Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
File: WKhqbHH7c0xwW15m50rBxWu5YF4.mft (raw, json)
Hash identifier: MDwg8LtHmZZdWyd3AKp4JbaP2agiMLpJrDeXudpAyuw=
Subject key identifier: 3C:34:EA:3E:A7:26:C6:3F:67:06:B0:0D:30:5C:6E:D1:7B:52:95:FC
Authority key identifier: 58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
Certificate issuer: /CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Certificate serial: 019A2E206537D72843721403EF7FAD6DC9D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
Manifest number: 0D17
Signing time: Wed 29 Oct 2025 04:01:06 +0000
Manifest this update: Wed 29 Oct 2025 04:01:06 +0000
Manifest next update: Thu 30 Oct 2025 04:01:06 +0000
Files and hashes: 1: WKhqbHH7c0xwW15m50rBxWu5YF4.crl (hash: R45r5C6a+GV1ILF19VIeGQAY/UfX3wLqam3SYvKcfHo=)
2: eTD5X7eUVxPbE-bCRH9QGxLRZDs.roa (hash: IG853MFkGaq1sWpTd3DWggMITF7We7r2IbsZKj9lAZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Oct 2025 04:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2e:20:65:37:d7:28:43:72:14:03:ef:7f:ad:6d:c9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Validity
Not Before: Oct 29 04:01:06 2025 GMT
Not After : Oct 30 04:01:06 2025 GMT
Subject: CN=3c34ea3ea726c63f6706b00d305c6ed17b5295fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fd:8c:04:a9:8a:a1:8d:62:cc:00:cf:7a:e3:
20:ac:dd:17:7c:04:e7:22:e7:0d:d2:59:31:db:76:
a7:eb:71:59:56:a0:0a:c2:ca:50:95:c2:2f:b0:91:
10:24:40:63:3e:c5:5a:a4:20:0c:6b:6b:82:f8:8e:
3b:27:21:ce:35:80:30:72:ca:02:85:fe:66:51:c5:
76:d8:25:8d:d5:49:9e:87:ce:03:f9:43:36:50:70:
33:f4:7b:47:87:5f:91:b2:2c:31:92:17:ac:61:a5:
d3:29:1e:7c:bb:5a:0e:43:f9:68:d0:86:11:74:c5:
96:6f:e4:33:3e:d3:80:29:f8:a6:33:cc:48:4b:af:
50:94:81:9d:d1:e7:e7:57:72:ed:5f:b1:e6:40:ec:
04:5a:1f:2a:c7:74:65:6b:f5:b5:a2:e9:21:23:18:
b0:d0:4b:98:0b:1e:0a:c1:3d:49:96:92:9a:2b:14:
54:53:60:5f:a1:3d:a1:4a:f9:88:a6:f5:61:ef:1d:
ce:59:3f:02:0a:6b:57:ae:2a:0f:89:a2:2d:21:92:
32:0f:79:64:5b:e1:7f:23:e0:17:bc:64:28:85:ab:
87:28:2f:fa:f2:52:95:c8:f9:76:01:f4:04:04:c3:
cf:4c:e5:f2:ca:91:43:1f:5e:06:48:f5:69:83:d4:
75:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:34:EA:3E:A7:26:C6:3F:67:06:B0:0D:30:5C:6E:D1:7B:52:95:FC
X509v3 Authority Key Identifier:
keyid:58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:06:c4:4d:93:bc:0a:7b:41:4d:2f:30:de:cb:b5:b0:46:49:
b8:ea:ad:a2:7d:c1:2c:2a:a9:b1:34:d0:c3:0a:1f:03:f2:2e:
48:b7:4f:c2:2b:a7:3d:7a:b6:9e:1f:c5:31:55:86:26:30:6d:
42:b3:d1:9f:6d:ba:5d:9f:3d:7a:80:d8:01:f4:69:10:3e:1f:
51:55:54:49:8d:13:f9:e9:72:b2:91:45:9d:75:37:ae:8f:c6:
e1:4f:7a:7c:d8:7a:46:bb:b2:9c:ea:94:58:26:f3:54:47:b1:
69:4d:67:b6:69:ee:51:70:75:23:8b:83:03:3d:e6:27:9a:21:
60:b9:1b:15:1a:13:b3:1b:09:8d:f9:de:6c:c2:6f:23:4e:57:
dd:0e:81:1d:c3:09:c4:22:8d:35:f5:25:29:ae:55:9a:ac:c8:
9f:e4:f1:cd:00:67:4c:7f:da:c1:29:fa:0f:c2:6c:ca:7c:77:
f3:f9:ca:87:4b:9c:36:dd:d8:76:eb:2c:d4:2d:91:11:fa:c5:
cb:51:51:25:0a:6b:76:b2:d9:69:2a:f1:4a:9c:9f:7d:e7:43:
9b:d3:c4:28:2c:bf:8a:26:0f:32:9a:73:b5:74:3d:13:26:e3:
14:51:2a:50:da:e3:00:5a:23:54:bf:72:bc:40:87:f9:0a:5c:
14:df:01:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 29 12:18:38 2025 by rpki-client