Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: gzLRV3GD09ghYa0jazcFcVfW9Yu2UgiaLut0LQHijAo=
Subject key identifier: 0D:60:FE:58:9D:F5:95:D6:7C:7D:EE:29:A2:D3:D3:4E:B9:C8:CC:A0
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 019CAC4793171E54D9065C1B67D0CE2683E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 062D
Signing time: Mon 02 Mar 2026 02:01:37 +0000
Manifest this update: Mon 02 Mar 2026 02:01:37 +0000
Manifest next update: Tue 03 Mar 2026 02:01:37 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: v6+GxvBuRqQOmzRBmYiUYUyXImTrRSraniptmMGqbQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:93:17:1e:54:d9:06:5c:1b:67:d0:ce:26:83:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Mar 2 02:01:37 2026 GMT
Not After : Mar 3 02:01:37 2026 GMT
Subject: CN=0d60fe589df595d67c7dee29a2d3d34eb9c8cca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:af:08:3a:86:54:96:bf:c0:4b:57:a3:18:52:
84:42:fe:78:e9:7d:df:fc:67:aa:db:43:a6:fc:ee:
50:43:85:31:2c:fa:87:8b:fc:c9:ec:03:c1:a5:66:
e1:78:56:e8:44:72:c7:9d:e4:f1:3d:4f:26:6a:0f:
e7:2a:f9:12:cb:a2:f9:d2:df:8a:f6:a8:ab:86:c3:
bf:f4:ae:76:c4:7c:82:23:9d:a0:0f:df:62:f1:3d:
01:11:44:ba:0b:94:1f:a3:4a:9f:b8:a1:ae:ab:e8:
b6:46:67:f5:f0:25:cb:42:20:9a:2a:2b:76:fe:64:
37:00:fc:e1:5d:56:df:91:18:82:0a:a3:90:00:23:
48:a8:a9:a6:1e:a4:5d:e4:c8:a9:ff:d2:cc:57:ce:
7e:af:30:a1:7b:92:0c:ce:9b:5c:22:88:d2:d6:c4:
be:97:32:8c:d7:7c:75:19:60:e3:cc:1a:3e:b8:40:
bd:c8:0d:9b:9f:ba:db:36:4a:e0:ce:5a:61:6e:97:
d9:82:f1:cd:65:60:f8:ab:77:c8:a6:91:bc:a3:a8:
48:a8:24:44:b2:69:fe:03:8a:1c:39:54:e7:ff:1f:
e0:15:9e:c4:3c:00:37:61:81:70:cd:53:1d:94:ab:
44:fe:05:ba:4a:e1:1e:2c:96:8d:0a:3c:28:61:42:
b3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:60:FE:58:9D:F5:95:D6:7C:7D:EE:29:A2:D3:D3:4E:B9:C8:CC:A0
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3b:39:20:5c:09:8f:25:60:dd:b8:79:d2:a2:e9:45:81:d5:
f5:d4:f8:41:94:41:3f:b4:5b:30:25:03:10:fa:45:7d:c8:07:
bb:01:14:ab:aa:cf:ea:cc:3e:b2:28:da:1f:62:3f:1b:78:3c:
15:34:91:59:89:4f:b4:ce:ea:b5:cc:74:9e:68:6b:c4:99:55:
e5:ac:5f:db:d2:10:9c:ec:5a:51:9d:57:1b:e6:63:41:65:46:
4f:f1:0d:41:3f:c6:48:b0:b7:01:a8:d4:02:8d:c4:12:4a:24:
2f:40:cf:d6:37:0c:cb:6a:18:28:80:b9:58:cc:94:e9:42:fb:
a1:40:43:fb:65:c1:9b:62:55:8b:03:18:49:d1:2c:8c:95:8b:
d6:41:d8:26:60:12:94:b3:d0:0f:0c:06:e1:95:17:0c:80:22:
4b:75:16:dd:7e:cb:35:b7:9c:71:2e:73:29:88:08:15:82:ca:
d6:6c:3c:a8:de:3f:fb:c9:ad:62:84:68:eb:c4:0b:5a:21:77:
bd:d2:a0:f3:5d:a9:56:bd:40:83:9a:e1:e6:14:fa:5e:68:cf:
9c:74:5c:7a:b7:f9:f3:2e:d3:44:31:88:4d:22:fc:ca:93:06:
5b:da:37:91:50:64:22:70:31:dd:94:cc:05:9f:03:fd:bd:70:
39:a5:aa:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:26:39 2026 by rpki-client