Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
File: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft (raw, json)
Hash identifier: wnCTxV/K8eUIXK2M7V/Ns9IlITwRLW6ArjLLEsrInlc=
Subject key identifier: 64:93:DB:33:3F:F0:2C:DA:15:BC:7B:A6:27:FE:12:A4:B4:A6:03:0A
Authority key identifier: 35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
Certificate issuer: /CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Certificate serial: 019EB6573FB2E615ADA302D8ED9DDC279F33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 11:00:31 +0000
Manifest this update: Thu 11 Jun 2026 11:00:31 +0000
Manifest next update: Fri 12 Jun 2026 11:00:31 +0000
Files and hashes: 1: FEFxaV6JKNIg7q55qcKCrfCq-z4.roa (hash: b7JfyrsOhBHQzoGqHArOuD+GUoiR1U1SMxRpiIKCIn8=)
2: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl (hash: fEI2EjO9ZYf8HS494M3m+vmKVYUFD62fXuK+pD4IYsg=)
3: baFyB991hO6zmvEFA-bUR-SSeO0.roa (hash: HCQWZRB071vWE048uQIisBvoukGqn9JR/elQALPMrxE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 11:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:57:3f:b2:e6:15:ad:a3:02:d8:ed:9d:dc:27:9f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=353e3f28e647e92ac8a710c305c2e21b623edc1c
Validity
Not Before: Jun 11 11:00:31 2026 GMT
Not After : Jun 12 11:00:31 2026 GMT
Subject: CN=6493db333ff02cda15bc7ba627fe12a4b4a6030a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5a:f7:b1:4f:97:3b:9e:a6:61:b2:d2:38:dc:
b2:05:79:ed:a8:59:a0:a9:d3:d3:a9:14:d0:6e:97:
89:c6:e0:a7:d5:8e:fb:68:89:4d:a3:a0:08:87:8b:
ba:aa:a2:b8:ff:c3:ff:02:d5:c0:2d:9c:d6:56:14:
ce:bd:02:05:1d:c5:b6:a1:b1:a4:a5:90:a4:c8:d8:
ea:76:42:81:53:3e:dd:c5:86:43:3d:1c:00:9d:d1:
d6:a8:ef:b4:41:bd:9e:53:1f:e2:3b:6f:ce:03:d2:
21:ae:79:8c:e3:6a:51:f7:e0:7f:a9:9c:9f:47:c2:
78:c6:c2:f5:6d:1c:8a:b6:0e:17:5a:2e:2a:8a:9a:
d5:3c:36:d6:37:f2:96:1a:98:b6:08:3a:27:2f:32:
97:c6:82:c8:58:a8:60:fc:47:39:92:b1:ec:15:af:
87:ba:d3:d6:86:1e:e0:7e:86:c8:c4:d3:cc:bc:7e:
06:9b:38:e2:0b:cf:e5:70:10:6d:df:70:b9:f5:a1:
5e:17:7d:07:ca:40:02:0c:17:d1:3f:fc:bf:fd:4c:
03:cd:43:b4:f2:b5:14:76:4a:b9:c9:30:3e:3d:af:
59:8b:19:e9:48:39:3b:f6:7e:ea:9d:b2:a9:f4:b3:
42:f9:29:4e:63:40:79:d7:0d:80:42:b7:e6:53:00:
e7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:93:DB:33:3F:F0:2C:DA:15:BC:7B:A6:27:FE:12:A4:B4:A6:03:0A
X509v3 Authority Key Identifier:
keyid:35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:a0:f7:b5:fa:4c:7f:54:7f:8f:98:42:8e:e8:9a:fe:99:fd:
9d:bc:bc:d9:0f:99:e9:c4:ee:82:9c:7e:9f:ff:63:fd:2b:04:
50:47:59:b6:3f:a8:b7:22:eb:93:a9:1a:55:db:7e:3f:22:4f:
c9:ea:8d:c9:9b:dc:bc:74:a9:ae:84:eb:44:34:95:ef:ee:c6:
15:40:5b:4e:99:66:03:6f:ff:41:42:0b:43:5c:c4:93:38:21:
d4:9b:58:31:39:34:bd:b9:83:ce:7d:35:38:ef:8d:99:28:37:
83:54:54:df:e4:da:aa:0f:dd:d9:98:f3:c7:be:8e:67:3f:86:
2b:6d:10:5f:19:fa:00:5c:77:20:91:f1:ce:83:97:1a:dd:14:
fe:d4:49:da:fc:46:9e:d0:e3:8a:6c:74:5e:62:fc:78:c1:87:
c1:1d:45:db:8d:38:96:ac:ef:d1:b2:2b:4e:01:cc:c1:b2:69:
60:b5:c9:91:03:7c:38:a4:5f:43:21:00:8a:61:7b:80:cc:3e:
27:1f:27:f7:25:cc:7a:6a:9d:a2:b3:6e:ca:c6:8c:db:b4:e1:
90:17:33:f8:e0:c1:d4:6b:e0:b5:56:9e:09:6f:fc:f5:92:c9:
c1:ca:d7:d9:64:72:06:a6:e4:67:f5:5c:2a:8a:67:4f:f4:9a:
eb:2f:1a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:00:56 2026 by rpki-client