Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
File: syznolxromOxucmrdrjS3DoNaAY.mft (raw, json)
Hash identifier: 4++MDWsuZpxQaFPbBv17USZx9q5IbM+7vSvt/EHSPj0=
Subject key identifier: BC:83:74:C1:DD:37:7B:ED:2D:15:26:ED:97:E5:82:8F:32:B8:B9:F5
Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
Certificate issuer: /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Certificate serial: 01964F6D0F587499317F8DC519785A54D26B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
Manifest number: 03AC
Signing time: Sat 19 Apr 2025 19:01:09 +0000
Manifest this update: Sat 19 Apr 2025 19:01:09 +0000
Manifest next update: Sun 20 Apr 2025 19:01:09 +0000
Files and hashes: 1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: 72Zbt89WuOFvtSJS85y3A8kjCi0D3EMGu6ZZ7fRPPk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:0f:58:74:99:31:7f:8d:c5:19:78:5a:54:d2:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Validity
Not Before: Apr 19 19:01:09 2025 GMT
Not After : Apr 20 19:01:09 2025 GMT
Subject: CN=bc8374c1dd377bed2d1526ed97e5828f32b8b9f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:6b:44:2e:bb:53:75:fa:17:7b:a1:fb:01:
07:a9:ea:90:aa:11:1f:a5:9d:03:d2:fd:d5:12:e3:
64:19:8b:52:64:bf:0e:ee:de:9c:81:5d:12:1a:89:
3f:3b:19:08:c8:ab:9d:60:f6:a9:f1:03:db:f3:c9:
0b:d6:10:a0:c0:83:2c:e8:1e:de:3f:dc:27:78:6d:
1f:dd:7a:94:52:d3:37:b3:40:70:6f:d1:e7:f0:c0:
26:94:b3:41:da:31:5e:e1:59:35:6b:8d:84:5d:e2:
fb:26:b1:5a:98:32:fc:14:47:91:a3:4f:34:aa:65:
ad:55:e7:15:fe:3f:42:3c:44:46:2b:eb:66:42:15:
b9:26:87:11:b5:a1:1b:7a:23:34:b4:a5:e6:d8:47:
ac:78:fc:ff:b7:15:e5:88:0d:ff:37:8b:41:f5:c7:
b9:13:70:2f:19:95:05:6a:1b:5e:59:8a:ea:50:e4:
b8:5b:54:3c:84:d7:91:dd:a1:8e:e5:54:37:85:44:
e6:ae:3f:d3:15:54:f0:d7:9b:44:fb:ea:ee:ef:68:
90:87:af:f3:b0:d9:b4:3f:21:b3:7d:2c:71:12:86:
ac:b8:5b:79:73:e2:4e:3c:1c:45:90:52:5a:ea:5f:
8b:a4:c4:0a:38:dd:78:03:4a:94:a4:3e:aa:18:da:
1c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:83:74:C1:DD:37:7B:ED:2D:15:26:ED:97:E5:82:8F:32:B8:B9:F5
X509v3 Authority Key Identifier:
keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:73:fd:1f:3b:62:11:62:7c:ea:02:43:a5:02:f8:b9:93:03:
10:a5:fa:02:c4:30:d6:29:a8:a8:5d:3a:90:0f:73:e6:a0:c7:
b7:07:8d:46:f0:63:87:6a:da:ff:e0:b5:31:ca:71:ab:69:56:
4a:7c:0b:f3:5d:03:39:8d:6c:b4:79:94:f4:8f:b4:87:0f:65:
05:18:fe:94:ad:56:fd:81:c4:6d:f6:57:27:22:49:d5:e9:7c:
f2:45:43:dc:4b:8a:39:69:a2:bc:9b:a2:a8:d7:3e:c3:73:cc:
ff:6a:f7:ee:9c:4a:6b:95:ea:3f:a0:03:2c:b1:ae:e7:66:ba:
cc:eb:0d:0f:d7:d9:3e:3e:19:dd:89:10:dd:e2:31:60:3d:de:
3c:db:e9:c4:20:cd:04:7e:2f:f4:2f:a7:67:86:ba:ef:0e:e1:
a0:b9:5f:1f:5e:cc:98:07:f0:7b:a4:34:b5:22:aa:e0:7b:05:
e3:9e:d5:28:f5:50:c3:b1:22:b7:fb:78:c0:d7:6a:2a:cf:c9:
0a:d9:3b:cb:e8:c9:25:49:6b:c0:f5:8c:a1:e2:4e:60:0d:02:
3b:c6:ea:e3:30:fb:4c:8b:b8:f7:17:4e:48:9c:50:a3:1a:03:
4d:72:7c:d0:7e:c0:60:6d:7c:bc:7c:f9:25:41:24:18:0e:1e:
d3:be:39:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:18:44 2025 by rpki-client