
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: M1bco4VW3wG8x2zR5aAQgI2fBUb4xTih2twx4GVEtGU=
Subject key identifier: B5:D4:0B:37:DC:F3:90:26:FA:66:92:F8:D9:F4:ED:75:E7:72:19:13
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 01976139685C120A231343B47BACFD685816
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0AD7
Signing time: Wed 11 Jun 2025 23:00:41 +0000
Manifest this update: Wed 11 Jun 2025 23:00:41 +0000
Manifest next update: Thu 12 Jun 2025 23:00:41 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: 9cQvVH1ZgKWrRdkKR1jaERGdq6Wl0SNv71sJV/t1xl8=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 21:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:61:39:68:5c:12:0a:23:13:43:b4:7b:ac:fd:68:58:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 11 23:00:41 2025 GMT
Not After : Jun 12 23:00:41 2025 GMT
Subject: CN=b5d40b37dcf39026fa6692f8d9f4ed75e7721913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:4a:89:48:01:54:43:93:7c:0d:43:47:8c:
85:e9:18:8d:da:e3:e8:de:41:0d:f8:d1:d9:12:c5:
0c:e9:97:c9:2a:ee:20:b7:7f:59:68:69:5a:be:e3:
7d:a3:b5:21:14:c5:38:38:70:75:55:60:ec:a6:23:
df:83:b3:74:b0:d5:be:99:c1:f0:3c:f4:ab:a1:e6:
e5:77:d4:45:2e:f2:c2:b1:d1:f8:28:cf:58:46:8e:
92:b2:b2:7c:ad:de:f1:f7:a0:98:d7:4b:83:2a:34:
df:33:4e:78:f5:44:41:aa:db:48:16:58:53:b2:5e:
e3:92:f8:30:ed:41:fd:a6:5f:e5:03:9e:a9:c6:72:
fe:c3:fb:4f:03:da:23:64:f7:f3:91:e3:d9:a4:0f:
8c:e8:06:d2:52:5d:ae:88:2c:50:2f:ba:52:eb:03:
26:1d:ff:3c:7d:ed:60:f1:d6:32:b7:f4:17:30:0f:
df:b9:35:fc:63:e1:7b:e8:86:9b:3b:73:df:8c:83:
12:e8:24:c2:6b:d8:89:bc:6f:1f:d0:dd:4c:ee:a3:
b4:ff:84:c4:24:68:b7:9e:de:e4:1f:6b:10:12:b3:
42:20:9f:9c:23:d6:49:f3:43:85:4c:11:9a:8d:2b:
ae:6b:44:bc:9b:99:15:25:eb:7c:f4:a0:8d:cb:b5:
28:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D4:0B:37:DC:F3:90:26:FA:66:92:F8:D9:F4:ED:75:E7:72:19:13
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:6c:91:37:29:e5:09:28:ff:9b:50:a3:65:ce:97:58:f6:94:
ef:b5:61:bd:38:c9:9a:a1:2d:a0:32:d6:a6:fd:d3:06:dc:cb:
f2:72:99:c5:c7:90:b3:14:91:b8:25:58:d2:3c:e2:0d:a4:f8:
00:68:c3:a9:0b:2e:83:19:bb:31:39:d2:29:29:f1:ff:ef:51:
9e:26:56:11:d9:14:e5:b2:85:87:76:e7:45:48:81:d3:03:a0:
9a:70:1e:35:82:5e:32:a0:46:c3:fa:b6:af:e4:04:a9:90:04:
8e:bd:54:fe:b3:8b:7d:1a:db:85:00:5f:6b:1d:a9:bc:5b:8d:
79:5e:a2:12:2e:7c:82:cc:c3:f4:cb:50:ad:08:a6:39:7a:a7:
30:0a:ad:0a:89:24:33:10:b7:f8:78:48:88:3f:30:5e:19:a6:
67:60:b4:8c:51:59:ea:9a:0e:6d:68:bf:fb:c6:f6:ab:62:50:
35:fe:f8:2f:00:d3:e9:46:8f:7d:ed:aa:02:21:47:5c:3b:43:
01:9a:5a:c6:d4:39:33:d7:9f:6d:1e:ab:c6:51:d4:3b:6c:d4:
d1:26:92:9b:64:3d:0a:a9:09:8c:5e:ec:ff:17:5b:19:f9:ef:
5c:ac:b9:4a:bd:b6:91:cc:c2:7b:9f:05:f4:6f:c5:26:21:fd:
04:4e:fd:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdhOWhcEgojE0O0e6z9aFgWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTc2M2YwYzQ2N2FiYWE3MDFkOTY4YzM3NDljNmRhZDAz
NDg5YjAwHhcNMjUwNjExMjMwMDQxWhcNMjUwNjEyMjMwMDQxWjAzMTEwLwYDVQQD
EyhiNWQ0MGIzN2RjZjM5MDI2ZmE2NjkyZjhkOWY0ZWQ3NWU3NzIxOTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyFNKiUgBVEOTfA1DR4yF6RiN2uPo
3kEN+NHZEsUM6ZfJKu4gt39ZaGlavuN9o7UhFMU4OHB1VWDspiPfg7N0sNW+mcHw
PPSroebld9RFLvLCsdH4KM9YRo6SsrJ8rd7x96CY10uDKjTfM0549URBqttIFlhT
sl7jkvgw7UH9pl/lA56pxnL+w/tPA9ojZPfzkePZpA+M6AbSUl2uiCxQL7pS6wMm
Hf88fe1g8dYyt/QXMA/fuTX8Y+F76IabO3PfjIMS6CTCa9iJvG8f0N1M7qO0/4TE
JGi3nt7kH2sQErNCIJ+cI9ZJ80OFTBGajSuua0S8m5kVJet89KCNy7UoiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLXUCzfc85Am+maS+Nn07XXnchkTMB8GA1UdIwQY
MBaAFFinY/DEZ6uqcB2WjDdJxtrQNImwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMt
MDk4ZjdjNWZkOTc1LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC81ZDY0OTEtMDhmZi00OTRkLTg0MzMtMDk4ZjdjNWZkOTc1
LzEvV0tkajhNUm5xNnB3SFphTU4wbkcydEEwaWJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVWyRNynl
CSj/m1CjZc6XWPaU77VhvTjJmqEtoDLWpv3TBtzL8nKZxceQsxSRuCVY0jziDaT4
AGjDqQsugxm7MTnSKSnx/+9RniZWEdkU5bKFh3bnRUiB0wOgmnAeNYJeMqBGw/q2
r+QEqZAEjr1U/rOLfRrbhQBfax2pvFuNeV6iEi58gszD9MtQrQimOXqnMAqtCokk
MxC3+HhIiD8wXhmmZ2C0jFFZ6poObWi/+8b2q2JQNf74LwDT6UaPfe2qAiFHXDtD
AZpaxtQ5M9efbR6rxlHUO2zU0SaSm2Q9CqkJjF7s/xdbGfnvXKy5Sr22kczCe58F
9G/FJiH9BE798A==
-----END CERTIFICATE-----
Generated at Thu Jun 12 02:03:02 2025 by rpki-client