Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: YRwwUi9of5AkPr+R8O2wReHz39WzZ/COn1OD933s2Mk=
Subject key identifier: 16:76:40:A8:28:33:0E:08:2C:12:46:21:09:48:5D:3B:DD:2F:14:7F
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 01976CCF5F92DD4F82F751C65B791BC3991B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0ADD
Signing time: Sat 14 Jun 2025 05:00:19 +0000
Manifest this update: Sat 14 Jun 2025 05:00:19 +0000
Manifest next update: Sun 15 Jun 2025 05:00:19 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: cFIqqb8nJlU1IZDIdc7ueROX4/wlAwVUnK5TJBceiLA=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:cf:5f:92:dd:4f:82:f7:51:c6:5b:79:1b:c3:99:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 14 05:00:19 2025 GMT
Not After : Jun 15 05:00:19 2025 GMT
Subject: CN=167640a828330e082c12462109485d3bdd2f147f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:23:b7:1e:2c:b7:14:c2:0f:5d:0b:a3:81:aa:
68:e5:39:bf:a8:ba:85:b5:a1:9c:30:5c:91:f9:15:
3a:66:80:52:35:de:5e:a0:99:db:5f:a4:7b:7e:a5:
ea:fa:2d:01:d3:66:13:87:f1:b6:09:94:7b:ba:c1:
9b:a3:d2:a3:e0:a2:8e:9e:a8:6f:f5:0f:3b:ad:0f:
8e:66:a9:53:ce:94:f5:af:af:f1:c1:59:95:aa:a9:
c2:a4:00:ec:9b:92:12:33:44:d2:c0:d6:87:15:2e:
33:e1:a3:43:56:14:c1:a2:80:17:bb:18:9b:c8:21:
6e:c9:d8:d7:d0:31:f9:80:30:bd:11:c1:c5:57:91:
4b:5b:fc:88:ca:f5:67:19:c0:9d:5a:54:34:2f:4e:
7f:b7:6b:e7:91:5a:60:7f:b2:28:9e:98:a9:87:25:
fb:40:a1:26:5a:1c:d8:a3:46:22:90:48:a6:de:d9:
23:80:66:eb:c0:26:a9:17:15:89:c3:d1:7a:c6:51:
2d:6d:8b:82:73:c0:ff:77:11:7f:c3:e3:5d:3e:ca:
dd:bd:d1:a3:4d:38:bb:5a:56:76:c7:3c:3c:2e:05:
77:51:f2:af:e4:9d:cc:51:20:98:f1:ea:c1:ec:14:
78:23:6d:82:88:e6:27:9c:64:66:78:06:18:11:9a:
bd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:76:40:A8:28:33:0E:08:2C:12:46:21:09:48:5D:3B:DD:2F:14:7F
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:9a:f8:f1:94:b0:56:4d:b5:a9:0a:47:1e:8f:90:3a:9f:0b:
d8:cb:07:b4:a4:2a:90:04:28:4f:ce:b0:6f:8b:2c:e9:40:a0:
72:09:81:88:dd:ed:c0:7a:83:65:02:82:a4:3b:e3:3e:92:04:
97:52:0d:46:7c:f3:f6:35:58:01:1c:28:cd:88:eb:49:51:0f:
c4:b0:7a:27:a8:66:cf:72:86:86:67:e9:6c:76:80:b7:78:6a:
4a:0b:4b:a3:39:d7:ac:fe:b7:34:99:e3:ff:ce:40:df:31:c9:
d2:cd:2d:27:9e:8d:04:25:0d:43:c6:ff:05:ea:ad:08:db:4c:
b8:e9:c3:23:38:1c:cc:7d:06:8d:e8:55:19:de:b0:23:8d:6e:
12:33:64:71:73:a2:45:50:1f:85:6c:7a:2d:cf:95:c0:b6:a8:
55:36:de:13:b0:0e:e9:57:80:65:4c:3d:11:de:14:5e:c9:28:
97:26:bb:14:17:fc:a6:91:19:8c:9f:b5:55:15:c7:4e:c5:e1:
9c:2b:a1:bb:1e:0a:41:48:16:ed:73:d6:80:74:dd:be:d4:fb:
4d:e2:ed:6e:6a:fe:7f:44:52:ae:38:1a:0d:6a:c4:a5:c8:6c:
0f:b3:77:27:03:d2:c9:e2:15:a6:fd:b1:c4:34:9e:ff:b5:ec:
5d:58:0b:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:07:12 2025 by rpki-client