Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: WsYUgh3s3use5j4uz0T7KwhaJw7MBB23GlAKyJ9NJ+0=
Subject key identifier: 7C:75:E5:39:13:D3:17:69:14:20:91:3C:4B:14:21:B8:A8:4D:70:E6
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 01967AC46B6939A36FACCF517D562F8D0BB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 02F8
Signing time: Mon 28 Apr 2025 05:00:14 +0000
Manifest this update: Mon 28 Apr 2025 05:00:14 +0000
Manifest next update: Tue 29 Apr 2025 05:00:14 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: r4DErahSYp7mLlQ3MvF3GJp8xCGqO0SXhxBrkjXuBLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c4:6b:69:39:a3:6f:ac:cf:51:7d:56:2f:8d:0b:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Apr 28 05:00:14 2025 GMT
Not After : Apr 29 05:00:14 2025 GMT
Subject: CN=7c75e53913d317691420913c4b1421b8a84d70e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ee:89:e5:a6:59:6b:11:a7:96:a3:81:d1:ae:
b6:d6:0c:27:f2:42:d8:a5:b4:1a:89:df:c2:26:89:
01:9f:59:ba:82:b0:90:98:27:3b:66:77:89:b0:71:
47:08:3e:5d:06:a4:33:11:dd:a8:7e:81:43:a8:5e:
02:85:b2:ee:5c:93:5d:7e:5d:39:cd:f9:14:78:5d:
6e:6a:8d:77:c0:f3:a6:82:36:04:93:9a:f4:2f:d6:
da:44:f9:4f:8d:1b:99:47:0f:e8:6e:07:c6:f2:a0:
bf:ce:ba:89:d8:4b:50:bb:fb:7f:e6:7c:3d:73:02:
9e:4a:1c:56:b2:8e:ba:f9:bd:fd:68:d9:bb:d9:2c:
d3:2c:a6:63:bf:af:6f:29:ce:59:39:a6:52:67:57:
a1:3f:67:d9:e4:45:de:2c:5f:86:dd:9f:7e:a7:4b:
e3:ef:07:70:9e:b2:e1:78:d0:cf:c8:11:ac:90:66:
52:b9:8a:42:e1:8b:68:1e:1c:6b:aa:c8:d6:3e:91:
65:53:59:c6:48:fc:e7:86:6e:33:3e:e7:fb:9b:7f:
96:25:09:6a:08:36:61:5c:0b:85:29:e4:53:aa:e5:
4f:ab:7a:ab:e0:8e:2b:65:f3:6c:96:b1:21:74:4c:
44:ab:85:19:f2:cc:e8:41:11:51:54:fd:ec:7e:3e:
d5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:75:E5:39:13:D3:17:69:14:20:91:3C:4B:14:21:B8:A8:4D:70:E6
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:76:ae:3f:b1:96:b0:fe:50:43:62:cb:2b:4b:b8:06:6e:61:
27:b0:30:22:45:9f:a7:37:1d:bc:41:5e:4a:38:fa:4a:ad:3f:
c0:1c:bd:64:8a:5a:c1:63:ce:86:6e:51:c6:8a:d5:0c:8a:88:
89:67:c3:fd:b2:da:cf:da:15:cc:00:61:73:5f:1b:a9:9b:7c:
a2:94:8c:72:b6:b6:4c:ef:bf:2f:78:65:0a:d0:66:a3:48:16:
81:44:14:45:3c:5f:87:e7:fc:d7:01:a4:51:76:26:6d:e3:d4:
cd:45:0a:62:b2:bc:36:7a:dd:3f:b3:d9:81:8e:d2:ba:1d:08:
17:b4:5f:20:2f:c8:5e:0b:4e:59:a1:84:af:04:a1:b6:be:38:
18:1d:bc:08:2f:e0:58:a8:2c:5e:a0:04:8e:6b:82:13:0a:c0:
b4:6d:f0:af:f2:48:bc:99:05:5a:64:44:00:53:43:c0:02:85:
ad:17:72:e1:59:f3:26:24:81:9b:5e:67:62:83:0f:3c:a0:b9:
ad:62:00:83:4c:c4:70:45:03:9f:33:58:15:ac:50:1b:7e:57:
66:75:2f:ee:40:43:64:68:db:86:d6:6f:5d:62:09:7f:c2:dd:
26:5f:27:cb:4e:66:a3:a6:eb:ee:14:4f:03:27:75:8e:d1:65:
bb:08:45:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ6xGtpOaNvrM9RfVYvjQu0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTM1YWZiOGYwMDc2YzExNTU4YWNmZjQwNjNmMmY1OGEy
ODE3Y2EwHhcNMjUwNDI4MDUwMDE0WhcNMjUwNDI5MDUwMDE0WjAzMTEwLwYDVQQD
Eyg3Yzc1ZTUzOTEzZDMxNzY5MTQyMDkxM2M0YjE0MjFiOGE4NGQ3MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+6J5aZZaxGnlqOB0a621gwn8kLY
pbQaid/CJokBn1m6grCQmCc7ZneJsHFHCD5dBqQzEd2ofoFDqF4ChbLuXJNdfl05
zfkUeF1uao13wPOmgjYEk5r0L9baRPlPjRuZRw/obgfG8qC/zrqJ2EtQu/t/5nw9
cwKeShxWso66+b39aNm72SzTLKZjv69vKc5ZOaZSZ1ehP2fZ5EXeLF+G3Z9+p0vj
7wdwnrLheNDPyBGskGZSuYpC4YtoHhxrqsjWPpFlU1nGSPznhm4zPuf7m3+WJQlq
CDZhXAuFKeRTquVPq3qr4I4rZfNslrEhdExEq4UZ8szoQRFRVP3sfj7V9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHx15TkT0xdpFCCRPEsUIbioTXDmMB8GA1UdIwQY
MBaAFFijWvuPAHbBFVis/0Bj8vWKKBfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgt
MzUxOGQ4MDZmZmMzLzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgtMzUxOGQ4MDZmZmMz
LzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALXauP7GW
sP5QQ2LLK0u4Bm5hJ7AwIkWfpzcdvEFeSjj6Sq0/wBy9ZIpawWPOhm5RxorVDIqI
iWfD/bLaz9oVzABhc18bqZt8opSMcra2TO+/L3hlCtBmo0gWgUQURTxfh+f81wGk
UXYmbePUzUUKYrK8NnrdP7PZgY7Suh0IF7RfIC/IXgtOWaGErwShtr44GB28CC/g
WKgsXqAEjmuCEwrAtG3wr/JIvJkFWmREAFNDwAKFrRdy4VnzJiSBm15nYoMPPKC5
rWIAg0zEcEUDnzNYFaxQG35XZnUv7kBDZGjbhtZvXWIJf8LdJl8ny05mo6br7hRP
Ayd1jtFluwhFfw==
-----END CERTIFICATE-----
Generated at Mon Apr 28 10:25:10 2025 by rpki-client