Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: QNCi4QHJ7seh6Jfa4oUcT95ypHvjZ/9HRq+B8B2aaGA=
Subject key identifier: C1:88:32:EB:BF:D3:BF:C1:5B:E1:FE:F3:86:E9:B8:DC:F4:18:D2:6F
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 0199228C8A5A5857934E846883371F5EDBCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0B67
Signing time: Sun 07 Sep 2025 05:00:59 +0000
Manifest this update: Sun 07 Sep 2025 05:00:59 +0000
Manifest next update: Mon 08 Sep 2025 05:00:59 +0000
Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: Rm86iOeqKz8N31p8BkH2MhkX8rbHwt2SjGeC3QJF3ts=)
2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:8a:5a:58:57:93:4e:84:68:83:37:1f:5e:db:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Sep 7 05:00:59 2025 GMT
Not After : Sep 8 05:00:59 2025 GMT
Subject: CN=c18832ebbfd3bfc15be1fef386e9b8dcf418d26f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:82:fa:4b:dc:0e:43:95:e5:49:66:a2:98:99:
bd:01:aa:29:54:f5:ae:4c:c8:6d:cd:82:1f:bd:ce:
93:28:ac:36:51:f2:3a:43:80:b0:7d:e7:20:45:66:
93:47:3f:f8:ff:ee:50:19:7f:11:3b:7c:66:2a:84:
b5:43:eb:1f:d9:c8:fc:16:4f:a1:b0:84:b2:fc:e1:
b7:91:66:af:2b:57:48:49:ab:58:63:4d:c9:dd:48:
7e:66:45:4d:2d:bf:a4:c4:0c:3e:ed:c0:52:74:f4:
b2:16:6c:fd:14:90:2c:61:fe:92:22:fb:e8:89:4b:
00:82:4f:bf:8f:99:1c:2a:45:c5:85:59:54:b4:3e:
4b:6f:a5:01:ff:24:ee:1b:08:15:f8:38:b1:45:ef:
b8:2c:1e:5a:86:1b:e7:ec:b1:92:f3:84:3a:b4:8f:
a2:61:fb:7d:99:18:5f:f9:54:f2:3d:17:ad:ff:04:
6f:eb:b9:59:d2:c9:2d:e5:6a:e6:9e:72:7f:15:ed:
fa:64:d5:f0:d6:d4:04:f3:93:69:21:61:ba:aa:17:
a0:cb:c2:e1:91:d6:ee:96:be:4e:80:b7:11:db:50:
1d:8b:56:d7:ce:69:f5:53:bd:92:37:e3:05:11:9e:
bd:31:b5:05:66:b2:06:38:f7:b8:36:c6:b9:08:67:
80:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:88:32:EB:BF:D3:BF:C1:5B:E1:FE:F3:86:E9:B8:DC:F4:18:D2:6F
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3c:be:b5:cf:0f:b6:6d:70:de:85:a1:8c:45:91:c4:88:32:
e6:c9:7d:a4:53:40:5f:7a:47:63:07:71:34:65:72:c6:71:a5:
26:c3:d2:9a:90:f1:ef:e8:b9:16:9c:c3:37:0d:59:34:d9:64:
e8:bf:22:ad:52:98:63:08:ff:b8:9d:bf:48:ec:80:08:86:0b:
ee:d6:c2:20:0e:0b:c7:52:ed:b9:76:fd:e1:62:a1:92:46:a9:
e1:61:26:16:8b:1f:50:b4:9c:99:a0:b3:7d:7a:8f:67:0d:c2:
67:07:27:6d:f1:b6:a9:85:cb:aa:2b:10:8d:f1:b0:2e:a1:ae:
a8:04:03:16:62:26:5a:50:64:b5:77:5e:3f:f4:c4:76:8d:e9:
4d:9e:65:42:ef:c0:7c:48:a9:30:cb:84:c1:4d:62:03:9c:d2:
f7:93:9c:39:ee:db:54:ff:2e:7b:ce:5d:02:bd:68:22:c5:40:
0a:86:e7:36:94:42:ca:14:62:66:2b:88:60:9b:07:e5:6e:dd:
42:df:60:de:0b:5f:a0:4e:18:fa:b1:6e:16:23:37:e1:3f:af:
cf:2a:d8:b1:61:6c:3d:27:3f:a8:6d:1e:5f:63:89:7d:71:6a:
ac:c8:81:6a:26:4d:50:38:65:be:3a:86:28:7f:ae:94:9e:ff:
bd:6d:85:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:55 2025 by rpki-client