![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
File: aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft (raw, json)
Hash identifier: OZ/JfdRGrPHma7ZdIAvDAmLxJO3C4l2/MgVs5Yq5bUo=
Subject key identifier: F2:8D:5E:57:85:93:71:EA:C5:D1:F4:B1:B3:EB:79:57:39:1A:5C:BB
Authority key identifier: 69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
Certificate issuer: /CN=695dce5e37a862538a0f66883de206ffb7c93b69
Certificate serial: 01901DEC2A68DAA8DF097B66A0D66E3340DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
Manifest number: 0203
Signing time: Sat 15 Jun 2024 22:02:14 +0000
Manifest this update: Sat 15 Jun 2024 22:02:14 +0000
Manifest next update: Sun 16 Jun 2024 22:02:14 +0000
Files and hashes: 1: T-boIdoUmAHWvcfqBZ6YwVgoFzY.roa (hash: I+PVY53VuuJ/AkvPCPl4sBbNVKS9AyVOok3xkUhP/f0=)
2: aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl (hash: ZKdpQeaHXq+8GKbcBjPpMCrkQvyPcz7YZVOnsw+SeWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 22:02:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ec:2a:68:da:a8:df:09:7b:66:a0:d6:6e:33:40:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=695dce5e37a862538a0f66883de206ffb7c93b69
Validity
Not Before: Jun 15 22:02:14 2024 GMT
Not After : Jun 16 22:02:14 2024 GMT
Subject: CN=f28d5e57859371eac5d1f4b1b3eb7957391a5cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:60:7a:b8:d0:57:49:9a:ab:cd:c2:f8:49:c7:
af:36:b3:f1:df:84:ee:ff:a3:cd:a0:9d:71:c9:13:
ea:75:11:62:59:07:b8:5f:fe:27:f7:e7:38:54:30:
5e:82:3e:09:b7:9f:d4:fe:bd:37:e5:8d:fa:2a:94:
64:19:e9:59:e8:c5:88:62:70:b1:0c:09:52:a3:5a:
6b:96:5a:40:ed:3d:1c:f7:60:fe:1c:72:6e:d1:c6:
4b:0b:a5:ed:a2:04:52:aa:e4:e9:a2:df:22:43:e2:
aa:88:46:39:d7:77:60:51:44:8c:33:ef:7f:dc:dc:
45:18:2b:f3:a7:45:89:6e:5c:f6:2f:55:c3:36:8f:
37:6e:d6:31:63:86:b9:4f:94:17:cb:0e:c1:f3:32:
ef:c2:c1:0b:ba:5b:8c:9c:49:e5:94:64:3f:06:cc:
e6:3c:31:18:cc:9b:c8:aa:f0:c8:dc:37:52:3b:9a:
2a:c5:e1:0d:b0:23:34:65:e1:78:7d:75:d2:31:83:
f7:eb:ac:e4:f8:0f:39:6d:c0:06:78:44:63:3f:7a:
84:93:cc:9a:6b:bd:5f:7c:af:1e:f8:57:34:8e:6e:
ba:3b:9c:38:a4:be:0e:91:ae:f5:8a:27:a1:ac:bb:
69:68:aa:60:4c:97:01:76:8e:94:5a:61:6b:98:a9:
55:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:8D:5E:57:85:93:71:EA:C5:D1:F4:B1:B3:EB:79:57:39:1A:5C:BB
X509v3 Authority Key Identifier:
keyid:69:5D:CE:5E:37:A8:62:53:8A:0F:66:88:3D:E2:06:FF:B7:C9:3B:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aV3OXjeoYlOKD2aIPeIG_7fJO2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/716911-30de-4b74-959b-017dee452ec4/1/aV3OXjeoYlOKD2aIPeIG_7fJO2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:9a:43:31:c9:98:38:a1:4b:d5:0f:c6:42:03:8b:62:75:c2:
e2:98:9f:c4:98:95:c2:91:16:08:44:43:3a:05:7e:10:70:01:
0e:61:fe:d8:0f:ab:eb:4f:91:e8:ff:7c:80:6f:04:40:8c:e5:
97:aa:a0:4e:b7:4a:6c:77:4d:74:02:87:9b:c2:f4:5e:6a:bd:
86:d5:4a:22:cd:45:38:74:34:5e:47:49:04:ed:86:08:56:dc:
d3:55:e0:73:a9:a0:32:d4:51:aa:24:85:d7:94:45:dd:aa:a5:
8a:0d:a5:d2:ee:21:38:ed:24:26:1f:6d:52:4e:6d:ab:2c:a2:
13:39:04:ab:93:a3:7d:41:81:93:89:d9:81:73:db:da:11:47:
fe:2e:da:62:8d:f6:ac:63:9e:ed:8a:ea:e9:23:d1:ed:5c:73:
d6:7a:07:71:5f:6f:b9:ea:99:d3:c0:04:44:5c:36:29:2b:37:
f4:89:fa:d0:29:e4:34:60:b1:8e:ef:0e:7d:5c:cf:91:33:1d:
19:97:59:c1:62:ff:dc:9d:65:68:41:5a:6d:02:50:5f:c7:7b:
c5:dc:2c:d1:10:09:4a:3a:ed:15:53:7f:32:61:40:83:83:01:
82:96:5b:8c:da:a2:6a:49:fd:a0:54:f8:99:1d:57:9a:16:19:
97:94:01:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:55:51 2024 by rpki-client on console-fra.rpki-client.org