Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: +wUuotX3RUzZm2+QH9rEqNLzc22Zkx6G8C8/ATamjq4=
Subject key identifier: 2D:E0:A5:E5:37:21:21:BC:83:69:60:16:F4:D6:80:AE:31:9B:C4:DD
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 019D37F6E1BD34F35F6B41BA89E6AF704338
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0D85
Signing time: Sun 29 Mar 2026 05:00:19 +0000
Manifest this update: Sun 29 Mar 2026 05:00:19 +0000
Manifest next update: Mon 30 Mar 2026 05:00:19 +0000
Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=)
2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: AuKrl7miBfs9QXI57aAe8SeV0Djd7SQMZ7mEiLEL5FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:e1:bd:34:f3:5f:6b:41:ba:89:e6:af:70:43:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Mar 29 05:00:19 2026 GMT
Not After : Mar 30 05:00:19 2026 GMT
Subject: CN=2de0a5e5372121bc83696016f4d680ae319bc4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:42:84:d3:6f:ef:1f:9b:31:6c:2c:a2:62:2c:
8c:bd:08:5b:15:87:0d:0a:a3:bd:c5:cd:54:09:ad:
5f:f2:2d:4a:78:ed:78:87:9d:1c:e8:aa:1b:76:ef:
50:29:34:a0:cf:cf:6e:76:5a:53:0e:78:f6:09:fb:
55:54:87:28:04:63:18:3d:72:6b:2c:66:d5:01:a5:
cc:a6:fe:a8:53:4b:ef:8b:8f:ab:bc:60:70:21:eb:
1d:82:14:87:a3:30:f0:ae:c9:b1:df:70:4f:d6:9f:
f7:cc:b5:ac:1e:81:bb:84:8a:23:31:4d:dc:61:d0:
a0:cc:98:87:7d:41:7f:74:22:82:f2:56:ba:00:7f:
22:14:1a:8a:09:e0:f5:52:6d:e9:cd:98:88:30:ba:
1b:9a:89:25:d2:92:a5:c0:20:0d:50:fb:e1:3d:3f:
16:b4:5a:52:fb:b8:24:75:56:3c:1a:b9:e0:82:0a:
36:5e:94:5f:f0:5b:ef:3e:50:de:bf:5b:11:c3:52:
d0:ea:79:fd:4c:c9:2f:4c:ee:f9:dd:0c:bc:76:8e:
72:77:a5:5a:0f:ab:ab:8c:e6:b8:dd:8d:09:37:af:
8e:b3:1b:e8:1b:4b:25:dd:9e:5f:98:5f:eb:de:6d:
28:56:e7:2a:ac:06:31:bb:e6:57:ed:05:2c:6a:92:
3f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E0:A5:E5:37:21:21:BC:83:69:60:16:F4:D6:80:AE:31:9B:C4:DD
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:9b:23:83:de:4a:48:5a:a3:5d:78:66:f0:13:5b:65:8e:c7:
9e:f8:e9:d2:8d:70:11:4e:cd:54:ca:35:fb:bc:f7:46:7c:12:
14:07:d0:77:62:64:4d:36:9b:f9:47:95:0d:d2:63:b4:c0:cc:
ed:16:bf:a4:d0:a4:80:10:51:a4:c8:1f:83:99:05:56:d7:c3:
50:5c:8f:e3:c5:5b:d0:92:3b:35:f4:58:cc:1a:3f:c3:ba:15:
84:bd:ab:ec:a5:10:7c:85:4c:37:5a:ef:a2:32:1b:91:b9:8c:
b9:ca:45:59:d1:8a:2d:ec:da:cf:e8:3b:27:0f:10:2b:00:33:
80:d0:ca:cb:11:9b:a4:4c:d3:32:ab:0e:69:a2:08:ca:3f:a3:
f4:8f:2e:83:57:6c:29:3a:83:a0:48:85:b1:49:b0:67:65:a1:
15:2f:de:2d:13:9b:c0:23:39:dc:5e:f1:e4:cf:85:99:50:bd:
14:ae:cd:23:ef:b8:fd:f7:46:4c:0b:bb:ff:2e:f1:6b:1c:46:
cc:f1:10:ff:d1:1a:6e:ad:15:41:e3:cb:44:14:7d:1c:47:0e:
2e:c7:5b:6d:66:32:74:5c:e1:49:22:2c:a2:e6:80:e0:50:24:
ae:be:e4:67:cc:c7:80:29:b2:0c:aa:5f:bb:58:01:b1:aa:b0:
06:74:a1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:56 2026 by rpki-client