Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
File: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft (raw, json)
Hash identifier: vHhdQm3SMwsQbiP71kozwTtyK9ZsiGQ2Oi2S78RANTc=
Subject key identifier: 48:75:5E:9A:1E:6C:DA:71:EA:5A:BA:32:CC:6B:6E:D6:E8:E4:A7:40
Authority key identifier: 35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
Certificate issuer: /CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Certificate serial: 019E1D90C50F3DD30D683965957AF3F157E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
Manifest number: 126B
Signing time: Tue 12 May 2026 19:01:27 +0000
Manifest this update: Tue 12 May 2026 19:01:27 +0000
Manifest next update: Wed 13 May 2026 19:01:27 +0000
Files and hashes: 1: 0KXcrZCfQQCMUJ-Oh6SKIaYBOxQ.roa (hash: gzxW7vQjQaL5VdH2MwBQ91tWqChVH7iFvHzc5ySCf74=)
2: NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl (hash: FqXBvQWQHuJTeLvCQEgLEumTdMeHDEaRFbd9qpzvGpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:c5:0f:3d:d3:0d:68:39:65:95:7a:f3:f1:57:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3514ff67f3b8d4f6f6bda23ecbbc7b0f09fe6080
Validity
Not Before: May 12 19:01:27 2026 GMT
Not After : May 13 19:01:27 2026 GMT
Subject: CN=48755e9a1e6cda71ea5aba32cc6b6ed6e8e4a740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3f:1d:9f:70:c7:a0:10:f2:4b:26:f5:e6:43:
67:fc:cf:3b:1c:91:02:5e:e3:89:ea:4f:35:d3:4d:
eb:57:ed:4c:eb:97:2b:e9:58:fa:22:39:3e:b1:f3:
a4:ca:dc:d2:de:be:86:de:7b:de:06:e9:16:0e:55:
9b:ce:10:a3:54:78:76:b4:87:be:95:ab:69:a0:c5:
24:a9:02:9b:1e:3f:d6:52:f2:9a:04:4c:a5:a3:b4:
c5:de:2a:85:3e:93:15:e8:9f:ec:d1:68:9e:cc:a4:
14:a2:38:5c:39:97:a5:f0:4f:a8:02:14:bf:be:b8:
40:12:34:c3:2c:75:89:33:da:ca:02:59:31:0f:21:
5d:d8:13:b4:11:02:d3:7e:e9:9f:c0:fe:36:47:73:
bd:1a:89:d6:7e:e6:8c:e5:b1:03:55:c9:d7:d5:95:
c9:52:03:78:60:44:3d:47:aa:fc:aa:0e:2f:f0:7f:
51:e6:ed:11:65:f9:04:63:3c:9e:68:c7:64:d1:2d:
31:15:4f:60:55:67:e6:35:15:da:93:61:7a:03:f3:
bb:b5:51:63:c9:a2:2f:8a:a2:ed:0e:15:f6:33:4e:
63:64:0a:b2:f1:88:db:c8:ed:82:9b:f4:57:da:71:
89:1f:2c:a7:1a:72:46:3f:9d:6f:b9:da:33:f2:a4:
3a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:75:5E:9A:1E:6C:DA:71:EA:5A:BA:32:CC:6B:6E:D6:E8:E4:A7:40
X509v3 Authority Key Identifier:
keyid:35:14:FF:67:F3:B8:D4:F6:F6:BD:A2:3E:CB:BC:7B:0F:09:FE:60:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/a815b3-c48c-4ff9-989d-8854c92d47b1/1/NRT_Z_O41Pb2vaI-y7x7Dwn-YIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:45:49:22:43:64:66:b3:cd:c6:d9:cd:a6:19:e5:f3:d9:08:
7f:15:26:58:5f:ea:32:44:6c:cf:19:23:ca:72:f8:04:c4:0b:
c6:c0:e6:a7:0e:47:7e:2f:b8:e6:f3:f5:fa:b5:06:ef:2a:08:
e7:2f:72:e8:06:02:45:b9:52:eb:a7:1e:1b:cb:9d:64:c5:cf:
ea:f4:f8:6b:10:4c:de:ea:f7:0d:c6:50:98:e6:90:50:79:af:
e5:93:92:8b:f2:aa:1d:10:ee:aa:84:7e:f7:d8:75:76:10:46:
45:59:51:d1:44:4f:68:95:9d:92:59:9c:92:0f:34:6a:2d:ed:
6f:ad:ff:fb:9f:a1:f2:8b:54:7f:6a:5d:90:2e:f7:2d:75:54:
57:89:c3:c9:05:5a:c4:5b:2f:2e:25:0f:28:7a:75:47:75:76:
5a:90:19:46:62:53:1c:e4:6d:17:b0:38:e4:ad:8e:f0:7f:c2:
01:08:85:29:14:9a:e0:42:ef:f6:c5:c3:8e:b9:76:a9:cd:07:
e6:e2:77:19:cd:79:6d:03:21:69:6d:33:31:08:f8:7d:47:d9:
e5:d1:3d:97:4d:e1:1f:6b:a9:e3:70:3b:f4:fd:e5:ef:67:cc:
3b:ed:52:bc:36:a7:9c:21:28:01:16:ef:9e:59:7a:78:a4:a2:
59:de:18:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:07:08 2026 by rpki-client