Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: OpIN+usglgMF+zCZ6lz25IeVOwFG6AC4FfRAJpUMMm4=
Subject key identifier: 66:B7:3F:03:5B:0E:6A:9B:61:F1:57:0C:05:E5:B1:E8:2C:C8:21:59
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 019D9BBE7D082FC389498EADDE17B287F22B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 06A9
Signing time: Fri 17 Apr 2026 14:00:45 +0000
Manifest this update: Fri 17 Apr 2026 14:00:45 +0000
Manifest next update: Sat 18 Apr 2026 14:00:45 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: JfBdIuyk1XU6ZcsC9wX6EMxf9XgUsQpb55nrkfc2Ol4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:7d:08:2f:c3:89:49:8e:ad:de:17:b2:87:f2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Apr 17 14:00:45 2026 GMT
Not After : Apr 18 14:00:45 2026 GMT
Subject: CN=66b73f035b0e6a9b61f1570c05e5b1e82cc82159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:82:7c:cd:43:b0:c6:15:4b:d2:30:8d:96:51:
5e:90:60:fb:d9:b0:33:96:86:3d:5a:93:92:36:c1:
d8:a4:b5:4d:fd:0d:7d:35:ad:f2:cd:40:78:59:de:
b8:93:da:07:7a:e9:c8:c0:e9:4b:88:c4:84:06:18:
3d:25:fa:6e:6c:53:ac:ef:b7:26:2c:29:fa:d6:f2:
47:71:a6:a8:12:04:74:8f:91:2d:1f:91:d9:c6:e0:
47:09:fd:d5:a9:81:5f:b0:fa:90:eb:08:db:ee:94:
3d:39:16:77:9b:b3:04:79:53:95:1e:56:3b:68:b9:
23:86:d6:e2:ea:99:75:db:74:25:88:2f:68:f9:bc:
44:e2:66:c2:91:77:fc:d8:da:57:b2:dd:1e:86:95:
8d:83:26:7a:b0:97:4c:86:95:89:60:57:93:e6:6d:
39:ed:9f:01:d1:68:40:5a:3a:7e:b2:d2:fd:4a:54:
77:06:70:ad:bc:83:fc:31:3f:7d:3b:de:6f:3c:35:
1a:bc:f3:76:72:91:c5:c2:91:71:20:46:6a:1c:d2:
61:a3:51:10:66:2b:b9:a6:69:0d:21:db:76:1a:77:
45:31:1e:d5:8e:7d:68:73:68:f9:85:ca:25:ba:99:
7e:17:63:6d:c7:a7:fb:b3:3b:19:2c:32:95:d9:47:
d1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B7:3F:03:5B:0E:6A:9B:61:F1:57:0C:05:E5:B1:E8:2C:C8:21:59
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:60:e2:82:33:75:9f:be:cf:57:80:7c:38:72:2a:83:0c:0b:
ed:14:2e:52:e9:cd:09:77:70:2b:53:2a:d6:bd:0a:99:32:ee:
5a:43:47:82:26:8b:f9:74:5c:a6:c9:56:b5:14:dd:5e:bb:20:
74:a5:26:81:bb:b8:12:53:f7:b8:36:ab:34:45:bd:0b:9b:8e:
8a:d8:61:c7:8f:26:43:1a:3c:7a:79:8a:f0:34:b7:4d:9f:49:
98:24:0c:c9:bd:ae:1f:a2:61:a8:e1:92:b5:44:1b:97:e6:ae:
6f:ce:7f:88:be:c3:de:8f:78:c7:fa:aa:c2:38:27:b4:49:93:
9f:83:23:a1:9c:0b:7a:f1:0b:6a:02:12:cf:c3:63:53:fe:91:
cc:78:15:4c:60:0c:7d:1c:cb:29:8a:7f:a1:b2:d8:9d:fb:b0:
a1:1e:2f:ba:f5:4c:0c:e2:f7:85:9c:b7:f4:29:4e:b5:27:ef:
07:f9:b1:65:0d:2c:ab:15:7a:dc:d3:cd:a7:f5:f2:d7:78:a0:
73:1b:07:71:49:7f:c2:cc:3f:3d:4a:34:50:27:6d:33:3d:51:
5c:31:30:56:25:fd:be:1c:e6:e7:07:60:b2:08:78:48:d0:d2:
90:1d:bc:ed:c4:fe:e7:e4:0a:c6:c4:32:35:7b:45:4e:97:7e:
ed:cf:83:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:40:31 2026 by rpki-client