Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: DUl12WWQXLS3MPpQhUgubMN0roS/Sl2kpU9l2mkMq/c=
Subject key identifier: 8D:AC:8B:F7:25:DB:3B:CA:6A:AD:E9:3C:BF:DE:95:A0:85:ED:3C:64
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 019EBFFF12E300E112380105CC510503B911
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0E50
Signing time: Sat 13 Jun 2026 08:00:25 +0000
Manifest this update: Sat 13 Jun 2026 08:00:25 +0000
Manifest next update: Sun 14 Jun 2026 08:00:25 +0000
Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=)
2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: /SfPuXFN8WHvzlrZ127W6LGK3W3WkpicRbbGoFGtkN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:12:e3:00:e1:12:38:01:05:cc:51:05:03:b9:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Jun 13 08:00:25 2026 GMT
Not After : Jun 14 08:00:25 2026 GMT
Subject: CN=8dac8bf725db3bca6aade93cbfde95a085ed3c64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:49:a2:ae:58:a9:a1:87:f4:85:d2:d7:8a:02:
11:03:ab:9e:08:11:61:bb:c3:60:3b:10:8c:57:57:
ad:4b:b9:9a:5a:27:a9:78:6b:54:78:bc:7c:8d:61:
3e:fc:35:a4:37:21:a2:82:45:61:7f:c6:4d:b8:42:
75:12:a6:65:6b:fd:b3:95:7c:fb:a0:a6:41:07:08:
76:8a:70:12:01:27:d1:62:cd:92:ab:65:05:57:d9:
10:b3:e0:c5:a2:13:36:c5:e5:b1:fe:31:ad:82:a5:
6e:67:2d:be:78:92:fa:9c:7d:2f:c5:b9:e3:66:7b:
54:d0:95:2c:4c:5a:15:24:e5:af:59:35:a6:13:e4:
92:5e:b1:f1:fe:6d:90:ec:95:4a:88:e5:0a:a7:1c:
7e:e6:78:fb:13:e6:26:5c:e4:55:34:87:e5:b6:7e:
25:55:f5:20:d8:95:20:28:86:8a:b2:3b:46:68:6e:
a8:0f:86:01:f4:05:28:18:71:33:b7:36:ec:86:6f:
f8:51:45:49:ed:d1:1e:92:1c:68:f1:9e:50:5f:5b:
fd:1c:e7:0f:4c:d8:3a:04:41:aa:b7:f6:9a:91:6e:
3c:11:c1:d1:89:2c:ee:0a:90:fb:ca:a4:e2:0e:4b:
85:61:47:24:cc:5d:be:40:1b:04:d9:6f:a4:a3:90:
0c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:AC:8B:F7:25:DB:3B:CA:6A:AD:E9:3C:BF:DE:95:A0:85:ED:3C:64
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:b4:1e:ab:c2:c4:83:72:bf:9a:f8:f8:ab:9e:b1:c8:7e:45:
a2:56:b6:34:a7:96:06:c9:47:f9:19:1c:a3:fe:8c:53:fa:17:
01:37:eb:07:4f:8a:fa:4e:22:44:0c:65:4b:0b:95:e3:bb:f8:
41:9a:46:2b:27:1c:99:86:1c:14:93:79:c4:1d:10:a6:25:51:
74:f7:b5:9e:67:95:47:fb:92:ab:23:a2:59:d7:50:29:42:57:
6a:83:ad:84:63:8b:4d:dd:93:52:7f:18:4d:01:bc:08:0d:11:
a0:3f:b8:c4:6f:99:73:c2:ba:86:88:7f:b4:c6:d7:8f:a4:15:
e0:8f:a6:35:32:6a:9b:69:55:13:b1:c3:23:37:71:da:93:78:
71:ef:d3:ae:4d:20:f3:78:56:91:c8:9d:5d:9f:11:ac:cd:97:
c8:c6:57:8a:08:49:42:63:14:db:8b:5f:60:29:6e:b7:7e:24:
2a:5c:48:dc:77:5e:4c:de:8e:be:69:2b:61:be:f3:b6:10:a6:
eb:ee:db:40:a3:a6:62:2a:43:4a:3c:a9:81:36:7a:5a:90:da:
82:2e:a7:1d:78:d1:7c:51:46:61:8b:1b:9e:8e:ba:d3:c2:13:
a2:22:19:8f:08:5b:3b:af:f6:18:e7:55:83:91:63:6a:a4:81:
85:86:be:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6//xLjAOESOAEFzFEFA7kRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1
NWZjYTMwHhcNMjYwNjEzMDgwMDI1WhcNMjYwNjE0MDgwMDI1WjAzMTEwLwYDVQQD
Eyg4ZGFjOGJmNzI1ZGIzYmNhNmFhZGU5M2NiZmRlOTVhMDg1ZWQzYzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0mirlipoYf0hdLXigIRA6ueCBFh
u8NgOxCMV1etS7maWiepeGtUeLx8jWE+/DWkNyGigkVhf8ZNuEJ1EqZla/2zlXz7
oKZBBwh2inASASfRYs2Sq2UFV9kQs+DFohM2xeWx/jGtgqVuZy2+eJL6nH0vxbnj
ZntU0JUsTFoVJOWvWTWmE+SSXrHx/m2Q7JVKiOUKpxx+5nj7E+YmXORVNIfltn4l
VfUg2JUgKIaKsjtGaG6oD4YB9AUoGHEztzbshm/4UUVJ7dEekhxo8Z5QX1v9HOcP
TNg6BEGqt/aakW48EcHRiSzuCpD7yqTiDkuFYUckzF2+QBsE2W+ko5AMPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI2si/cl2zvKaq3pPL/elaCF7TxkMB8GA1UdIwQY
MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt
MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm
LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0LQeq8LE
g3K/mvj4q56xyH5Fola2NKeWBslH+Rkco/6MU/oXATfrB0+K+k4iRAxlSwuV47v4
QZpGKyccmYYcFJN5xB0QpiVRdPe1nmeVR/uSqyOiWddQKUJXaoOthGOLTd2TUn8Y
TQG8CA0RoD+4xG+Zc8K6hoh/tMbXj6QV4I+mNTJqm2lVE7HDIzdx2pN4ce/Trk0g
83hWkcidXZ8RrM2XyMZXighJQmMU24tfYClut34kKlxI3HdeTN6OvmkrYb7zthCm
6+7bQKOmYipDSjypgTZ6WpDagi6nHXjRfFFGYYsbno6608IToiIZjwhbO6/2GOdV
g5FjaqSBhYa+Uw==
-----END CERTIFICATE-----
Generated at Sat Jun 13 19:22:09 2026 by rpki-client