Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: 8ofyLfxrBCc8Hf9JXpdmKT235k3Eob8Al+3zaSPqbkA=
Subject key identifier: AA:33:F5:8C:C0:06:87:03:D1:8C:25:FB:CF:CC:3F:34:F9:4F:AF:20
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 0198D54E51B5E1A83AACD6F73EC54DF70ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 0430
Signing time: Sat 23 Aug 2025 05:02:16 +0000
Manifest this update: Sat 23 Aug 2025 05:02:16 +0000
Manifest next update: Sun 24 Aug 2025 05:02:16 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: VGLuE2SNtLz3mfVZ4Is+ZDTAQH+792Fvda5FCl1lLfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:4e:51:b5:e1:a8:3a:ac:d6:f7:3e:c5:4d:f7:0e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Aug 23 05:02:16 2025 GMT
Not After : Aug 24 05:02:16 2025 GMT
Subject: CN=aa33f58cc0068703d18c25fbcfcc3f34f94faf20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:0d:a0:56:9e:f6:c2:31:b8:a7:c6:f6:5d:
72:d3:97:59:bd:1b:76:31:36:da:26:69:9d:10:7d:
f1:f2:5a:4e:5c:a0:fa:7d:70:66:53:6d:e4:34:56:
d8:8f:17:bb:f5:cc:8a:fd:dc:0a:a9:37:08:1a:a3:
f4:b8:fa:6c:14:a8:82:65:ea:82:8c:40:71:6c:b9:
70:26:6d:83:04:9c:eb:90:6f:9d:69:e4:f6:6e:3c:
64:99:8b:dd:f0:60:63:05:be:54:4c:89:72:6e:52:
b4:91:f4:19:fd:c8:f1:c9:cd:5e:5a:9f:f7:3e:44:
e4:d2:33:cd:b7:25:94:01:df:32:98:46:db:7a:5f:
84:4d:64:4d:1a:ef:13:43:48:70:cc:6b:d8:32:bc:
f2:9a:c7:0b:a6:da:18:84:98:0f:40:c6:31:70:93:
b4:39:57:76:25:be:53:c3:dd:b9:a2:32:c5:85:fc:
8a:67:b7:f9:66:b2:b8:2d:15:d4:60:99:ce:f0:38:
d9:30:2b:0b:a7:58:2a:16:c7:97:97:5f:d5:88:aa:
29:af:af:6d:16:ed:c2:cd:de:f7:72:39:d5:e7:d6:
7d:bf:49:26:ca:7a:a3:65:90:22:73:17:fe:c2:35:
0f:68:03:00:5a:b2:38:81:8b:55:60:aa:35:0b:91:
1b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:33:F5:8C:C0:06:87:03:D1:8C:25:FB:CF:CC:3F:34:F9:4F:AF:20
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:b6:ec:85:a1:3f:31:6e:30:da:9a:bf:2a:62:87:71:12:ff:
01:f9:86:57:ce:a8:3a:c0:63:82:1e:55:19:97:21:db:83:3e:
c0:8f:06:7e:b9:c4:24:de:cd:e7:47:ee:ae:90:d3:8e:53:d7:
b4:c7:7f:21:58:3c:ea:75:e2:55:b4:d8:42:1a:69:78:a9:58:
6f:b8:68:44:1d:f6:7f:54:ae:a8:23:85:b5:14:27:0a:b3:47:
9d:39:4c:f4:f0:c9:8a:98:09:54:8b:41:a2:bb:07:ab:6b:a1:
80:79:cd:d2:9d:53:72:8e:37:7d:eb:b6:b6:fd:96:13:a8:32:
b3:a4:da:b8:18:10:a6:e6:7b:a9:84:6a:6f:fe:78:40:cc:e5:
52:8d:04:91:26:4e:43:57:94:2b:3e:00:eb:07:3f:23:96:6d:
5c:02:4d:f3:4f:f2:cf:34:dd:98:01:73:f5:fe:93:b2:88:fa:
b0:fb:ca:5e:00:bc:ff:2f:b6:b9:2d:35:52:28:23:2a:a4:ab:
bb:8d:47:fc:1e:ab:2f:6b:d0:34:e6:ec:fe:40:f6:35:6c:89:
a2:ba:10:09:6b:59:f4:aa:10:cc:50:80:e1:48:ad:a3:06:68:
5c:ec:2c:3a:af:8d:59:31:b4:31:08:3d:b0:cc:2d:f4:84:b8:
eb:86:35:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTlG14ag6rNb3PsVN9w7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTM1YWZiOGYwMDc2YzExNTU4YWNmZjQwNjNmMmY1OGEy
ODE3Y2EwHhcNMjUwODIzMDUwMjE2WhcNMjUwODI0MDUwMjE2WjAzMTEwLwYDVQQD
EyhhYTMzZjU4Y2MwMDY4NzAzZDE4YzI1ZmJjZmNjM2YzNGY5NGZhZjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoy0NoFae9sIxuKfG9l1y05dZvRt2
MTbaJmmdEH3x8lpOXKD6fXBmU23kNFbYjxe79cyK/dwKqTcIGqP0uPpsFKiCZeqC
jEBxbLlwJm2DBJzrkG+daeT2bjxkmYvd8GBjBb5UTIlyblK0kfQZ/cjxyc1eWp/3
PkTk0jPNtyWUAd8ymEbbel+ETWRNGu8TQ0hwzGvYMrzymscLptoYhJgPQMYxcJO0
OVd2Jb5Tw925ojLFhfyKZ7f5ZrK4LRXUYJnO8DjZMCsLp1gqFseXl1/ViKopr69t
Fu3Czd73cjnV59Z9v0kmynqjZZAicxf+wjUPaAMAWrI4gYtVYKo1C5EbHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKoz9YzABocD0Ywl+8/MPzT5T68gMB8GA1UdIwQY
MBaAFFijWvuPAHbBFVis/0Bj8vWKKBfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgt
MzUxOGQ4MDZmZmMzLzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgtMzUxOGQ4MDZmZmMz
LzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHrbshaE/
MW4w2pq/KmKHcRL/AfmGV86oOsBjgh5VGZch24M+wI8GfrnEJN7N50furpDTjlPX
tMd/IVg86nXiVbTYQhppeKlYb7hoRB32f1SuqCOFtRQnCrNHnTlM9PDJipgJVItB
orsHq2uhgHnN0p1Tco43feu2tv2WE6gys6TauBgQpuZ7qYRqb/54QMzlUo0EkSZO
Q1eUKz4A6wc/I5ZtXAJN80/yzzTdmAFz9f6Tsoj6sPvKXgC8/y+2uS01UigjKqSr
u41H/B6rL2vQNObs/kD2NWyJoroQCWtZ9KoQzFCA4UitowZoXOwsOq+NWTG0MQg9
sMwt9IS464Y1Rw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 10:49:42 2025 by rpki-client