Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
File: WdNqIemzaNdIurjHe-vd4sInxsM.mft (raw, json)
Hash identifier: GMJBFYFqb+NBPW0xdEx/5uDYiv6fnndc2+Ii8v6Phio=
Subject key identifier: 67:A9:A9:E3:69:00:AC:E5:E5:31:A2:64:2A:DB:47:89:23:19:E8:52
Authority key identifier: 59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
Certificate issuer: /CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Certificate serial: 0198D5BBE281B0BD40AFF9683C92E58AB9D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
Manifest number: 0827
Signing time: Sat 23 Aug 2025 07:01:56 +0000
Manifest this update: Sat 23 Aug 2025 07:01:56 +0000
Manifest next update: Sun 24 Aug 2025 07:01:56 +0000
Files and hashes: 1: 2sZdgnxG39Ec4iWQKIqHRPm_-nk.roa (hash: 1XVkgkrwmMauPThY8HLX2JQkAHIe6uakbKzIFrk1NHc=)
2: WdNqIemzaNdIurjHe-vd4sInxsM.crl (hash: IY9w5i3e5dE6qyWJc8TOgM5J3j+FhsHcjHXMdse3l/k=)
3: is_XEdqOSIZdOdAUliJ38zXn5ZE.roa (hash: +WoDzk7VKcG/lDal047Esdi6HVzF1DiurqrDKoqvrhI=)
4: k47IkFzsvbAU-luJwFSjcXBgPII.roa (hash: LRzevFO33ciORneOuJWjPwolGOd6frxZBqlkG2Q4ros=)
5: skXm2fkwzq64ONGiXwLfUYMzOOo.roa (hash: eZX3z+2+p9WFafZJ1Sv1eq5Rzpet45IDFVeaiO++2eM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:e2:81:b0:bd:40:af:f9:68:3c:92:e5:8a:b9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Validity
Not Before: Aug 23 07:01:56 2025 GMT
Not After : Aug 24 07:01:56 2025 GMT
Subject: CN=67a9a9e36900ace5e531a2642adb47892319e852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:95:8d:3d:50:bf:56:4c:02:af:fc:41:26:
2a:b5:7f:dd:1f:aa:b3:a1:ad:ca:d1:fb:a4:ab:f2:
eb:52:84:d5:1c:8c:04:3a:cf:05:8d:75:c7:36:36:
ca:3b:8f:dd:8f:0c:26:5b:a4:76:f5:2d:49:55:82:
1d:3c:3f:51:0f:53:26:b7:ed:fe:19:48:06:61:2e:
71:a3:10:50:bc:92:a6:e5:8c:db:e5:17:92:88:b1:
51:b3:25:1b:25:9f:61:1c:33:36:a5:57:b0:30:72:
09:ba:db:4d:f2:9c:4b:0c:0e:3d:80:46:27:ce:b9:
1c:80:8f:63:21:0e:36:7c:cc:58:48:e1:d3:38:5c:
ef:45:5b:58:d7:66:cb:46:da:75:36:de:8a:0c:b7:
d0:72:3c:8f:40:eb:1c:16:36:8a:96:19:41:e4:20:
29:20:bc:6e:ef:0a:3a:f3:49:05:7a:2d:0d:60:98:
9f:d6:b9:6a:6b:9d:af:7e:7e:09:f7:8a:b2:50:21:
a5:53:1c:50:12:8a:22:c0:0c:fe:4b:d7:f7:aa:d0:
cc:c1:57:9a:99:c9:e5:d3:02:cc:15:59:6d:eb:80:
15:46:2e:53:47:af:91:24:1c:e8:0e:d5:ef:f0:88:
ee:54:b0:84:52:29:37:fd:65:0b:d8:e0:74:8d:87:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A9:A9:E3:69:00:AC:E5:E5:31:A2:64:2A:DB:47:89:23:19:E8:52
X509v3 Authority Key Identifier:
keyid:59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:3e:52:12:e8:7c:0d:e0:24:f6:2f:5c:36:a6:87:fd:ec:d6:
9e:aa:62:fc:67:a9:88:49:ab:70:b9:fa:f3:58:01:ba:3a:3f:
fb:6b:98:fd:a3:e6:18:01:92:12:e7:d3:e9:79:ec:74:6a:c6:
91:2a:3a:6c:bf:77:de:75:ed:cd:5c:46:80:4b:96:91:90:a6:
cc:d1:b9:c9:21:e0:c6:d5:cd:56:66:5f:40:8c:7e:33:27:70:
7a:6e:9f:85:94:ee:f4:6b:59:ee:c9:65:b5:80:7e:88:55:4b:
e2:07:61:e5:1d:6b:9d:b1:71:59:0c:8f:3e:62:27:cb:f2:da:
4e:4d:c1:d3:b6:4e:1b:13:b5:35:ce:ea:0a:09:3f:5a:8f:02:
2a:fd:59:a6:10:82:2b:cd:cb:a1:8e:de:df:e5:fb:67:f4:97:
9b:3f:d5:43:2c:b8:ae:64:78:35:97:99:56:eb:36:df:a8:70:
be:4e:b9:36:aa:e0:65:ad:fb:90:25:24:61:9c:db:a0:7d:3d:
18:c6:43:a6:8a:fd:23:2f:5a:49:2b:32:2b:f3:09:b8:0c:4d:
a4:ee:0a:d7:cb:5c:56:cc:82:3a:ef:bb:18:6d:71:e4:f8:12:
74:af:82:58:35:f4:78:30:0a:e0:90:fb:51:f8:39:66:2a:59:
b0:88:67:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:23 2025 by rpki-client