![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
File: IZUnwiTwCiiy9MtOExLXSNXKUWk.mft (raw, json)
Hash identifier: V8bukwQNKQCVHYnEpiIg1vyu5tL2+MjpDKnA73j71cc=
Subject key identifier: 92:95:BE:12:1D:CC:8D:46:4D:87:68:4F:58:15:04:B9:76:66:07:B6
Authority key identifier: 21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
Certificate issuer: /CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Certificate serial: 01901CD8C005CDEF5273B7898D8943780B8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
Manifest number: 11C3
Signing time: Sat 15 Jun 2024 17:01:25 +0000
Manifest this update: Sat 15 Jun 2024 17:01:25 +0000
Manifest next update: Sun 16 Jun 2024 17:01:25 +0000
Files and hashes: 1: AZAWI7Jm47jMnUaUcaPRfCagUas.roa (hash: geacct04dXn/RmslkR2/z9rdBGicSaFYFRLYjMo34CM=)
2: IZUnwiTwCiiy9MtOExLXSNXKUWk.crl (hash: k1CYxaV0iJczexn172f6XQu4YAFc43owjEh3PuCzMl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:d8:c0:05:cd:ef:52:73:b7:89:8d:89:43:78:0b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219527c224f00a28b2f4cb4e1312d748d5ca5169
Validity
Not Before: Jun 15 17:01:25 2024 GMT
Not After : Jun 16 17:01:25 2024 GMT
Subject: CN=9295be121dcc8d464d87684f581504b9766607b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5b:ec:1a:a5:a2:77:0f:72:cb:fd:9c:e9:9c:
77:00:55:2c:6b:b5:34:15:01:04:bd:4c:71:76:05:
af:cc:6a:72:a7:88:50:1f:49:3f:73:4c:91:bc:78:
1a:f1:b1:b0:0e:0a:ae:33:72:e9:0e:fd:98:7c:e5:
9f:fe:08:ed:6b:c1:45:1b:3d:ed:25:7f:74:e6:b6:
09:e3:18:04:9d:8d:e4:70:54:18:9d:64:f7:dc:0b:
b4:29:e6:b3:7e:7c:60:b9:54:08:d9:9d:64:0b:11:
a0:56:65:83:9f:92:ff:28:b2:ec:41:64:75:6c:98:
86:99:6d:6f:2f:82:13:92:90:08:73:3b:ff:9f:b0:
fa:ad:87:38:9b:cc:7d:b8:2d:b2:1f:80:a3:47:50:
88:c7:00:2f:e2:d9:50:66:4a:35:aa:63:3e:e4:9b:
e0:12:74:e2:7e:c7:9b:7d:32:88:6f:08:a1:68:5b:
f2:8e:78:87:78:e2:22:0f:f5:77:21:fd:d7:c0:90:
ca:3c:8b:a6:c8:e2:7c:c4:ed:15:25:a0:d7:be:40:
1f:d4:91:32:01:3b:56:b6:b6:d7:95:c6:0e:db:a9:
5d:e6:1b:15:45:63:24:98:2d:7a:56:c1:f9:3b:38:
7a:39:4f:fc:ed:e1:f2:66:74:35:04:c7:9a:99:60:
d3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:95:BE:12:1D:CC:8D:46:4D:87:68:4F:58:15:04:B9:76:66:07:B6
X509v3 Authority Key Identifier:
keyid:21:95:27:C2:24:F0:0A:28:B2:F4:CB:4E:13:12:D7:48:D5:CA:51:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IZUnwiTwCiiy9MtOExLXSNXKUWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/8540db-f901-433b-81bb-97d55f391561/1/IZUnwiTwCiiy9MtOExLXSNXKUWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:04:95:8e:0c:49:53:d5:3b:89:33:f9:5d:67:e8:70:b0:45:
67:ee:cd:65:f6:d0:c0:6a:cf:60:00:6e:45:fc:61:ab:a8:8c:
91:4f:96:50:59:e9:f8:80:a4:94:4c:1b:65:3b:27:9e:38:58:
48:46:bd:56:86:87:27:1d:a1:cc:c9:78:93:86:b1:d9:cd:a4:
be:0f:b8:6b:53:8c:55:70:1f:84:00:04:fa:96:ab:ec:68:62:
b5:39:25:5c:59:97:d6:40:42:1d:d0:35:f0:42:1f:1b:3b:61:
e2:fb:70:b9:6d:5c:a8:10:ee:67:f4:d3:8f:56:02:fa:33:76:
00:41:3a:4a:c0:04:12:39:4d:22:a3:4d:93:a5:ca:fa:04:f9:
3b:c0:08:c3:4b:58:e3:91:3c:23:7e:19:a0:3c:f3:c6:df:30:
53:76:bd:f5:4c:59:a6:28:f8:fe:d6:9e:42:26:03:2b:bc:30:
14:14:d5:33:87:53:85:42:86:9c:5e:28:e9:88:ac:b8:ab:51:
e5:d4:5d:da:f1:d9:6c:d1:fe:4b:90:f2:8a:31:ac:0e:03:2b:
1e:58:9b:c5:0e:38:aa:13:40:9a:a8:3d:29:26:b9:df:ab:1b:
55:a5:ce:01:f3:f4:6e:a1:7e:64:17:92:80:1c:95:8f:09:49:
2e:cf:c8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:01:09 2024 by rpki-client on console-fra.rpki-client.org