Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
File: WFRbn70B0owOptCPW0cts0-tLqM.mft (raw, json)
Hash identifier: DkFmqrWZp9ex3QgAz7yx1PHxVAI4yCArjItID0P+uLw=
Subject key identifier: DE:6E:B1:DE:A6:0C:24:3E:50:3D:3F:BA:FE:B2:C6:28:AF:15:E6:E4
Authority key identifier: 58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3
Certificate issuer: /CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3
Certificate serial: 019A7225D1E98074ADBA8CC80695A0B43C1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
Manifest number: 16E5
Signing time: Tue 11 Nov 2025 09:01:12 +0000
Manifest this update: Tue 11 Nov 2025 09:01:12 +0000
Manifest next update: Wed 12 Nov 2025 09:01:12 +0000
Files and hashes: 1: WFRbn70B0owOptCPW0cts0-tLqM.crl (hash: 7ODAlik9c6gI/ADFVWHA7qqWwtnXeH2DJO92LOl1DSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:d1:e9:80:74:ad:ba:8c:c8:06:95:a0:b4:3c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58545b9fbd01d28c0ea6d08f5b472db34fad2ea3
Validity
Not Before: Nov 11 09:01:12 2025 GMT
Not After : Nov 12 09:01:12 2025 GMT
Subject: CN=de6eb1dea60c243e503d3fbafeb2c628af15e6e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:18:9c:bf:58:49:ea:33:5f:e9:cc:fe:60:39:
a4:e1:49:11:48:35:96:8f:bd:c8:12:69:25:24:06:
6b:2b:01:34:8e:75:ff:3e:cf:5c:c0:44:cf:a4:98:
7f:bd:f5:01:35:83:9e:56:88:25:80:a0:56:70:f0:
62:9f:cc:57:05:40:4a:58:42:00:06:6f:10:26:ae:
31:fb:be:d1:9c:25:6d:fd:62:59:b2:c8:6b:ef:9c:
0d:dd:39:0a:91:01:c0:d5:60:99:15:ef:14:fc:a3:
43:1b:98:cd:f2:ae:9f:99:58:5f:25:5f:08:22:e9:
98:36:ed:5d:49:86:bd:9f:fa:5e:3d:ef:5d:34:87:
ea:36:8d:c5:91:41:f4:47:73:31:c6:03:d8:40:b9:
dc:f7:0f:ab:5a:83:80:2f:5f:16:e7:cd:e9:ec:0e:
79:57:33:c0:31:f0:38:b3:06:7d:54:68:d8:5c:bf:
17:7e:9e:37:d7:5e:98:72:d6:be:a6:11:93:89:91:
20:18:42:41:e4:e1:87:98:97:e6:4c:47:a5:e6:26:
55:e4:db:dc:a5:e1:fd:53:a5:0f:d3:b0:f0:b3:5a:
08:65:21:6e:f3:dd:0c:92:ec:b1:c8:e8:26:68:9d:
d1:ff:8d:bb:d5:89:07:91:88:df:8e:4f:e0:5a:12:
49:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:6E:B1:DE:A6:0C:24:3E:50:3D:3F:BA:FE:B2:C6:28:AF:15:E6:E4
X509v3 Authority Key Identifier:
keyid:58:54:5B:9F:BD:01:D2:8C:0E:A6:D0:8F:5B:47:2D:B3:4F:AD:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFRbn70B0owOptCPW0cts0-tLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9cfc79-8bda-4862-a7d8-4f8d9355d862/1/WFRbn70B0owOptCPW0cts0-tLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:63:26:aa:13:5d:77:d0:ee:f6:f3:47:0b:c4:78:e5:b1:20:
19:c5:84:5a:04:7d:c7:79:47:39:bf:f1:cb:70:ea:d7:ba:c2:
7a:36:d7:c2:d0:bc:2f:43:54:7a:4b:68:ea:de:6e:69:91:7d:
c6:18:47:df:4a:ba:d2:8a:e5:4e:f9:f5:55:89:bf:b8:32:e4:
2c:d2:21:d7:d0:a4:94:93:66:72:64:ab:67:0a:be:a2:d3:50:
78:d8:15:67:b2:75:b5:52:3a:d2:0d:b7:e2:3b:83:de:0f:ad:
ba:6d:d8:e1:d5:c5:24:d5:9c:30:72:a6:ec:a0:8c:8d:f8:1e:
99:b5:9d:55:88:fe:4e:e4:fc:e7:74:26:de:e5:cf:21:bc:4f:
65:ca:26:c1:ee:70:5e:c5:a4:ad:59:23:7e:6a:16:92:e3:81:
19:66:4c:45:f9:00:15:26:fb:5b:11:9e:b7:81:51:99:dd:30:
b5:26:46:1f:86:a1:7f:02:29:09:c1:00:20:91:1c:d7:c8:b5:
e0:d2:8e:38:e5:38:40:65:39:98:0d:dc:3e:27:1b:fa:95:69:
e1:91:c4:e6:cd:f7:43:df:6f:14:cb:d0:54:70:9b:0b:e9:bc:
1c:77:97:ca:4d:ea:67:98:61:c8:d4:99:ba:43:77:17:97:9e:
5e:3b:a3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:53:39 2025 by rpki-client