Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: zSgmq8M1nwIZkvQvPN1XbW9xkWEwOC5ObK0y7SFQoDI=
Subject key identifier: B9:16:E0:EC:53:CC:D5:EB:AE:4A:81:64:F8:F2:A7:FC:03:46:93:2B
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 019A2409EA7EFB20D114C39790D9796F60B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0C45
Signing time: Mon 27 Oct 2025 05:00:20 +0000
Manifest this update: Mon 27 Oct 2025 05:00:20 +0000
Manifest next update: Tue 28 Oct 2025 05:00:20 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: BhFJ/EpCdZkF8qgNtr1RswX+e4CEtMZ4Ehbe54QIJSc=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:09:ea:7e:fb:20:d1:14:c3:97:90:d9:79:6f:60:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Oct 27 05:00:20 2025 GMT
Not After : Oct 28 05:00:20 2025 GMT
Subject: CN=b916e0ec53ccd5ebae4a8164f8f2a7fc0346932b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:1f:b3:08:f6:34:dd:f1:f6:32:23:18:4a:dc:
14:85:17:9e:66:10:3f:e9:2e:79:f6:0b:d3:5f:48:
89:e4:66:c6:46:34:c2:6c:f8:59:35:b8:bb:6b:75:
f3:b2:45:67:a3:4e:2e:20:2c:68:45:b7:af:6a:1c:
db:90:d6:52:5e:ed:ca:2b:8f:aa:12:d2:48:8d:40:
a4:f7:41:b3:ff:96:50:4f:2e:53:31:c0:d0:48:64:
4d:b5:3f:76:85:c7:55:8b:4e:c8:35:ec:1c:c2:4b:
6c:f2:5d:01:12:b2:32:c1:2a:04:ef:cc:f6:07:dc:
11:1b:aa:57:e1:26:67:f3:29:86:26:e6:de:d9:ca:
9b:f3:fc:9a:ba:49:b2:4b:96:69:91:41:54:7e:e3:
7e:08:60:e2:87:35:1f:22:c5:fc:a8:1f:a1:33:2a:
b6:2c:72:ac:c8:26:60:e0:5f:74:8b:e1:d7:37:de:
1f:1d:92:51:48:6f:9a:04:8d:fe:83:e3:a4:d2:aa:
8e:57:7a:63:0e:ec:17:93:76:2b:71:b8:e8:2b:85:
62:da:c0:da:fa:a1:d5:f3:c5:d1:e1:2c:a0:50:5c:
f7:20:9c:37:88:2b:64:3a:90:78:94:42:a6:86:f7:
30:93:06:08:41:81:de:6a:26:1d:50:79:93:52:cf:
ad:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:16:E0:EC:53:CC:D5:EB:AE:4A:81:64:F8:F2:A7:FC:03:46:93:2B
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:4a:ee:0c:32:ee:26:15:7e:f4:1a:e1:4f:b3:12:36:7a:5b:
63:4f:78:89:87:a4:15:57:b1:a8:3d:e4:4c:ce:49:1b:d5:4e:
25:4d:8f:c5:e4:90:3d:d6:2c:48:2a:89:68:ab:8d:27:0c:d2:
24:28:07:a0:3e:89:5a:69:28:b1:ce:69:7e:31:63:97:7c:06:
7c:7d:2a:7f:0f:6e:13:6e:a4:67:83:ea:4d:c5:d4:f5:4e:e2:
a6:f2:9a:fd:97:17:04:e2:e1:dc:e0:06:cb:5b:0f:6f:03:3e:
c8:17:ce:46:ec:17:3e:e3:e3:f5:83:a6:96:c3:6e:84:b8:b7:
e3:6d:81:02:c3:40:e5:e8:ba:59:5d:0a:27:e8:ca:19:59:5a:
d1:c0:31:a5:d4:f2:92:70:89:9a:06:1b:ae:e7:cd:b0:f2:27:
8c:9e:5f:ea:84:3e:0f:1e:ba:31:48:1e:28:96:08:96:c3:79:
c4:e3:3a:b3:13:42:82:79:d2:d7:eb:b4:98:52:da:58:5c:25:
58:18:c0:8b:a8:d5:e8:a9:20:89:1d:6a:b3:32:44:fc:45:aa:
13:c3:6e:e9:92:fc:6b:e4:05:2d:fb:b9:ba:4f:ff:50:8f:f4:
1a:f1:77:37:d4:38:bd:5f:e6:5a:69:5f:01:00:a1:ab:12:6c:
7c:7e:07:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 12:10:58 2025 by rpki-client