Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: oHH8/Q7vGkugjOKLGfI/3B2tGiEczU1C9nepizCe8k0=
Subject key identifier: 79:42:3E:4F:20:EF:72:9A:29:B0:9C:08:7B:4A:C4:82:56:7C:94:3D
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 019CACEB773FC6E5ABBB56B991EC2A3D9561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0D3D
Signing time: Mon 02 Mar 2026 05:00:38 +0000
Manifest this update: Mon 02 Mar 2026 05:00:38 +0000
Manifest next update: Tue 03 Mar 2026 05:00:38 +0000
Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=)
2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: FipSo0nbKb0n9l1b7q4Rj1a2fRsqM99j61ALnq/Rkfc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:77:3f:c6:e5:ab:bb:56:b9:91:ec:2a:3d:95:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: Mar 2 05:00:38 2026 GMT
Not After : Mar 3 05:00:38 2026 GMT
Subject: CN=79423e4f20ef729a29b09c087b4ac482567c943d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e5:40:1b:64:eb:6a:dd:0a:b3:bd:76:d7:24:
1b:36:a5:89:d6:f0:2e:fc:06:19:35:a1:b6:39:ea:
43:4c:3d:8b:5e:d5:8d:61:6a:d8:6f:42:0a:0e:ef:
6f:ab:4d:6a:37:6e:3c:82:49:85:9b:f3:f1:dd:82:
c8:45:20:19:44:e9:1a:62:80:bd:33:aa:9f:16:aa:
13:fc:7f:90:5d:0e:52:93:9c:f1:98:8d:cb:34:95:
1b:c7:22:0a:4e:5f:47:1b:6e:de:a8:c6:e7:10:e3:
a0:86:5c:ea:0d:32:d9:fe:5e:71:91:f2:f0:a0:87:
65:26:ba:7c:93:b7:1d:89:71:40:55:d6:bc:3e:8c:
5e:2e:67:90:ca:2b:89:d8:6a:33:74:48:a3:27:c9:
f7:40:a5:2c:9c:1b:aa:88:66:bc:fe:ab:ad:c0:b4:
de:0c:70:72:fb:bd:03:1b:21:7e:e0:88:7c:9f:7c:
06:23:d0:e2:90:1b:a5:fc:47:ae:ba:28:20:7a:57:
c5:63:27:99:56:31:30:63:d4:b4:d6:59:b6:9a:50:
d6:8d:38:5d:98:f9:fd:14:96:92:0f:67:70:12:31:
2e:d1:b5:f1:ba:7f:de:73:12:1d:07:3d:f2:93:b2:
25:fa:22:5c:e0:d5:08:6d:9b:48:5b:2d:d8:5e:61:
60:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:42:3E:4F:20:EF:72:9A:29:B0:9C:08:7B:4A:C4:82:56:7C:94:3D
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:20:ea:71:20:0d:c5:e1:e7:8b:a3:0e:0e:a6:a1:da:fc:0c:
ef:c5:aa:a2:a3:7d:59:9d:53:38:3e:ba:bb:77:d5:fa:86:80:
d6:9e:78:d2:11:4d:f3:90:b2:17:3d:19:09:9e:b8:eb:f2:1b:
0c:6a:ac:0b:6c:6e:07:db:b2:93:e7:e1:13:03:1a:47:93:f9:
ff:ea:b4:05:d1:05:97:c4:c4:0c:53:f2:2d:d9:74:c3:e2:bd:
4e:3d:1b:b7:e5:5b:c2:97:56:48:4f:9a:74:42:6b:0d:91:f0:
cd:46:8e:98:eb:57:0b:1b:f1:82:98:41:fd:2b:72:05:2b:48:
15:03:0b:11:fe:c8:f6:ba:d3:0c:dc:ac:c7:02:6d:4d:30:ba:
05:99:ef:1f:2f:df:c8:2d:e5:a3:2a:e4:83:22:18:98:30:14:
f0:df:6d:a4:9e:10:ea:f6:6c:7a:a0:20:e0:bf:db:09:ab:96:
6c:5a:dd:10:b9:a6:b5:7b:9d:40:22:88:29:09:ac:85:4e:aa:
fe:0c:29:93:61:84:2d:46:aa:ed:53:54:6c:4e:21:c1:bb:21:
d9:42:2a:00:86:c9:79:c7:13:10:2b:c8:e6:03:d8:b1:a7:37:
9d:85:a0:ff:a7:48:6f:4d:1c:9a:f3:d4:f8:c8:07:48:e1:80:
3d:30:05:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:42:38 2026 by rpki-client