Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: tuxzmCbLPon5bg64UgAx+NOg1PoSo/65WI8hl5HMAeA=
Subject key identifier: 41:BD:67:57:89:28:B8:32:5B:A1:0A:00:DC:85:2B:14:D5:A1:C1:2B
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 019872CFB759FF65405F17BC60E439FB71AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 03FD
Signing time: Mon 04 Aug 2025 02:01:12 +0000
Manifest this update: Mon 04 Aug 2025 02:01:12 +0000
Manifest next update: Tue 05 Aug 2025 02:01:12 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: 6Syd0auVIi0+PT0+HXxPgopzsqS+TH/Z1FvD2eQxi2g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 02:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:72:cf:b7:59:ff:65:40:5f:17:bc:60:e4:39:fb:71:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Aug 4 02:01:12 2025 GMT
Not After : Aug 5 02:01:12 2025 GMT
Subject: CN=41bd67578928b8325ba10a00dc852b14d5a1c12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:da:fd:b5:32:c5:e6:52:f7:ab:2b:69:95:7f:
ea:ec:eb:71:3c:0b:0e:3f:30:0c:f8:6e:63:50:f8:
49:f9:d6:e0:59:87:a6:e5:46:1e:fc:d2:f4:0a:11:
75:13:e8:f3:2b:ff:3b:ca:a7:a0:34:b1:8b:e9:03:
6b:81:71:4d:7e:06:72:87:70:a7:a8:02:db:fb:cb:
14:de:b1:42:74:ce:7e:a5:3b:c9:3c:50:d4:a0:79:
63:64:01:e3:cc:10:31:26:2b:1d:ee:42:36:6f:e4:
0f:eb:6e:f0:7e:d1:03:13:2b:9d:78:b1:33:a1:68:
72:5b:b1:f1:a8:03:32:75:e6:19:2d:68:65:0c:2b:
04:27:48:a8:dc:aa:8b:0f:52:20:df:ab:b9:93:ac:
d1:4f:54:ae:d0:87:1c:8d:93:9b:52:e4:b9:80:9f:
78:1b:4e:b8:de:91:35:f5:10:a4:a0:fc:6b:22:45:
64:9d:b7:48:70:72:45:cb:f6:9a:79:06:23:c6:39:
63:32:fe:e3:21:78:22:ea:af:0f:0b:e4:ab:a9:d8:
0e:bd:dc:45:4a:fa:65:ed:aa:62:f8:87:ed:b0:b2:
0c:10:86:7e:69:5f:9c:91:08:ee:76:1f:bf:c6:e1:
72:2f:02:4e:db:25:80:e8:93:98:ea:c4:22:19:8e:
61:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:BD:67:57:89:28:B8:32:5B:A1:0A:00:DC:85:2B:14:D5:A1:C1:2B
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:34:40:37:ea:0f:41:6c:04:cb:25:26:3b:55:a5:95:25:39:
7a:eb:23:c4:00:41:fa:02:0f:a0:16:57:1f:75:ad:8f:9e:50:
2c:f9:01:18:84:a4:47:c6:a8:64:7a:48:ec:0f:4e:89:c4:3d:
a8:59:23:fd:8c:00:e0:e0:bf:a9:80:52:65:05:93:db:6c:d8:
31:93:48:70:b8:8f:46:e1:7e:02:48:e4:e9:76:39:8d:5e:9d:
03:5d:16:e5:76:ba:de:db:ab:f1:c6:b8:cb:21:ff:87:8a:e3:
12:ce:2d:dc:71:32:f7:d3:8b:f4:a3:b1:4c:8d:24:01:6c:29:
46:18:c2:77:e1:b1:65:06:55:47:0c:55:a1:8b:dc:6e:d0:a6:
5a:19:a2:4b:34:7b:bf:bb:9b:d4:34:6e:34:34:aa:fc:ea:c6:
bc:56:c8:35:9d:b8:70:8d:cb:0b:03:d5:b1:36:11:f0:c7:d6:
40:06:da:1d:37:ab:96:6c:9a:21:87:f7:d7:c8:4a:91:32:9b:
7e:ac:b1:79:b6:00:91:a9:1d:57:9f:27:06:11:43:9b:78:b2:
13:0c:cd:37:27:89:6a:1f:0a:ee:0b:af:c8:00:d8:db:02:1b:
ba:64:15:ab:c9:64:9d:71:12:95:44:92:92:06:f7:07:61:16:
98:83:99:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:10:06 2025 by rpki-client