Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json)
Hash identifier: quLNvva/0L4rfpZioRo9Gopmkbj8qDIikYNOY/QvOYE=
Subject key identifier: B3:DE:E6:E3:79:B4:13:DE:82:E7:D3:F6:75:0C:29:09:4D:7B:1F:BF
Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Certificate serial: 019E1FB587AD36779128D9E3E0B2895942A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
Manifest number: 0DFD
Signing time: Wed 13 May 2026 05:00:50 +0000
Manifest this update: Wed 13 May 2026 05:00:50 +0000
Manifest next update: Thu 14 May 2026 05:00:50 +0000
Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=)
2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: hZzx4Ggt2CcGtCLxol9SzHWwCKUANPVJoO2u9qXfkC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:87:ad:36:77:91:28:d9:e3:e0:b2:89:59:42:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3
Validity
Not Before: May 13 05:00:50 2026 GMT
Not After : May 14 05:00:50 2026 GMT
Subject: CN=b3dee6e379b413de82e7d3f6750c29094d7b1fbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b0:2e:bd:87:51:d1:05:df:66:b1:e4:93:04:
07:87:84:50:77:ad:ef:b4:b3:95:f6:1d:19:c3:e5:
74:d4:7f:a2:ed:da:93:af:1b:01:33:03:5c:ad:26:
0a:d7:0e:e3:bf:c4:04:1b:8b:e0:4a:f2:49:0f:97:
42:69:99:65:ac:06:fc:3e:f8:a5:f8:4c:61:39:ed:
fc:11:06:8d:db:c5:a5:90:2f:cc:25:1b:97:b5:9c:
f0:90:ac:df:ee:0a:e7:d7:88:16:5a:48:0b:86:20:
19:43:5f:15:86:9c:c6:92:8d:91:81:4d:d8:56:70:
90:95:96:6a:9e:a9:24:3d:e2:7b:43:35:35:3d:46:
81:56:e0:3c:f2:d4:8e:c7:b6:a1:db:38:4b:27:04:
0f:11:aa:17:ac:f9:f9:d4:f3:c0:94:5c:9a:c3:b8:
47:c5:81:54:b0:0e:06:49:ce:e8:59:14:d8:2c:07:
8f:66:0a:ac:63:4a:34:a6:52:d2:a8:c3:dd:e8:3f:
44:08:7b:73:9b:0f:91:7b:60:18:31:c7:88:f2:8b:
a0:33:2e:dc:9a:5d:f2:66:b6:26:44:97:7c:c3:4c:
eb:3f:31:4c:c1:10:7b:47:12:e2:15:f3:b7:e4:db:
a4:8a:3e:80:8e:90:17:1d:52:73:10:6b:7e:d1:00:
0c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DE:E6:E3:79:B4:13:DE:82:E7:D3:F6:75:0C:29:09:4D:7B:1F:BF
X509v3 Authority Key Identifier:
keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:6e:d3:1e:78:7d:bf:1f:3f:94:ed:7f:03:83:8e:29:c0:be:
64:b2:54:fc:01:65:1d:60:a0:cb:d3:79:40:c1:08:22:7e:1f:
95:dd:ec:e9:c5:19:69:d6:6d:56:be:2e:b6:65:0e:37:b7:1b:
5d:cd:a2:c3:8d:4d:2f:0c:2b:da:58:77:b2:aa:8f:df:5f:39:
46:42:7c:85:88:b4:98:fd:96:e9:25:55:63:e7:aa:56:ec:0e:
07:86:30:70:db:e1:ba:30:38:6d:73:ff:0a:3a:cb:18:74:61:
33:ac:49:0e:43:eb:78:6c:9b:25:db:82:21:ab:f2:2b:0d:0c:
58:67:f5:f4:8e:d0:1f:c9:85:ad:ee:fc:4c:28:e1:17:88:97:
07:3d:31:60:fe:a7:bc:b4:2a:bd:c7:4a:b5:9d:ea:7c:c2:b2:
16:a8:80:d2:eb:16:fe:13:9e:72:b3:35:d0:a4:d1:42:ed:60:
14:ee:04:7e:3f:4a:d2:a9:26:bc:86:c0:72:e4:21:f6:c6:4e:
40:3d:26:61:a1:23:51:15:2f:e0:36:6a:39:3a:c2:53:a0:d9:
56:34:f7:c8:b7:72:8c:a0:b0:6a:cc:79:b8:f8:5a:8b:d9:42:
86:1a:86:9b:d2:21:9a:f4:bb:69:d7:12:fe:dd:f6:b7:1a:2c:
2a:d5:67:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:35:20 2026 by rpki-client