Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
File: WKhqbHH7c0xwW15m50rBxWu5YF4.mft (raw, json)
Hash identifier: nzZ5aA4wYK0fyOpckqZr+8i3sCU4/NW41h9tfNi+j9A=
Subject key identifier: 35:EC:5F:E8:B0:D1:13:40:2C:46:E2:57:37:3E:05:00:3B:96:DD:42
Authority key identifier: 58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
Certificate issuer: /CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Certificate serial: 01962C7392B0BE2185344B862DD33ED07FA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
Manifest number: 0B04
Signing time: Sun 13 Apr 2025 00:01:33 +0000
Manifest this update: Sun 13 Apr 2025 00:01:33 +0000
Manifest next update: Mon 14 Apr 2025 00:01:33 +0000
Files and hashes: 1: WKhqbHH7c0xwW15m50rBxWu5YF4.crl (hash: nch2MuKVQcoghd9gSlQ4+3tBIraW/onkozD05+yItnM=)
2: eTD5X7eUVxPbE-bCRH9QGxLRZDs.roa (hash: IG853MFkGaq1sWpTd3DWggMITF7We7r2IbsZKj9lAZU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 18:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:73:92:b0:be:21:85:34:4b:86:2d:d3:3e:d0:7f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Validity
Not Before: Apr 13 00:01:33 2025 GMT
Not After : Apr 14 00:01:33 2025 GMT
Subject: CN=35ec5fe8b0d113402c46e257373e05003b96dd42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:85:cc:c3:49:6b:76:ce:fd:fd:22:3c:32:84:
73:1c:b4:8a:86:d6:9d:eb:02:23:83:dc:15:e0:ef:
ef:5c:c7:bc:eb:9c:a9:fd:e3:86:51:50:e8:d7:ac:
8c:da:70:f6:fa:78:01:61:c0:ee:00:e8:91:07:ee:
ad:04:a9:f8:f5:0c:87:c2:bd:32:69:14:ad:9e:fd:
0c:8d:68:8f:45:35:5b:c1:64:2a:70:96:7b:fb:6c:
34:a2:7d:f0:f9:71:aa:56:24:f5:70:67:41:41:41:
4a:5e:90:d8:6d:15:ba:6b:ad:37:b0:b5:d3:28:be:
b9:2c:d1:1f:76:3b:2b:c7:fb:5d:70:b2:0d:35:1a:
5c:90:cc:b4:9d:96:b6:e8:cd:67:a6:47:60:04:38:
9b:19:72:f0:4a:40:b5:84:a8:7e:6a:75:9d:db:a7:
52:59:6d:f4:45:8b:8c:86:e4:6a:4c:c9:58:03:6a:
91:da:bf:46:c0:7e:48:bb:6b:62:7c:3a:8e:9f:ac:
f5:1e:91:0a:79:55:49:91:f3:b6:18:29:e9:6d:e7:
f6:f0:b4:75:13:cb:d0:1e:7b:6b:ad:87:bd:de:ac:
20:a1:bc:20:2c:b3:69:e8:8f:e6:fe:c5:b8:22:0b:
5a:06:a8:a5:67:b8:10:48:6c:26:27:d2:1d:41:0b:
86:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:EC:5F:E8:B0:D1:13:40:2C:46:E2:57:37:3E:05:00:3B:96:DD:42
X509v3 Authority Key Identifier:
keyid:58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:94:00:08:04:54:c2:66:9f:1d:dc:a5:55:d7:b8:c1:c8:91:
a9:da:30:71:dc:52:5f:81:6f:31:f5:43:7b:26:8e:55:46:bf:
2d:a9:d2:a0:24:f8:2b:4e:e6:fc:e2:f2:42:25:4b:c5:8c:24:
ac:09:e6:47:86:4e:28:1e:c8:45:8d:ee:7e:bd:78:e5:00:93:
95:b4:a4:38:2e:62:91:2d:24:80:c1:57:12:cb:09:6a:9d:38:
52:af:45:e1:94:37:d2:55:71:9a:ab:22:5e:e1:66:35:f6:f4:
80:70:3e:ac:41:c9:46:a6:2c:5c:ff:79:05:9d:75:df:fd:f2:
53:8b:00:a5:a0:64:0b:1d:da:2f:12:d4:05:a0:d5:c3:56:ea:
9c:3f:00:fb:5a:33:24:f0:41:5c:0c:2b:91:23:0b:a9:3d:22:
69:61:0b:7c:8b:a5:b5:89:89:25:61:b9:e0:72:eb:9b:a8:c6:
b9:e5:5e:68:e2:e4:6c:e9:55:18:4c:4b:49:ab:b6:24:f6:9c:
3e:c7:05:28:42:56:95:1c:6e:1f:01:41:68:67:4a:bf:66:e6:
15:a1:86:c3:bc:6d:27:d1:29:58:a0:8a:ab:a2:9b:b6:62:30:
ee:aa:44:0c:99:62:6f:ce:f5:ef:4b:82:52:76:45:c0:1c:d6:
7c:b5:92:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:00:24 2025 by rpki-client