Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: m5sNICSySC3Q8pdT2LZ/A6KVWNG2Bf5I4usjZSrQeOg=
Subject key identifier: AE:BC:E0:87:16:8C:77:86:7B:43:94:CB:06:2A:6E:EF:1B:07:1B:F8
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 01958B4DF1CEFDEDC12D4AE809DD3825FED1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 027C
Signing time: Wed 12 Mar 2025 17:01:35 +0000
Manifest this update: Wed 12 Mar 2025 17:01:35 +0000
Manifest next update: Thu 13 Mar 2025 17:01:35 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: DLBLak7tCUquM3VWJSe9ve1eHYmo8YwBTainxuhLwHI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:f1:ce:fd:ed:c1:2d:4a:e8:09:dd:38:25:fe:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Mar 12 17:01:35 2025 GMT
Not After : Mar 13 17:01:35 2025 GMT
Subject: CN=aebce087168c77867b4394cb062a6eef1b071bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1f:38:5f:44:ea:d3:b7:c4:d4:38:03:2f:90:
c4:ad:ef:02:0c:6d:80:5f:98:58:ca:7d:03:db:3d:
55:36:83:d3:c5:f2:cd:e2:37:24:09:7c:bf:f4:39:
c7:78:70:15:1f:21:6e:89:2f:ca:3e:b8:a1:35:99:
a9:cd:a3:76:da:fc:81:86:b4:9c:03:01:14:3c:96:
76:43:f0:14:d2:bc:db:9d:50:f6:98:56:ac:08:bf:
a8:b5:0e:be:57:a6:3a:af:5e:83:63:21:a2:1e:4a:
3b:ec:0b:39:1f:71:f1:b1:97:54:21:c7:e2:97:31:
5b:ab:b7:86:50:c3:e8:44:33:ab:10:1c:45:2c:09:
f8:17:aa:fa:c1:5b:80:21:20:c1:ae:71:cd:5a:78:
a9:ef:89:61:b2:7d:ea:dd:fd:38:c9:fa:4a:a4:ca:
1e:b3:b7:5d:3f:a4:51:77:aa:6e:c1:84:fa:cf:7f:
f3:55:26:8a:90:dc:1e:b1:fb:43:20:1d:ac:fd:f2:
59:c7:6b:ac:56:56:7f:f5:dc:a8:fd:82:19:d5:c3:
5c:b6:89:dd:69:3d:62:20:d0:96:5f:e1:e0:a0:1f:
21:b3:5f:c9:7c:1e:0d:2e:ac:1a:26:f7:81:70:4d:
44:a8:f5:64:46:e7:e8:c9:05:ab:31:d7:d1:b4:f5:
4a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:BC:E0:87:16:8C:77:86:7B:43:94:CB:06:2A:6E:EF:1B:07:1B:F8
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:97:17:81:e5:ae:65:e1:19:ed:4f:e2:01:96:ea:fd:b4:db:
a7:6c:68:96:d5:92:b6:46:8e:62:9b:04:2d:1f:d2:c6:f5:2e:
8b:8f:54:74:0c:63:3f:c1:42:55:38:14:8d:0a:1e:17:2d:88:
88:68:3b:5c:e4:41:b9:6b:5a:01:76:8a:35:bb:21:d0:e7:4b:
a4:7a:1b:a8:ad:f5:8c:c1:60:88:b3:27:99:d3:56:6c:81:15:
bd:cd:b0:ec:9c:b7:20:6a:73:c1:4d:c7:0f:f6:3e:72:be:52:
20:25:1d:93:5e:3b:90:b1:a0:d2:f0:30:1b:b1:41:b2:a3:00:
1e:35:23:b9:3c:80:01:89:b2:e7:80:94:98:82:0d:87:cc:b1:
a1:a5:58:0a:91:f2:61:13:71:88:41:a4:48:cb:6a:0e:e5:2b:
ec:3c:62:c2:2a:b1:64:38:b9:5e:5e:bf:5b:d5:84:0e:60:2b:
9c:8e:ba:76:8b:af:6d:b9:0c:27:9b:96:55:a4:b6:3b:05:26:
be:f8:99:aa:06:85:79:9c:c2:ef:29:b1:2c:4e:4d:6f:ae:ee:
34:07:c2:06:0f:d3:c4:13:3e:46:c2:2e:82:ae:48:d7:8d:33:
fe:c8:2f:93:f5:81:25:8e:eb:ef:3b:29:31:7d:24:ca:90:38:
8a:d0:b0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:02 2025 by rpki-client