Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: cznPbNyOcU7Q1F88ESXrCf7j8qoYJKmZU9wGIKnuJoM=
Subject key identifier: C1:A7:50:70:8F:58:EF:9D:9C:91:6F:0D:F6:7F:63:48:0D:2C:B3:1D
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 019E91A5A21481ECAE1B34268E05838F923C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0E38
Signing time: Thu 04 Jun 2026 08:00:11 +0000
Manifest this update: Thu 04 Jun 2026 08:00:11 +0000
Manifest next update: Fri 05 Jun 2026 08:00:11 +0000
Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=)
2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: upprcOulthBsOQhzMwZXYlSXn6pHpwXXaSziYTjaspg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:a5:a2:14:81:ec:ae:1b:34:26:8e:05:83:8f:92:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Jun 4 08:00:11 2026 GMT
Not After : Jun 5 08:00:11 2026 GMT
Subject: CN=c1a750708f58ef9d9c916f0df67f63480d2cb31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:04:7f:e3:54:23:3b:c2:cb:f3:cd:fb:8e:
e7:0e:af:25:8c:8d:ad:30:e1:3c:3e:d3:8a:26:ae:
b4:14:f4:06:22:77:3c:2a:ff:27:c1:b0:ff:e4:b4:
92:c8:ff:39:51:d5:8f:44:77:51:08:cf:d9:14:d8:
41:14:ee:cd:ab:72:85:e5:15:70:9b:d8:98:bb:55:
b9:77:03:14:7d:f7:73:f7:21:4e:2e:32:af:cf:31:
ef:9c:bd:59:14:18:f7:5d:46:4f:e8:e3:e4:4b:39:
ae:3d:a1:2f:0a:73:c9:0f:f1:a0:42:d7:c5:c9:69:
71:d8:20:47:b0:5a:83:dd:4e:20:31:8f:62:00:51:
a3:41:5f:99:81:21:3f:fc:1a:37:a8:f6:55:58:0b:
a0:e7:71:80:fd:fb:66:40:28:d5:32:d8:bc:d7:7c:
db:d4:9d:cd:65:f7:f7:92:65:ed:f0:17:07:e4:38:
44:fd:25:03:99:ff:42:4e:5c:fa:2f:60:89:13:54:
b2:bc:31:91:1e:1c:d1:0c:df:87:ff:e1:50:d0:41:
31:c8:a5:b8:13:11:8f:67:91:4d:e9:e0:ac:ee:8d:
7e:8e:4f:9e:27:fe:32:3d:04:c9:3d:bc:86:ee:ad:
c9:cc:ee:1b:ea:eb:57:8f:88:ba:ad:8e:0b:13:28:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:A7:50:70:8F:58:EF:9D:9C:91:6F:0D:F6:7F:63:48:0D:2C:B3:1D
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:e3:c1:e5:4a:6a:90:d8:5b:4f:95:58:0d:9d:f4:fe:73:3c:
7a:a5:59:bb:b9:0c:19:ca:8f:4a:49:25:df:6b:c4:58:fa:20:
78:ac:83:3c:64:32:29:70:ee:e7:8b:7e:6a:a8:a1:e4:46:04:
3b:56:ac:ee:b0:a4:2a:85:e9:cc:f1:4a:83:bc:9e:12:63:8a:
1d:d7:1f:9c:99:f1:d0:e6:65:c4:18:fa:14:47:7d:e3:0c:cc:
9b:a4:41:c5:7a:21:6d:d7:63:f4:3f:a3:93:4a:e0:37:2a:e3:
a8:91:b8:d4:da:e8:50:35:73:f2:1e:fe:18:5c:ac:9a:d3:39:
99:bc:b4:fc:00:46:09:fa:8f:e3:c1:45:99:66:18:f2:de:4b:
30:d0:75:f1:92:ef:24:78:07:97:19:f9:33:99:4c:a7:0a:cb:
fc:78:22:1b:62:cf:10:fa:0c:1b:b5:81:a7:9e:66:a5:b6:1e:
0a:f9:f2:8c:d4:33:83:34:f1:78:dc:5d:64:de:13:be:8d:4f:
9c:21:3c:ce:b9:3c:aa:c7:3a:cf:fd:f0:c3:ec:53:b3:19:2f:
6f:1a:32:2c:58:25:5a:fb:84:b4:49:99:7b:5a:7e:2b:45:83:
69:46:37:06:e9:a2:ea:6c:9d:65:45:61:f9:6e:ab:af:ee:af:
7a:b4:47:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:04:56 2026 by rpki-client