![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
File: b_rHiuobz0OKYe-RUCRI9glkHS0.mft (raw, json)
Hash identifier: FWb9pHsnk4YlfyAHxbScTpwNm4MOX/ZoR04Joo9EiHE=
Subject key identifier: 48:48:8E:7E:1E:71:94:F5:CE:04:83:6D:AB:EF:AF:E1:68:C5:01:1D
Authority key identifier: 6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D
Certificate issuer: /CN=6ffac78aea1bcf438a61ef91502448f609641d2d
Certificate serial: 01901D4635369C719735A9FA903C6AFC5965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
Manifest number: 0E57
Signing time: Sat 15 Jun 2024 19:00:58 +0000
Manifest this update: Sat 15 Jun 2024 19:00:58 +0000
Manifest next update: Sun 16 Jun 2024 19:00:58 +0000
Files and hashes: 1: b_rHiuobz0OKYe-RUCRI9glkHS0.crl (hash: Ly+TNsy1gc0YaMKQhjr62Hun3i2pR5Q8Xuwa8S+QAlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 19:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:46:35:36:9c:71:97:35:a9:fa:90:3c:6a:fc:59:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffac78aea1bcf438a61ef91502448f609641d2d
Validity
Not Before: Jun 15 19:00:58 2024 GMT
Not After : Jun 16 19:00:58 2024 GMT
Subject: CN=48488e7e1e7194f5ce04836dabefafe168c5011d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6a:5a:30:43:ff:59:66:be:ba:6e:2a:0a:db:
04:e6:f8:07:1c:55:95:29:b3:41:53:f3:63:4a:85:
dc:0f:02:2e:a3:8d:94:2a:db:a3:a0:f9:be:1c:80:
74:93:9b:12:71:09:a9:66:1e:f0:5e:3b:05:b4:44:
d2:38:00:b7:c9:b2:6d:0b:27:93:e1:06:a6:45:73:
a9:9c:89:f7:f0:38:03:8e:28:98:b0:a9:c6:3e:7b:
20:24:95:a8:68:18:0b:eb:2e:82:8f:d6:d7:cd:28:
cc:8c:56:13:4b:45:d4:25:de:2b:3f:8e:44:e3:5f:
2c:88:67:38:73:1e:7b:97:d5:6f:65:ca:4e:8f:1b:
e1:50:2d:8d:db:77:44:6d:e1:be:3d:02:47:98:30:
1b:d8:06:6b:f2:df:3e:e2:89:57:33:a4:ff:21:1d:
e7:9f:cd:74:11:8d:f9:df:57:b1:38:cb:6e:ad:c8:
c1:f4:4f:89:94:8b:4e:83:77:60:4b:c4:c6:c0:0f:
65:d0:b3:39:ff:a3:89:9e:d0:10:6b:4c:21:ef:40:
73:37:f1:81:2b:b2:b4:5f:8b:9f:3a:93:e4:10:8a:
75:d6:ca:b5:30:57:e8:1d:8f:5b:9b:72:bc:b7:80:
ed:2d:0a:66:9a:f5:a4:4f:08:93:38:98:fe:7e:63:
fd:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:48:8E:7E:1E:71:94:F5:CE:04:83:6D:AB:EF:AF:E1:68:C5:01:1D
X509v3 Authority Key Identifier:
keyid:6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:bc:4d:68:2a:fa:17:83:08:15:e4:09:ae:fd:7f:81:01:a0:
f4:2c:bc:4a:fa:e7:db:77:1b:8d:eb:4c:b6:c8:c4:e8:7a:bd:
cc:73:24:6e:05:91:91:07:1e:76:3b:69:f2:62:26:0a:6c:d3:
3c:44:fc:18:29:d8:23:09:ba:5b:c1:2c:41:a8:25:c0:8a:e3:
92:d6:71:8f:b6:f0:25:89:81:e4:e0:14:6d:de:2f:08:f7:a4:
c9:6b:34:84:5f:93:bb:1c:54:cd:c4:52:ed:cc:0a:29:14:e1:
f9:7b:5f:8b:13:f7:82:5c:d8:82:0c:b7:82:b9:b3:cf:68:6b:
fa:68:ed:d9:79:19:84:a7:e3:32:3e:0b:08:a7:f9:5e:7c:f7:
d4:f7:7d:cd:9a:ef:a6:d8:40:a0:b6:94:e1:57:48:86:89:59:
db:a3:e0:64:57:ae:79:44:c7:f4:e8:0b:54:a3:17:06:c2:b7:
d7:e8:03:5e:55:44:40:a1:49:18:be:7e:eb:b1:b2:c3:8a:a4:
90:31:d3:0e:33:fa:ba:4e:61:77:b9:c6:80:91:78:21:61:da:
85:47:1b:73:f7:47:df:fd:6d:eb:ce:a1:37:9c:04:5c:6a:38:
00:67:9f:b9:25:73:a9:cd:a6:b2:d4:3f:7f:92:80:69:39:b9:
a3:1e:91:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:50:55 2024 by rpki-client on console-fra.rpki-client.org