Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.mft
File: NAGbKlAmfLYcC-dlKo0Usnv0hp4.mft (raw, json)
Hash identifier: xjWp5oHyWnPRRGk5ePh+Djw2e+1p7KSrF1TiyOhutZE=
Subject key identifier: 1B:34:00:D2:40:8E:8B:2F:02:E8:86:23:9D:05:12:B2:03:06:0E:A6
Authority key identifier: 34:01:9B:2A:50:26:7C:B6:1C:0B:E7:65:2A:8D:14:B2:7B:F4:86:9E
Certificate issuer: /CN=34019b2a50267cb61c0be7652a8d14b27bf4869e
Certificate serial: 0199FB0F2F7F0094A1E2288290B368792097
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAGbKlAmfLYcC-dlKo0Usnv0hp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.mft
Manifest number: 07BA
Signing time: Sun 19 Oct 2025 06:01:40 +0000
Manifest this update: Sun 19 Oct 2025 06:01:40 +0000
Manifest next update: Mon 20 Oct 2025 06:01:40 +0000
Files and hashes: 1: NAGbKlAmfLYcC-dlKo0Usnv0hp4.crl (hash: 48FgdLztKVv8ndcHRwrdKuAk+Ur8kfR6bL+IlMZfgk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/NAGbKlAmfLYcC-dlKo0Usnv0hp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:0f:2f:7f:00:94:a1:e2:28:82:90:b3:68:79:20:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34019b2a50267cb61c0be7652a8d14b27bf4869e
Validity
Not Before: Oct 19 06:01:40 2025 GMT
Not After : Oct 20 06:01:40 2025 GMT
Subject: CN=1b3400d2408e8b2f02e886239d0512b203060ea6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:aa:11:7f:36:fb:71:f2:87:ea:cb:79:46:72:
7d:cb:96:13:5b:f2:bf:5d:77:e7:d7:31:24:ec:d3:
8a:4d:87:f3:93:9e:94:be:c7:e6:49:a1:1d:d6:bc:
2c:b6:cf:15:0d:83:7c:0f:bc:79:93:6f:cb:76:f9:
33:16:4a:a9:20:11:8d:4b:77:a7:c8:5d:0e:d9:e0:
0c:8a:bf:2d:7c:60:97:40:7b:c9:f1:7b:13:eb:2a:
f1:dd:27:05:25:6f:b9:ac:f6:42:6d:1d:64:c1:05:
14:0a:f5:f0:18:ac:7e:f4:32:2f:0e:12:53:cf:47:
ab:1d:24:9d:7e:95:8c:a5:4f:7f:c8:da:74:bb:72:
88:b6:90:64:58:32:b0:0d:fa:c0:4b:4c:a2:a7:ee:
66:31:e7:a9:bb:c8:aa:b4:7e:23:21:89:b2:ba:0b:
b7:47:d7:b1:33:19:2a:c6:9d:d3:2a:79:6a:59:b5:
c4:17:54:89:57:ec:c9:00:b4:c0:82:6f:a3:f1:88:
e8:09:76:0f:a4:9f:89:ef:9a:bb:d2:62:39:0a:d4:
c3:7a:e4:38:56:12:38:40:5c:fc:e6:7a:20:22:8c:
30:b3:5d:46:f0:fa:66:fa:81:dd:fe:f3:10:85:b8:
9c:00:35:2e:83:75:00:30:ff:d2:85:10:c7:b4:f8:
bd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:34:00:D2:40:8E:8B:2F:02:E8:86:23:9D:05:12:B2:03:06:0E:A6
X509v3 Authority Key Identifier:
keyid:34:01:9B:2A:50:26:7C:B6:1C:0B:E7:65:2A:8D:14:B2:7B:F4:86:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAGbKlAmfLYcC-dlKo0Usnv0hp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/108b2c-d0c8-4818-97bc-f8efe29397ea/1/NAGbKlAmfLYcC-dlKo0Usnv0hp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:15:13:d8:7b:01:5a:f8:57:c2:ec:53:b7:87:8d:09:54:e2:
ba:52:6a:5d:fc:4b:1d:a7:6f:3d:e8:92:ce:ab:ef:d7:1c:23:
f6:bf:9a:51:b3:41:c8:06:93:e3:4c:eb:bf:31:b3:3a:e0:cb:
23:1f:f9:14:31:6e:05:f7:33:34:fb:62:92:d8:f1:94:62:dd:
6c:0b:6e:ec:f1:57:f1:21:e0:4e:67:ae:54:ce:b2:08:e1:aa:
fb:48:80:e1:d5:a0:cf:b6:2c:50:8d:56:97:99:58:90:cd:54:
15:27:8d:7d:44:2d:c8:4b:6d:53:33:1e:db:32:e2:f7:76:c7:
f6:ab:d7:e3:c0:0d:8e:da:a8:76:ff:d9:0f:49:47:03:e9:87:
6b:0a:9a:de:d6:d9:e6:41:3a:66:c6:15:8b:1d:14:ab:39:87:
65:f0:63:7c:29:24:48:96:fb:f6:5e:0a:3d:ad:5d:75:8f:b4:
c2:02:8e:12:e4:45:86:1c:f6:69:3c:8a:62:27:a5:70:08:20:
ca:23:47:2e:36:0f:e0:cb:03:26:fb:56:aa:12:3d:9c:1b:0c:
60:cd:90:52:72:39:18:9d:4d:a7:16:9a:d2:69:56:8e:e7:fb:
4c:a8:c0:8a:a8:c8:65:49:24:01:7b:9d:66:35:90:11:85:49:
5c:2f:ac:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:12:11 2025 by rpki-client