Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: SQn9ZjueEOU3NfrLA7IwkGhMKERofb4HzZnVvaYObJQ=
Subject key identifier: E5:69:2B:B6:C7:3C:23:65:2D:24:DC:14:6B:0C:55:E3:42:07:F7:20
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 01975F4B38C477B9C93A492197996F3DA34C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0AD6
Signing time: Wed 11 Jun 2025 14:00:54 +0000
Manifest this update: Wed 11 Jun 2025 14:00:54 +0000
Manifest next update: Thu 12 Jun 2025 14:00:54 +0000
Files and hashes: 1: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: pjU1jDDFNyQTQY81M74zx+06H+cVker7RpvxqrREXQw=)
2: ZpykCbVPiyWDmZYOTfO_ZDkVQS8.roa (hash: dMJ7baRxj0geuiw7R0CU8VhA5Y/WfKmOFau3mkt++fI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:4b:38:c4:77:b9:c9:3a:49:21:97:99:6f:3d:a3:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 11 14:00:54 2025 GMT
Not After : Jun 12 14:00:54 2025 GMT
Subject: CN=e5692bb6c73c23652d24dc146b0c55e34207f720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d1:7a:5f:25:f4:c7:ce:5d:8e:e0:2f:a4:5f:
96:39:e3:ea:6d:fd:a7:9c:f9:05:f6:ce:99:a9:b7:
d4:9d:db:7e:5b:e5:89:32:ed:b5:ad:27:1e:1b:0e:
17:99:51:87:0e:88:71:7a:15:04:e2:36:f9:bc:45:
9a:57:13:63:9c:15:e6:01:a9:ea:ce:53:ee:69:cf:
24:6d:30:7b:ed:3e:f5:e0:d4:75:bc:b9:6c:85:9b:
c8:e7:db:5b:da:a0:d3:bc:89:bf:97:40:ae:1b:92:
d6:1c:8e:ef:7d:1b:50:de:b3:6b:35:26:6d:6c:3c:
36:1d:40:bb:ad:94:e3:4e:45:bf:a6:e5:ba:6b:d4:
49:2e:72:83:f4:72:b4:c6:4d:0a:8b:bc:79:9c:ad:
d8:a0:ef:ed:db:37:49:7e:74:61:ab:18:96:3d:09:
c1:bc:76:20:61:8a:d0:91:bc:ce:7d:0d:8f:bc:5c:
7e:49:2d:25:8e:90:e5:1f:3a:06:1c:92:78:aa:e4:
e3:e1:c4:45:ec:78:61:1d:d0:18:13:9d:e6:3f:f8:
be:b2:06:34:a1:f5:51:e0:f5:dd:f0:a1:8a:34:f0:
32:c1:b1:40:4b:aa:d5:9c:1c:ae:c9:b6:85:09:07:
d4:ca:e8:84:28:fb:a2:0b:3b:a5:33:54:b6:53:c9:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:69:2B:B6:C7:3C:23:65:2D:24:DC:14:6B:0C:55:E3:42:07:F7:20
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:da:f0:1e:be:78:07:30:c4:38:2f:fb:00:80:28:2c:79:34:
a2:3f:ad:a5:c0:00:10:37:5b:e8:b0:28:65:27:48:46:78:0a:
dc:c6:dd:17:81:e2:e7:6a:4c:c8:da:88:97:39:ff:1a:99:f9:
67:d5:65:5c:e6:79:4a:ae:59:fe:92:c0:63:40:e5:73:0c:f6:
55:25:b5:52:9e:c3:71:97:30:e1:65:5e:2a:24:7b:34:59:79:
22:6d:6f:f6:09:01:e2:c0:32:80:18:b8:b5:45:19:85:d5:b3:
b8:95:cf:2a:26:3b:fb:2a:45:f5:7b:b9:e2:7f:c2:ff:6b:de:
ab:b4:07:e0:03:af:b3:73:c6:3a:e4:76:62:67:0e:18:d8:66:
3f:4f:72:0c:b8:c1:7e:e7:16:26:29:59:f7:18:25:cc:b4:43:
63:89:14:89:57:58:5b:2a:62:ae:d0:f0:a3:52:24:0c:2a:b4:
16:91:ef:4b:86:e6:06:03:c4:a5:5f:a5:35:5f:41:9b:38:b5:
c8:42:1b:79:58:cd:74:a9:84:ba:07:27:04:61:19:1a:85:79:
f7:3d:19:45:d7:8b:76:b9:21:76:5a:12:ec:62:28:70:26:6a:
31:56:1b:2c:64:a4:32:0e:77:87:6b:02:87:f1:0a:11:4b:3a:
1b:0a:12:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 23:44:15 2025 by rpki-client