Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
File: syznolxromOxucmrdrjS3DoNaAY.mft (raw, json)
Hash identifier: fzok3IKCUmdNCyIUljvlNtEPMMmjrsev9NG83e2MPEQ=
Subject key identifier: 5D:0E:17:15:A8:10:6F:6E:B5:89:80:FE:13:87:7A:B2:F4:C4:7D:A8
Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
Certificate issuer: /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Certificate serial: 019A71B83069D07F5404E121A1DE7D8DC730
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
Manifest number: 05D0
Signing time: Tue 11 Nov 2025 07:01:27 +0000
Manifest this update: Tue 11 Nov 2025 07:01:27 +0000
Manifest next update: Wed 12 Nov 2025 07:01:27 +0000
Files and hashes: 1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: OLrIszw0KxC8UKSUm2HKyn0cJcgZEUu7gfqz9WmuBUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:30:69:d0:7f:54:04:e1:21:a1:de:7d:8d:c7:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Validity
Not Before: Nov 11 07:01:27 2025 GMT
Not After : Nov 12 07:01:27 2025 GMT
Subject: CN=5d0e1715a8106f6eb58980fe13877ab2f4c47da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4b:21:38:61:3e:ec:4f:2f:07:0a:e5:e6:48:
4c:ed:a5:7a:99:9e:01:2d:1f:b4:01:09:f1:77:66:
e9:39:8f:70:be:14:b5:b5:46:a0:12:38:7c:20:ae:
2b:da:8b:35:ca:98:33:95:b0:d9:61:19:8b:33:72:
99:9b:27:50:b1:ff:8f:40:e4:30:8c:76:d3:57:0b:
a3:db:8d:b0:39:cf:e8:6a:d0:27:b5:fc:ea:c5:44:
71:bb:38:79:d0:82:a0:53:05:c1:3e:62:62:87:37:
74:d1:06:8d:73:7a:ce:6c:42:aa:87:0f:20:b6:39:
30:77:3f:b7:da:f2:38:ed:0c:3e:9b:a5:69:35:90:
40:c2:69:cc:9b:33:c1:cf:38:77:9a:c2:da:72:a6:
ca:74:8b:3f:96:65:fd:75:e6:8a:1b:30:82:42:87:
bd:4e:03:d5:ce:35:5b:b6:fc:db:9d:ed:88:07:ba:
35:13:05:7a:3d:70:bb:26:f4:5b:d3:c8:8d:45:d8:
a3:b4:bb:f7:69:bf:c8:6e:14:78:ef:f5:94:82:ab:
a7:19:67:4a:34:6a:a7:fa:46:6f:ee:ae:14:99:4c:
2c:c1:22:40:48:d3:60:18:5b:d4:f7:5d:8f:b1:55:
e2:70:af:58:3a:7e:e0:5d:a7:4e:e6:4c:0f:79:ae:
65:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:0E:17:15:A8:10:6F:6E:B5:89:80:FE:13:87:7A:B2:F4:C4:7D:A8
X509v3 Authority Key Identifier:
keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:51:64:c5:5c:1b:47:b7:94:8b:fe:90:33:4c:07:bc:5b:1e:
15:98:31:61:44:ca:0e:2c:55:83:33:ea:9f:20:9a:66:29:4a:
06:f0:bc:90:40:41:f5:46:fa:de:6b:c5:79:3f:16:34:de:81:
fb:a7:aa:c6:57:93:92:54:25:df:f4:6e:43:cf:4d:38:26:4d:
81:f0:d0:08:ab:6b:ee:1e:70:f0:b1:59:66:d8:1b:33:11:d9:
a5:dd:88:c5:ff:4d:05:ca:5a:8c:84:7a:98:bb:92:75:2a:82:
8d:46:6a:43:a1:b9:68:6c:bf:84:39:7f:2c:ea:b0:1e:b4:cf:
3b:cd:fc:bf:f5:de:7f:9f:cb:8c:3f:ed:50:bb:58:4f:34:b5:
e8:79:3e:97:32:b3:06:36:90:1c:8c:7c:bd:60:5a:4f:be:74:
98:fa:0f:7a:87:56:dc:64:4d:cd:6d:4d:cd:25:57:01:a2:33:
e5:2d:dd:c2:54:90:ce:b9:be:33:a7:06:2e:7d:9c:14:4a:2a:
58:8e:d9:4e:aa:ef:d2:36:41:26:6b:63:76:93:6b:8d:8d:75:
2d:81:89:d1:08:dd:82:f8:a8:0e:2f:12:54:f6:22:51:4a:dd:
8d:7a:a4:80:57:bd:b2:5d:63:88:9d:1c:47:1e:06:b3:ec:02:
d2:16:51:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:39:14 2025 by rpki-client