![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.mft
File: o3QjR8c-ez1QD2D7ZQuCoBwh90k.mft (raw, json)
Hash identifier: XjxpbBmhiFD6hgErQVEw0Uzeuwvh4Zo3oPqQXqbqIzA=
Subject key identifier: 69:CC:2A:09:6E:B2:EA:67:17:42:88:74:FD:77:A8:FF:DC:01:A0:EB
Authority key identifier: A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
Certificate issuer: /CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Certificate serial: 01901D4653A5B1639C68D18E3DB42CCF1104
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.mft
Manifest number: 1158
Signing time: Sat 15 Jun 2024 19:01:06 +0000
Manifest this update: Sat 15 Jun 2024 19:01:06 +0000
Manifest next update: Sun 16 Jun 2024 19:01:06 +0000
Files and hashes: 1: 0PmaIqvXKOpzMFUR_YgctK9voww.roa (hash: DUivdrTLootL7uZBfRv8fhcsv4SI97bsqOR3Ujrt6v8=)
2: o3QjR8c-ez1QD2D7ZQuCoBwh90k.crl (hash: WmQ38H8zfQglL419z9W9RIn1qEZEs9dzKngR6iMUcKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.mft
rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:46:53:a5:b1:63:9c:68:d1:8e:3d:b4:2c:cf:11:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Validity
Not Before: Jun 15 19:01:06 2024 GMT
Not After : Jun 16 19:01:06 2024 GMT
Subject: CN=69cc2a096eb2ea6717428874fd77a8ffdc01a0eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1e:b0:8a:08:92:27:fc:19:a0:23:d4:5e:bf:
be:d4:68:bd:ea:11:ec:78:b1:9a:ec:09:c9:10:e6:
46:8d:6f:20:6d:29:cd:35:1c:ed:80:2a:16:9b:88:
61:bf:26:9d:05:37:3e:d1:91:17:07:e1:a9:08:ad:
12:ea:6f:f7:97:e7:ca:13:6b:bb:04:0f:fe:b9:d4:
cd:83:31:90:40:1b:89:12:ea:ec:62:a7:91:f6:7a:
6c:35:e5:b8:78:b0:f2:82:3b:9a:05:f5:2a:01:f2:
2b:b5:92:b3:a1:8d:75:cc:77:00:3a:04:aa:65:05:
54:ad:9c:fe:be:0f:40:a7:90:d9:e6:ce:e2:0a:d1:
74:82:af:c3:7e:6c:9f:f4:20:c3:97:a2:1f:4f:73:
34:72:42:ff:e8:dd:19:41:58:d4:da:8a:53:63:c1:
c0:0a:d3:3f:c9:48:96:81:6b:32:56:4d:ae:44:85:
4c:1b:b2:2e:a3:3e:2e:a5:81:13:6f:77:b3:2e:bf:
16:ed:89:54:7a:8b:74:67:29:ae:c3:68:a7:01:62:
39:c8:2a:7c:65:30:10:6c:90:6e:a2:6d:3f:22:2c:
e4:62:a2:3f:0a:aa:6b:71:29:98:d7:8c:67:c1:cc:
b1:52:d1:c6:98:c3:83:62:60:af:e0:c5:a5:ae:97:
ea:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CC:2A:09:6E:B2:EA:67:17:42:88:74:FD:77:A8:FF:DC:01:A0:EB
X509v3 Authority Key Identifier:
keyid:A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:63:2e:dc:f4:e4:75:4e:ca:6c:5c:a8:5c:c2:77:5c:43:35:
fc:e6:f3:71:10:37:4f:c1:c6:39:98:89:0c:bb:d6:71:ad:c2:
0e:4a:6e:a2:38:19:cf:cd:65:ec:cc:72:3d:fe:a0:99:3c:0e:
dc:8e:dd:0e:f1:99:35:1c:d8:f0:3b:d4:ec:85:8a:fa:bd:e1:
ab:8b:90:71:3e:1d:85:ed:10:d8:a2:f6:45:02:ed:92:ad:f7:
d6:78:bd:83:54:e0:17:09:3b:14:f2:f7:21:f4:90:c2:50:c4:
85:e9:f4:90:21:e4:d1:15:ae:c1:03:f1:dd:81:14:c2:6b:16:
af:d4:51:23:94:9a:eb:50:b3:fb:12:0c:df:99:25:95:9f:2a:
9c:0f:ec:47:2e:59:86:e9:da:f0:00:54:36:c8:89:11:9c:9b:
03:15:4d:bf:07:e1:eb:74:6b:99:63:2d:db:9b:d8:49:77:7c:
3b:69:07:ff:b2:23:47:8f:96:72:cf:50:00:a8:af:91:84:9e:
6d:35:9f:a8:4d:b2:b5:7c:0d:27:72:c3:ae:76:bc:28:c0:95:
ad:84:3d:e9:39:96:a2:d0:8c:85:7b:95:e5:fb:ed:3c:57:ea:
ea:96:a6:59:17:64:7f:a6:01:31:e4:b4:7f:59:6a:b0:b9:4c:
43:82:11:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 19:46:07 2024 by rpki-client on console-fra.rpki-client.org