Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
File: syznolxromOxucmrdrjS3DoNaAY.mft (raw, json)
Hash identifier: tkD88QaOawAx+3StTJf5sWqFai0kiSLZ/K4q90GYF7A=
Subject key identifier: 45:27:CF:2A:70:29:34:48:AA:14:D2:C3:DB:D8:B2:20:B8:5D:64:2C
Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
Certificate issuer: /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Certificate serial: 019A52D18B744C1C16F32D22E866154B6FDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
Manifest number: 05C0
Signing time: Wed 05 Nov 2025 07:00:55 +0000
Manifest this update: Wed 05 Nov 2025 07:00:55 +0000
Manifest next update: Thu 06 Nov 2025 07:00:55 +0000
Files and hashes: 1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: HmZBAFg2+ugaIs1duS8MnsGf45r3Zk96pPcjxZT+xrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d1:8b:74:4c:1c:16:f3:2d:22:e8:66:15:4b:6f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Validity
Not Before: Nov 5 07:00:55 2025 GMT
Not After : Nov 6 07:00:55 2025 GMT
Subject: CN=4527cf2a70293448aa14d2c3dbd8b220b85d642c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a1:05:f5:07:68:a8:44:ee:55:c5:78:29:07:
ed:85:0d:92:35:84:92:8e:33:d9:57:ae:8e:71:10:
5b:31:6f:77:87:2d:54:85:65:11:c0:7e:dd:05:83:
fa:90:8c:5f:b0:5a:0f:0a:1e:16:a8:48:cd:0a:a2:
50:10:0f:33:1e:ea:2e:7b:25:a5:7c:b2:0d:e4:0a:
94:db:22:48:ad:0b:57:99:3b:bd:b5:a8:0f:ab:3b:
ff:e3:dd:fa:f8:7b:2e:f4:e2:8a:7a:1a:43:4e:66:
3e:8e:f2:e5:94:50:c4:77:a9:af:4d:da:37:3c:3b:
f2:40:1f:3a:0a:5f:c1:73:bb:14:c0:f9:fa:b6:0f:
0a:c0:7b:1f:a1:80:fc:75:6a:ee:b0:db:fc:99:82:
c6:ce:37:64:fa:cd:09:09:4a:21:a4:32:9d:50:52:
29:09:a0:23:20:ff:41:d7:95:10:17:bc:85:d4:7c:
8d:ee:a4:11:0d:af:a6:5b:5d:14:cb:ca:26:b4:67:
92:81:d6:b7:2d:1b:d6:23:37:19:fe:ef:0c:06:9a:
9b:7a:5f:5e:7c:74:1b:b8:e0:86:24:db:2b:37:cd:
e8:7c:44:12:f3:b9:3d:30:9a:24:e2:e0:3f:ba:6b:
71:61:7e:7a:99:cb:dc:c9:c7:ee:db:5b:81:2e:69:
24:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:27:CF:2A:70:29:34:48:AA:14:D2:C3:DB:D8:B2:20:B8:5D:64:2C
X509v3 Authority Key Identifier:
keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:82:bb:3b:c6:78:de:2f:d5:3f:f6:40:b5:7a:c2:01:72:71:
df:d2:60:ec:ea:ef:fb:0f:c8:7d:86:0a:65:3c:0d:d7:9c:a5:
3f:fa:42:4f:58:a0:10:41:9d:3a:35:46:22:8a:ea:67:b4:43:
78:fc:fe:3f:0c:f5:71:49:fe:eb:a9:96:89:20:1e:d6:85:f5:
03:7a:c6:23:19:f7:2a:54:cf:be:06:6c:4c:45:4a:da:c7:6a:
42:2f:7c:4e:38:61:26:90:fc:b0:4a:f0:82:ca:34:ed:b5:60:
6e:34:66:b9:fd:c3:45:54:19:ba:21:eb:63:e3:b8:eb:3c:87:
56:c7:9c:3b:49:50:6f:c7:6f:b3:13:e4:2a:bf:69:ec:58:7b:
5f:5f:65:02:27:bb:01:fd:b6:c0:43:0b:fc:93:cd:38:46:05:
fc:c0:b3:c3:8d:97:ca:dd:54:f1:e3:0f:e8:eb:57:ab:ea:e2:
9c:da:d8:38:55:1b:ba:52:66:3c:70:5b:5e:61:19:41:cf:b2:
ac:b9:95:9d:1e:7e:64:89:d0:b7:2b:7f:a9:f2:ca:ad:cc:25:
cc:02:cc:38:b1:83:e5:9b:7b:6b:cb:3f:67:84:71:75:bf:cf:
2c:10:01:6b:00:20:33:02:ae:6f:84:27:ca:a7:ad:f5:e0:65:
1b:a8:92:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:49:25 2025 by rpki-client