Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: gC27sX5vS4a98TA/LdQLW8p2by+ecTisjewpRwT/WIM=
Subject key identifier: FF:CC:A6:B7:D7:C4:4B:FD:A5:5B:59:67:59:C4:0F:C4:EE:15:11:C9
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 0199349265CC6C63EF260FBEB335ADEAE78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0BC9
Signing time: Wed 10 Sep 2025 17:00:33 +0000
Manifest this update: Wed 10 Sep 2025 17:00:33 +0000
Manifest next update: Thu 11 Sep 2025 17:00:33 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: V3X2UY9bNFZDTYTa48HztaeOQdXPo3TiTrnnqOS9qWE=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 11:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:34:92:65:cc:6c:63:ef:26:0f:be:b3:35:ad:ea:e7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Sep 10 17:00:33 2025 GMT
Not After : Sep 11 17:00:33 2025 GMT
Subject: CN=ffcca6b7d7c44bfda55b596759c40fc4ee1511c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5b:ab:7e:55:07:88:b5:41:3c:97:17:ca:9f:
82:dd:84:0a:2a:b4:61:21:7d:38:18:e7:48:ae:cb:
97:d5:ff:40:d3:a2:17:ce:a2:3c:85:c0:a2:3b:ee:
18:5d:ca:f3:4d:f6:74:3e:50:00:b4:de:8e:0e:67:
32:ce:95:c6:96:9a:7b:2a:f7:07:74:81:77:01:41:
7c:65:ec:94:40:22:e9:40:49:98:61:d4:ea:a7:e6:
7e:be:42:58:76:4b:f5:3d:92:73:37:a3:70:aa:94:
36:5c:4d:02:81:a7:dc:50:72:97:fa:01:8b:f4:32:
36:38:72:d4:0e:0d:1c:f3:f3:be:f7:4f:49:0e:e3:
da:b7:3d:1b:61:59:83:21:ab:8c:65:04:52:b9:96:
20:c5:0e:39:30:6a:e6:c7:b1:f8:2f:97:61:72:d1:
d2:85:19:06:3e:1b:e9:64:77:5e:60:03:90:e7:a4:
45:89:bb:6d:62:e5:8e:48:09:76:9e:79:58:06:b1:
eb:a4:b0:01:cf:68:19:b3:96:1a:28:26:b8:8c:94:
65:44:a3:86:78:62:b6:05:c0:28:6d:30:3f:8e:fd:
fa:b3:ea:15:fb:73:1f:f3:b6:3d:ac:63:d1:22:6e:
c6:23:51:1b:56:03:3f:3a:4a:e7:b0:49:bb:73:a2:
0f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:CC:A6:B7:D7:C4:4B:FD:A5:5B:59:67:59:C4:0F:C4:EE:15:11:C9
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:3b:0f:2c:53:b5:a2:7c:16:ad:4c:1f:12:f4:86:f5:c2:ce:
98:b5:99:b3:a2:ac:cc:59:ef:93:da:01:8d:59:47:d9:1a:38:
64:96:22:af:0a:3a:e1:60:ba:34:9e:5d:79:ea:89:ae:a5:27:
8a:79:12:ec:ee:c7:c1:94:9f:fb:5c:42:54:58:d7:3d:b9:b3:
20:93:65:d1:92:61:e3:7d:62:56:2e:2f:42:4e:be:9d:ef:37:
1a:4a:1d:e4:c3:7c:f1:5e:99:24:9c:58:08:e4:8c:18:95:0e:
58:cc:9c:21:3b:0e:db:0b:b3:35:6d:b9:55:6c:74:2c:d1:4a:
fa:f7:82:73:e4:39:f5:77:5e:2e:06:58:9f:b3:0b:63:e6:73:
d1:c6:18:4d:51:d8:ee:d4:a0:b7:f7:79:49:36:b6:8f:92:87:
4b:f4:44:b8:3e:f5:3c:d4:b4:a3:bc:1c:4f:da:7b:78:5b:48:
09:a8:da:1b:b7:26:5d:b7:e8:0c:67:88:58:29:09:ae:bd:11:
47:af:75:30:cc:9f:18:ac:ff:a2:9b:aa:34:ce:e6:52:aa:b3:
0c:9d:9b:00:a2:11:cc:b8:0e:53:a1:4c:85:71:56:8c:ab:96:
54:1c:a7:f4:a4:ce:d4:98:fe:20:04:88:16:6f:ee:82:86:df:
98:05:dc:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 21:09:58 2025 by rpki-client