Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: K3pNBbI50JoTc5SXYGXXxU3I55q/X14yiDOXk0scnj8=
Subject key identifier: 95:EC:B6:E3:FF:B4:72:D4:F1:1A:F5:61:C7:6B:20:7B:4D:59:BF:69
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 01976AE1694EFA88323DD557DE91CD3B5037
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0ADC
Signing time: Fri 13 Jun 2025 20:00:46 +0000
Manifest this update: Fri 13 Jun 2025 20:00:46 +0000
Manifest next update: Sat 14 Jun 2025 20:00:46 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: wCsEf7L6YgviEhSnZ1bYi/zKifhXtxakHBX5JXN+qs8=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6a:e1:69:4e:fa:88:32:3d:d5:57:de:91:cd:3b:50:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 13 20:00:46 2025 GMT
Not After : Jun 14 20:00:46 2025 GMT
Subject: CN=95ecb6e3ffb472d4f11af561c76b207b4d59bf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:38:11:9b:25:3a:44:db:98:29:09:46:84:06:
7e:0f:3b:7a:09:e8:4f:a0:60:54:65:b7:4d:fc:5a:
13:d8:44:92:59:38:92:85:d4:96:39:e2:cb:92:8c:
16:1a:e6:c5:fb:f1:9e:43:33:ca:c8:5a:4b:25:04:
16:e1:7d:92:81:bb:5b:b5:c2:02:0c:d6:c4:f8:aa:
1f:17:fd:5f:b3:b8:1d:53:8d:62:6c:c0:fd:1c:0f:
c1:69:45:44:73:90:ac:0b:10:a5:66:8e:13:bb:ba:
fb:f7:f9:d1:7b:c2:e6:b7:2f:72:ed:72:a4:98:6c:
f1:b2:91:b2:77:7e:4d:f3:b1:43:48:20:18:78:ed:
18:98:2e:2d:50:f6:34:b4:5b:4c:5d:f4:6f:bc:9e:
d1:d7:66:5a:57:e3:7f:5c:4f:1c:bd:31:09:42:15:
1a:3f:99:05:5f:91:f9:84:72:3b:9c:2f:76:81:1d:
2e:16:61:73:49:c3:1d:1e:09:e3:b8:67:bb:bc:70:
96:06:28:d4:ec:b2:a5:95:98:d7:65:a9:77:f2:2b:
41:16:ac:bc:5d:e6:36:62:27:9b:bc:b7:3c:f4:09:
74:4e:ad:02:d4:dc:3c:e2:14:fe:95:7f:d6:91:3b:
58:6d:52:20:04:9e:db:15:f1:3e:e1:4e:e4:63:2c:
2d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:EC:B6:E3:FF:B4:72:D4:F1:1A:F5:61:C7:6B:20:7B:4D:59:BF:69
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:68:78:11:23:7c:7a:eb:a8:15:d1:b1:80:ce:c7:85:9a:15:
85:9f:90:4b:33:f3:b2:f3:e5:25:2c:75:e2:dd:ff:11:a4:b5:
0b:67:75:1d:0c:68:26:b4:b4:61:d6:34:56:c5:3f:eb:6a:f6:
b1:1f:a8:52:08:c7:b3:5d:4f:7e:5c:60:73:11:82:db:10:2b:
a9:f2:36:9c:cd:d8:c4:82:49:f5:d1:fa:fe:0c:c2:ba:16:b2:
16:42:73:bc:5a:e9:3a:71:4d:14:79:4b:cb:96:72:bb:a9:20:
21:9a:f4:5e:7a:65:4a:2a:8e:97:e7:f6:ec:f2:5b:92:63:f8:
61:87:68:c9:bd:67:38:c4:0b:bd:4e:ee:f9:8e:de:0b:8a:9a:
81:d6:12:6d:9e:af:be:e9:c2:de:b5:e0:10:e2:b2:a2:c8:fa:
ae:f4:40:cc:0a:2c:c3:2b:bd:48:63:4c:7c:d8:fd:c0:75:86:
00:74:9d:9c:12:f9:9d:7a:2c:fc:be:06:a5:c6:c5:75:89:a2:
39:45:8b:b7:10:fb:ab:9e:c3:f8:74:a7:17:84:ff:d6:08:92:
f7:5f:29:5c:30:2f:2a:a7:43:5c:94:10:46:d0:88:b8:08:89:
31:35:9b:4f:7a:06:b6:d5:db:af:dc:22:ad:ae:c3:39:78:ee:
23:02:1a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 22:58:50 2025 by rpki-client