Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: Brlj7AVLoa1NM9K7HebEAnYH9zkB6bQYq4iQqa2Ryuw=
Subject key identifier: 50:94:D8:33:27:9C:18:89:FD:4D:35:44:A3:BB:AD:D9:65:A6:C2:FD
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 01976327CE6D6F48043BE76FB7B5544C1C53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0AD8
Signing time: Thu 12 Jun 2025 08:00:42 +0000
Manifest this update: Thu 12 Jun 2025 08:00:42 +0000
Manifest next update: Fri 13 Jun 2025 08:00:42 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: 7G9y3HGHfgQ0nKHNUayyxJ01bOXTXlXNYgAKirL5Yms=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 08:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:27:ce:6d:6f:48:04:3b:e7:6f:b7:b5:54:4c:1c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 12 08:00:42 2025 GMT
Not After : Jun 13 08:00:42 2025 GMT
Subject: CN=5094d833279c1889fd4d3544a3bbadd965a6c2fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:35:f9:89:ce:39:7f:71:25:61:f2:d8:fb:ee:
c8:39:f0:0c:f5:a7:4c:70:2f:90:c5:ac:50:6e:17:
02:aa:05:e2:07:be:82:e6:96:34:96:d3:05:ce:01:
1b:83:ee:f1:d0:4a:db:5f:44:fb:0b:fc:20:2e:92:
b0:89:f4:5d:8d:c0:76:34:6c:73:39:d0:9a:3c:a0:
10:95:71:6a:df:cf:5d:f3:a3:85:1d:60:ab:c9:e5:
d5:66:ce:8e:82:a8:1b:f7:d7:b1:35:fc:09:86:55:
36:39:a0:c4:90:13:1c:e6:39:2d:a2:5b:49:be:f6:
3e:1e:d6:37:68:a0:69:34:cc:b3:ea:5a:40:81:71:
c8:f9:fb:7e:6b:39:45:8c:1b:a3:97:93:fe:1d:b1:
a9:cc:fc:e5:b1:95:e6:c1:e9:b6:69:1d:5f:03:32:
db:00:b0:81:c2:4c:4d:7f:eb:6f:3e:c1:6f:79:15:
fa:5c:8a:be:55:54:93:08:a8:a2:be:7c:75:ae:e2:
63:cf:e0:ad:0a:46:fc:fb:f2:6b:0a:e8:9b:52:b3:
26:05:cd:00:90:cc:03:00:87:8b:c4:99:30:9d:b2:
ba:b0:db:75:d5:0a:58:6a:51:e5:00:c8:b6:c4:eb:
21:d0:b7:d0:53:af:8e:d6:40:e2:0c:aa:cb:8c:62:
89:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:94:D8:33:27:9C:18:89:FD:4D:35:44:A3:BB:AD:D9:65:A6:C2:FD
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:1b:a1:c4:db:e3:6f:f7:5f:87:63:93:94:a6:aa:db:45:0f:
29:b1:69:23:bc:bb:dc:60:11:11:5f:67:85:94:78:81:28:79:
8c:01:ab:97:c4:59:28:0d:37:5d:4d:b5:50:e3:fa:43:b0:9f:
79:34:a7:27:21:04:9e:22:a7:4e:20:a1:f6:e2:07:9f:ff:5b:
9c:f9:41:66:51:b9:fb:09:63:8d:29:33:78:b9:ad:7e:e7:f6:
4d:52:d0:93:93:1a:05:bb:3e:ca:8d:a4:bb:90:54:92:dd:70:
fe:57:41:00:35:3d:25:51:8d:15:47:7f:ad:a8:ee:67:c0:33:
8d:87:df:67:a4:5c:0a:07:20:3e:2d:b4:7b:c7:d2:6a:fd:39:
c4:13:83:99:b1:7b:c0:99:90:ad:53:15:37:3e:c9:19:1c:ba:
e8:34:4b:16:eb:75:68:f7:ed:a0:47:66:9c:ae:0e:10:03:57:
cc:22:62:8c:f0:78:13:b1:12:2b:75:d0:a9:3b:ac:0d:3e:06:
44:e8:1c:35:da:c9:ee:9c:e3:46:7c:1c:33:f1:f3:b7:db:e6:
ba:db:6a:b6:d0:fa:16:cf:cd:b1:2b:94:0d:3c:a7:8d:5b:7d:
05:82:34:57:e9:66:6d:0d:f4:62:94:37:e8:f2:dd:0f:37:0b:
4f:6d:8b:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 11:42:09 2025 by rpki-client