Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
File: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft (raw, json)
Hash identifier: 2TqEmrMNFTNDQ2DxTJTBceoWCJZoCdxTBomoLsb07f8=
Subject key identifier: CB:2C:90:3E:2F:45:88:10:45:E5:44:E8:CA:49:8D:9F:51:96:29:C1
Authority key identifier: 58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
Certificate issuer: /CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Certificate serial: 019A56ADE8C201516B50113C41DF4C921D5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
Manifest number: 03AA
Signing time: Thu 06 Nov 2025 01:00:28 +0000
Manifest this update: Thu 06 Nov 2025 01:00:28 +0000
Manifest next update: Fri 07 Nov 2025 01:00:28 +0000
Files and hashes: 1: CqZAFiIzp-k21bzGsuj1395ZHTc.roa (hash: gXssHvpvQonpjegaCBTMeVVsQnPbWqrgEQgoKWzts44=)
2: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl (hash: p/Ho4zOn9W5bgzmDfdZBMVZgl24fIezRqPX3dNgRpZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 07 Nov 2025 01:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:56:ad:e8:c2:01:51:6b:50:11:3c:41:df:4c:92:1d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Validity
Not Before: Nov 6 01:00:28 2025 GMT
Not After : Nov 7 01:00:28 2025 GMT
Subject: CN=cb2c903e2f45881045e544e8ca498d9f519629c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:61:9a:68:08:0f:e1:b3:91:79:a4:67:da:94:
78:33:6d:98:93:40:a0:a7:5f:11:5e:f8:61:ab:0f:
f8:d9:12:22:46:39:db:a9:f7:06:af:31:a1:f6:b1:
ed:04:f1:45:04:08:e6:5a:57:0d:48:4a:06:e5:f8:
de:87:fe:70:18:15:c3:a5:d7:36:ac:2d:b5:51:c8:
8d:ea:47:f8:15:27:8e:34:d5:f0:ad:55:8b:40:a1:
aa:a4:c2:65:cc:6e:04:98:37:f7:99:11:c3:c3:41:
e7:d3:af:f2:ef:79:49:f3:43:51:68:c6:c8:f2:2c:
84:ce:43:51:39:d5:f1:49:2d:b4:5e:8c:d0:20:5f:
64:41:01:6e:40:ca:7e:e8:54:55:3b:7b:c1:86:6d:
e1:1c:56:ee:06:20:36:d9:aa:50:84:88:cf:6e:4c:
c1:91:51:00:70:74:9e:95:5e:55:47:4c:22:59:8a:
9e:24:58:e9:f3:9b:58:1c:9d:b7:19:f2:88:f8:4e:
c7:79:a5:38:f8:df:f1:48:e2:e7:60:97:56:05:03:
9a:2c:58:94:34:ab:56:e9:fc:d8:91:46:59:1d:c7:
12:cb:7d:86:a9:51:5b:9a:7b:ef:28:b3:c6:24:59:
6c:40:0e:f3:78:13:ae:d6:d8:b0:36:8e:07:26:4c:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2C:90:3E:2F:45:88:10:45:E5:44:E8:CA:49:8D:9F:51:96:29:C1
X509v3 Authority Key Identifier:
keyid:58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:3e:e0:6a:58:32:5f:51:f6:30:80:e9:f5:1c:e3:d8:9e:69:
5e:67:f1:67:57:4a:ab:77:d6:73:c2:ab:bb:7b:6c:27:0b:44:
74:70:45:a5:24:1e:53:af:dd:8d:dc:a9:31:2a:66:07:c5:6b:
1e:cb:26:38:5c:07:8f:06:48:77:7f:2c:b9:84:41:40:71:47:
62:23:0d:03:27:76:e5:d9:20:d7:32:7e:ee:7e:d9:9c:3e:d3:
ab:58:c2:e6:fa:91:31:cf:f4:fe:5d:eb:11:5d:46:24:c6:6c:
84:b8:dd:86:56:fc:52:d1:e2:9e:74:cd:f1:8f:f6:77:5e:96:
22:7f:18:23:25:a6:87:fd:3a:43:a0:63:d6:ca:a3:a9:d9:f4:
0e:d3:3f:12:2d:69:8d:fe:34:71:1c:7e:c2:57:32:a4:20:ed:
a4:e0:d2:f1:7c:f8:1b:a8:58:c0:36:3f:a7:02:3b:37:15:c5:
15:db:41:6a:4b:d2:94:f8:8b:31:76:98:9a:66:d7:50:57:27:
05:0a:3f:19:01:0e:ad:26:c9:59:0a:0c:e0:b6:35:29:c2:69:
1d:3e:cc:06:ff:7b:1c:19:d0:4a:f7:2e:47:0d:97:28:e4:b3:
c3:2a:86:80:fc:90:70:18:89:1f:91:88:5e:64:61:e4:4c:6f:
87:d3:f9:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 07:37:41 2025 by rpki-client