Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: HNBt8D1dmQwBX3EN4JVSrHTK9fc0JqCajkC3wpP53lQ=
Subject key identifier: 60:DC:DB:8D:7D:F8:6D:EE:58:18:E0:8F:1D:63:07:F6:E8:A7:CF:F6
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 019A70A509B477F81DC32DFF69E43F9FCF51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 0505
Signing time: Tue 11 Nov 2025 02:00:55 +0000
Manifest this update: Tue 11 Nov 2025 02:00:55 +0000
Manifest next update: Wed 12 Nov 2025 02:00:55 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: Ou2PivfMgsBLVkuhaA5Nagu9Xrkdy6fcBQUxn934Cik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 02:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:a5:09:b4:77:f8:1d:c3:2d:ff:69:e4:3f:9f:cf:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Nov 11 02:00:55 2025 GMT
Not After : Nov 12 02:00:55 2025 GMT
Subject: CN=60dcdb8d7df86dee5818e08f1d6307f6e8a7cff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:50:f2:bd:bc:e6:88:c3:e0:b7:1d:be:cf:
a5:ed:9f:dc:47:4d:fc:36:e2:d3:dd:00:51:3e:9f:
de:28:79:1d:25:eb:d9:3b:d1:5f:57:fc:90:d3:a5:
68:ed:de:ac:05:01:4b:24:30:12:c1:7c:cf:9a:12:
01:48:9c:7b:7a:57:fe:0a:bf:88:24:9f:7a:06:82:
8b:c2:ba:cc:8f:85:a3:5a:0f:24:22:4f:fd:35:2c:
a7:e8:a0:8c:4e:42:11:dd:c8:cf:ca:61:28:b1:ff:
1b:8c:26:00:f8:83:f8:81:dd:f3:87:8f:bd:3d:4d:
2c:63:c2:9d:a1:c9:6d:00:55:7f:98:e8:2d:ad:c4:
9d:73:ae:5a:cc:24:23:f3:c3:9d:bc:f7:c9:86:b2:
39:de:54:82:38:e6:bb:bb:22:9d:bc:05:ee:c7:fa:
5f:33:39:f9:32:37:39:55:3e:e2:ee:80:90:6a:e5:
c2:f3:79:93:05:9e:5d:47:33:79:28:5a:38:d3:c0:
4b:c6:ee:87:28:fa:35:53:f1:9b:ce:85:f1:c4:72:
3e:79:9a:66:dd:d6:29:e4:47:8b:b4:bf:e3:2e:5a:
e6:f9:2e:18:28:cb:24:fe:d8:01:11:55:3a:0f:d2:
0a:17:ea:f4:f4:7b:e8:8f:4d:71:19:bd:0f:3a:a3:
f5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DC:DB:8D:7D:F8:6D:EE:58:18:E0:8F:1D:63:07:F6:E8:A7:CF:F6
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ad:fb:ee:61:a3:b9:33:ca:23:eb:b9:c5:93:10:ac:8b:df:
0e:f0:ee:24:05:53:07:e1:1f:6a:cb:c6:a6:32:25:28:83:3b:
8b:57:47:77:fb:9a:d3:2e:aa:2a:36:82:82:7b:ba:8f:70:0e:
9d:60:95:27:f8:d7:bb:64:e5:91:7a:1a:f5:ab:f7:df:3a:22:
d9:cd:d1:97:f0:45:c2:a3:17:1e:78:4f:5f:94:42:87:aa:a7:
c0:ea:df:12:94:48:6c:36:8c:57:e4:b9:21:d6:c6:af:d4:ac:
e5:1d:62:50:e4:4b:13:0c:db:a8:70:3e:e7:25:96:f0:81:24:
e1:13:32:02:6f:1c:c9:e8:9d:1d:16:12:17:83:5b:41:ec:c9:
00:d2:4b:e2:a5:06:1b:7f:1f:3a:ff:59:15:9e:1c:5c:51:88:
a9:c2:6f:cc:ca:98:35:68:39:e0:3c:30:41:0d:50:70:82:a5:
18:af:0f:94:a3:1d:55:e4:7c:1b:ef:05:af:c3:57:03:fb:28:
90:ec:21:40:a2:ec:56:99:90:3d:9b:d3:82:d0:70:d2:39:bb:
68:55:a1:c4:6d:67:b1:ae:14:98:e9:4a:c4:fe:86:42:85:b3:
00:27:22:68:90:5f:e7:ad:aa:3e:54:8b:26:e7:9b:e0:23:3a:
12:10:1f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:00 2025 by rpki-client