![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: wf0PPpdgAVRCZSDnCOMUTja7Uywm1s1p0gNEG3XiNOo=
Subject key identifier: AD:96:2B:4D:B1:D3:72:B0:C4:FB:3C:D1:84:BA:4B:B3:75:DC:FA:10
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019048685F717F25E6769D31A2BF05421018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 11DB
Signing time: Mon 24 Jun 2024 04:01:58 +0000
Manifest this update: Mon 24 Jun 2024 04:01:58 +0000
Manifest next update: Tue 25 Jun 2024 04:01:58 +0000
Files and hashes: 1: Q8-FkkdURaTz5trQDgHu45K9Xro.roa (hash: Dvd26bujUcBv5l5ndhMzmqo67pehmunAkcK7WGhDruY=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: Bgovm2VWrXYmsEgbTneQyFj6AHA/noz8nmticI9ybXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 04:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:68:5f:71:7f:25:e6:76:9d:31:a2:bf:05:42:10:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Jun 24 04:01:58 2024 GMT
Not After : Jun 25 04:01:58 2024 GMT
Subject: CN=ad962b4db1d372b0c4fb3cd184ba4bb375dcfa10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bc:37:35:57:45:f7:7f:15:f0:30:eb:10:9c:
76:2f:e0:6f:13:32:a8:34:ce:03:32:74:6b:de:9f:
6c:34:de:66:2d:2e:2c:3c:fc:fa:22:fc:7c:34:e6:
64:5b:88:0f:4b:3f:f8:83:4e:c1:d7:a5:2e:ba:d4:
af:e1:d1:6d:69:c8:d8:19:2c:b3:36:5a:b1:e0:08:
40:12:e9:56:d4:d3:09:df:a4:7d:30:9c:1f:29:d6:
bd:a2:9b:7f:4d:84:8f:36:6a:e6:97:a8:37:95:ea:
e6:eb:18:eb:f0:43:66:c2:ff:27:80:54:86:6c:24:
88:2f:22:09:c2:72:54:d1:be:c7:55:da:e8:11:d0:
7c:93:23:44:e0:44:d8:b2:3f:4c:28:e6:7e:6d:44:
1b:cf:71:b6:cf:2a:22:22:38:e7:95:93:c0:6d:ab:
2e:57:be:03:e5:20:7d:a6:21:be:85:e6:18:3f:7a:
e6:6b:f0:75:15:02:f9:0d:96:03:64:29:02:bb:5f:
35:78:8c:75:29:99:5f:ee:0e:01:6f:37:c3:fa:b1:
a9:a0:8d:27:54:39:f2:66:d9:87:08:42:c7:dd:37:
f6:20:02:9b:79:00:e5:57:d0:34:78:98:b7:6f:37:
72:85:b4:a8:7e:5a:21:64:0c:88:71:de:7a:35:f3:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:96:2B:4D:B1:D3:72:B0:C4:FB:3C:D1:84:BA:4B:B3:75:DC:FA:10
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:81:68:c0:05:5b:89:32:45:4e:b5:8e:e3:a6:62:69:05:eb:
f8:ec:bc:96:de:e3:e7:b8:f4:4e:87:87:8f:6a:08:cc:79:4c:
30:5f:fc:9d:93:42:23:e6:4a:dc:ac:18:62:b0:a8:56:5e:04:
35:5a:4c:bf:7a:65:b8:7a:29:c2:b9:43:47:61:fd:c7:29:1d:
3b:f2:b0:d2:50:83:07:15:27:3e:69:89:4f:33:e2:e8:a6:bf:
c4:fa:13:ae:a8:34:74:ef:1b:7d:d5:fb:dd:0f:41:83:00:26:
2c:3c:a1:52:16:ba:d4:b3:45:d2:1d:19:07:e5:6a:bf:9d:35:
41:d3:fd:c4:e9:a8:d0:a4:39:b6:51:d1:f2:d1:52:86:66:9d:
47:6a:ae:f3:26:cd:4d:20:40:39:79:41:00:1d:e8:09:c6:99:
78:5b:60:ee:7f:98:91:a9:8e:ac:36:2e:2b:ee:ae:ef:3e:30:
68:6d:4d:0e:0e:bc:2e:99:e9:c9:36:a2:7d:87:07:01:fb:7e:
b4:8c:86:0f:82:4f:4d:5f:26:b7:7d:97:38:07:4b:79:10:b3:
a7:e7:87:73:28:dd:00:55:4b:7d:04:3e:71:2f:04:a1:cc:45:
da:4e:04:97:bd:d2:6f:85:6e:b0:1e:99:53:f8:12:43:98:60:
93:80:af:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:41:25 2024 by rpki-client on console-fra.rpki-client.org