Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: xHrnzZ5Z/Y086LcdQJLF6fxNELDCJEK7z5CdXlY/96w=
Subject key identifier: 43:9E:71:56:95:26:56:06:30:91:E8:84:43:B3:D5:F0:3F:83:37:6A
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 0197B77C94C137DB96FD4E3BA217E2E1E1EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 039C
Signing time: Sat 28 Jun 2025 17:01:24 +0000
Manifest this update: Sat 28 Jun 2025 17:01:24 +0000
Manifest next update: Sun 29 Jun 2025 17:01:24 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: n9RnQhisKnD73gKUJDVkwoChgpTU1xInU82oQmloE9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:94:c1:37:db:96:fd:4e:3b:a2:17:e2:e1:e1:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Jun 28 17:01:24 2025 GMT
Not After : Jun 29 17:01:24 2025 GMT
Subject: CN=439e7156952656063091e88443b3d5f03f83376a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:4e:df:0a:0a:86:b9:b7:24:aa:04:1d:0c:08:
8d:38:b2:22:15:0f:9c:e2:31:88:6a:74:2f:6b:93:
a4:8a:81:3f:97:00:e1:ef:eb:a5:a5:87:1d:74:17:
7a:62:80:2d:a3:15:9d:d5:ca:01:f4:de:49:43:e0:
39:d6:0f:d0:b2:2e:9e:33:25:f6:51:5f:e7:68:ed:
cf:14:88:18:86:ba:f6:b3:03:2a:a4:0d:2e:81:dd:
77:19:62:aa:2d:b9:aa:68:97:a7:67:bc:ad:2a:ac:
c4:07:5f:d1:21:9f:44:bb:54:a3:a6:9a:d1:e3:9d:
16:89:32:a5:8d:31:82:e7:4d:d3:f0:fd:9a:86:61:
35:71:68:78:3f:b0:74:36:69:85:87:09:5f:3a:8b:
15:5b:45:9a:93:43:69:7f:af:e0:39:c5:4f:f5:a1:
68:31:71:b0:a7:90:f1:55:1a:3b:02:26:3c:3c:e6:
6f:b8:3f:0a:bd:25:6c:b7:92:5c:34:2e:fb:ab:e8:
87:1e:91:51:d6:a2:5d:d4:08:a6:79:93:57:14:d2:
cd:1a:e7:7b:53:67:6b:65:cf:71:ba:5c:af:35:c6:
dc:6d:f1:d5:82:e7:b7:27:62:da:b4:b1:4c:88:d7:
67:36:4d:49:c6:3f:4a:4b:c6:8c:90:33:40:09:73:
96:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9E:71:56:95:26:56:06:30:91:E8:84:43:B3:D5:F0:3F:83:37:6A
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:8d:d5:03:e6:20:c2:3e:39:8f:15:5f:76:bf:0e:f1:23:b1:
8e:39:ca:b7:60:61:9d:bf:3f:c8:18:75:96:8c:dc:34:dd:c7:
69:81:4e:6b:81:50:db:c9:54:6f:db:8f:07:36:54:1b:43:40:
54:f4:1b:c3:7d:32:6d:96:8c:a6:4e:ea:58:25:cb:9a:82:ee:
1d:34:3e:c7:b0:13:80:d6:69:5b:1c:13:b5:f2:74:87:b8:e2:
7d:5d:45:46:bd:b8:cb:74:58:07:a0:a9:8c:5c:6c:e7:72:ec:
27:87:29:90:80:a8:62:55:a6:a2:f8:85:50:5d:01:ef:eb:db:
94:c9:ee:a5:55:93:4e:92:57:a0:93:27:78:ec:bd:d3:74:f0:
da:54:7e:40:67:7c:e0:6c:9c:58:04:55:11:8f:fc:fc:c4:3a:
aa:12:4e:38:20:c2:eb:d1:45:32:43:ea:35:c7:42:4d:5b:13:
04:d0:64:21:5c:5e:d4:0b:1d:5a:3d:62:85:a4:fb:8f:f6:b1:
39:20:ce:8c:80:f5:46:ec:42:c4:9c:8f:5c:5e:67:22:d1:61:
54:cb:7e:32:43:70:f3:b0:4e:94:af:b8:60:ad:1e:2e:1f:82:
8d:eb:c7:e0:f6:e3:ef:10:0e:b8:d0:b5:3e:09:1e:6b:c3:a9:
be:c8:e1:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:26:12 2025 by rpki-client