a5:f9:24:42:26:a2:37:
0c:43:ff:29:88:44:af:40:29:1e:01:45:e0:fb:56:f7:18:8f:
0c:53:19:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:17:42 2026 by rpki-client