Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
File: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft (raw, json)
Hash identifier: C5dOqoeVZvN1CT47CjKYHAf3NOZl4SKvTVjBqa3bzuQ=
Subject key identifier: D7:B2:45:69:F1:BC:23:D8:90:6F:58:40:BF:24:5C:5F:BD:FE:CD:95
Authority key identifier: 58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
Certificate issuer: /CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Certificate serial: 019689250299D692EE8128CCE86AACCB228D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
Manifest number: 01B2
Signing time: Thu 01 May 2025 00:00:26 +0000
Manifest this update: Thu 01 May 2025 00:00:26 +0000
Manifest next update: Fri 02 May 2025 00:00:26 +0000
Files and hashes: 1: CqZAFiIzp-k21bzGsuj1395ZHTc.roa (hash: gXssHvpvQonpjegaCBTMeVVsQnPbWqrgEQgoKWzts44=)
2: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl (hash: 6DMYZ/AajnT9dnDda6P71G1fDV8q92Lhpa8OZIBLTug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:25:02:99:d6:92:ee:81:28:cc:e8:6a:ac:cb:22:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Validity
Not Before: May 1 00:00:26 2025 GMT
Not After : May 2 00:00:26 2025 GMT
Subject: CN=d7b24569f1bc23d8906f5840bf245c5fbdfecd95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:96:d0:13:7d:1c:9e:52:3b:01:70:ae:10:
bf:cf:41:be:38:89:b5:a2:d6:31:18:a8:eb:ab:4a:
4c:bf:c4:78:bc:ba:0e:3f:b8:e4:81:20:4b:05:92:
db:9b:05:12:53:d6:29:0e:bf:56:6f:35:ff:4d:ad:
b3:39:3f:42:e1:31:0a:93:3c:5e:74:9f:d1:87:6b:
fd:b9:56:9a:5a:41:1b:95:ff:ec:a7:2b:2f:ba:57:
6c:ca:93:99:72:6f:f5:69:f1:a1:4a:28:27:72:57:
13:bf:b8:a0:67:dc:4d:9a:1d:dc:7c:3d:17:cd:e8:
1a:e7:67:8f:0f:46:60:58:e9:ba:7c:6c:de:8e:99:
b0:1a:93:79:d6:94:e2:fa:0f:b2:e8:05:b5:ab:3c:
d0:ef:61:4c:92:d9:36:ec:6e:46:7a:44:b3:41:0e:
e7:f0:8b:4e:b3:7b:01:05:0c:6a:4c:b1:41:b7:c1:
9d:e0:17:4c:c8:96:13:2f:6b:0f:55:75:ee:eb:b4:
9e:0c:ec:51:cb:fc:f5:1b:9a:a8:be:a5:ab:a9:8e:
b2:20:2c:19:17:b6:bf:d5:e3:c1:26:3a:06:04:b8:
ed:2c:fc:1a:fb:44:70:d2:0e:ce:42:40:1b:f4:c0:
5b:c3:e2:15:cd:fe:e6:6b:71:fb:2c:77:bd:64:d8:
59:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B2:45:69:F1:BC:23:D8:90:6F:58:40:BF:24:5C:5F:BD:FE:CD:95
X509v3 Authority Key Identifier:
keyid:58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:f4:ac:36:12:55:49:1f:11:1e:32:9c:2e:b4:09:c1:2c:f3:
b1:26:b0:ed:be:42:fa:19:34:eb:d7:a3:1f:01:43:48:7e:06:
f4:d6:eb:47:ac:ca:36:33:d2:e9:08:da:4c:af:3b:1d:e8:dd:
c5:57:c9:b0:dd:14:88:b3:9c:96:fd:5b:5b:f6:ac:38:72:4f:
a4:49:68:c6:1d:58:7b:56:d6:b8:a6:20:fe:12:41:24:0f:01:
c7:a8:c0:3a:98:27:9d:29:d6:bf:55:5f:31:d5:e6:26:16:2e:
ab:bd:99:ba:94:fe:e3:5a:63:e9:0c:a6:4b:7c:bd:76:1d:25:
1b:8e:b2:cb:5a:45:19:a9:84:37:fd:40:db:a0:4f:8f:05:ca:
eb:d0:18:53:0b:48:2a:99:06:8d:c7:f9:45:b7:d4:6b:d3:60:
b4:ad:39:c8:58:6a:6e:40:1b:d2:3c:c5:39:b7:dd:41:92:ce:
35:30:f4:94:1c:db:04:44:bf:c0:2c:d0:54:8b:fa:17:5f:9a:
28:33:3d:47:9d:81:bc:e4:00:85:32:0e:8c:32:fc:0a:ee:84:
9a:fa:c9:d1:61:3c:30:ed:4a:a9:37:81:bf:41:93:4f:65:75:
fe:81:31:61:28:58:1f:8e:01:67:7d:20:73:0a:8d:2b:b6:e1:
1c:91:4f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 04:15:08 2025 by rpki-client