Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json)
Hash identifier: Lb+hGm7P3X+iKM6hV0IFmezPiLFiy7Q3NqKdnOANlWs=
Subject key identifier: 89:D2:21:16:12:4C:64:A8:16:9D:FD:A2:05:34:D9:73:D3:A2:91:92
Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Certificate serial: 019D27E035733A5BA5DD0F9746B1BEA5BE32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
Manifest number: 066D
Signing time: Thu 26 Mar 2026 02:01:38 +0000
Manifest this update: Thu 26 Mar 2026 02:01:38 +0000
Manifest next update: Fri 27 Mar 2026 02:01:38 +0000
Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: eOJwnkDwFHY5om2yKfHEwG6G6JaKhAvkTpuzPzsMZqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:35:73:3a:5b:a5:dd:0f:97:46:b1:be:a5:be:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca
Validity
Not Before: Mar 26 02:01:38 2026 GMT
Not After : Mar 27 02:01:38 2026 GMT
Subject: CN=89d22116124c64a8169dfda20534d973d3a29192
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c3:bd:eb:95:3f:cc:4e:5d:1f:7d:8b:50:70:
8f:41:04:6f:dd:c6:e8:8a:18:95:ee:bd:eb:aa:53:
c4:74:74:ee:e2:9e:a9:d3:ad:99:cc:a0:e1:48:c7:
85:59:80:00:e5:0b:0d:5b:31:0d:5f:3e:08:a7:42:
91:42:3c:e3:a6:f3:dc:50:f7:0c:33:c0:22:d7:91:
7c:a5:99:5e:99:af:dc:60:45:07:b5:b9:dd:59:2c:
c7:11:d3:a7:ab:e9:da:b3:70:cd:5c:16:72:f8:c4:
9e:7b:9a:ac:3b:91:8e:b3:4c:4c:89:55:2d:48:7f:
7c:57:be:ab:26:79:40:a8:ec:05:1c:1c:3d:d3:18:
a4:d1:b5:97:68:6c:10:c9:ee:e9:dd:b5:37:7e:bd:
30:ed:d0:97:d0:9c:90:0a:16:0e:e4:63:7f:76:82:
2e:34:f2:9e:fa:d6:43:f1:90:00:eb:64:e2:43:f8:
16:dc:fd:3a:67:e7:9a:63:58:d0:ff:1e:42:98:0a:
21:5a:c0:84:0f:88:61:0d:1b:2a:6c:26:07:15:0b:
92:27:62:07:60:f3:04:73:7e:ed:4c:5a:10:54:5f:
a2:f3:34:08:67:41:c2:21:d0:55:09:8b:36:df:8e:
29:84:2a:9f:67:cd:b0:69:0e:a3:17:20:45:22:26:
4b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D2:21:16:12:4C:64:A8:16:9D:FD:A2:05:34:D9:73:D3:A2:91:92
X509v3 Authority Key Identifier:
keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:aa:0a:ef:a6:b3:95:9f:2a:2e:30:a9:41:ed:8f:6b:94:2c:
a7:c7:53:1a:77:ad:b5:35:39:27:00:ba:5d:79:bb:af:04:7a:
e8:fb:65:08:96:4b:21:52:6a:3c:ca:56:95:70:1f:fa:59:52:
b3:13:1f:4b:c5:8b:18:0d:07:6d:9f:d2:86:f9:64:76:50:6d:
b6:cf:d4:e8:74:17:75:48:09:70:9b:5d:71:dc:45:9b:05:6b:
ba:f1:cd:3e:e4:f1:c3:46:0c:f6:2f:95:0b:08:d3:a1:75:77:
49:93:ea:1f:7a:81:83:5e:61:d6:99:9c:ed:0b:3f:54:14:a4:
8b:da:e0:eb:ab:d1:ca:0c:05:db:b1:35:21:5a:9c:5d:c4:5e:
81:41:14:91:e5:bd:79:3c:ef:03:c5:67:cb:ab:cf:97:60:b2:
1b:dc:9b:fa:bb:98:29:fd:9f:8e:ed:9d:ac:d5:04:42:b7:36:
08:ea:81:00:33:6f:ea:78:ef:60:62:68:7a:39:ad:47:59:56:
d8:4b:7c:b3:c0:2d:ec:ed:ce:3c:3f:dc:4d:c0:85:83:16:25:
1b:68:de:cf:f7:33:88:ca:56:0f:d9:a8:67:80:77:b5:42:cb:
68:59:37:b3:ec:ce:1b:b5:35:2d:50:33:3f:11:4c:6f:5a:36:
ef:74:f6:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:34:49 2026 by rpki-client