![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File: he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier: aTZp94yLvKpKe17c2f8uFRVeP9WRO/ilInaaY3p6i9w=
Subject key identifier: 32:46:91:53:B9:8F:75:E9:50:B4:BE:0A:22:FC:27:65:81:97:CB:85
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer: /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial: 01901CD83B099B0169AFBA8026551032C01A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number: 11C4
Signing time: Sat 15 Jun 2024 17:00:51 +0000
Manifest this update: Sat 15 Jun 2024 17:00:51 +0000
Manifest next update: Sun 16 Jun 2024 17:00:51 +0000
Files and hashes: 1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: MJSBvmj6gtilnRefnVdGwNwGVE4xjeMBQzEVo4www2Y=)
2: mZGPbFaLBsHgguDfmAi8_TEEi2s.roa (hash: UljmrIj007cf+lf1x882L5xCfcCqUtJduwq/P7Qzm8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:d8:3b:09:9b:01:69:af:ba:80:26:55:10:32:c0:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Validity
Not Before: Jun 15 17:00:51 2024 GMT
Not After : Jun 16 17:00:51 2024 GMT
Subject: CN=32469153b98f75e950b4be0a22fc27658197cb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:aa:5e:c7:df:f4:7a:5a:ac:d5:3c:1e:1e:
2f:51:f1:c7:c3:69:95:89:e7:22:65:ba:94:b7:9a:
73:8f:3c:eb:98:43:06:a1:06:b1:92:7a:60:9f:38:
77:4f:ef:ba:1f:58:36:81:e7:a1:20:8a:f4:d5:7f:
92:4d:40:de:2e:44:04:c5:aa:27:50:cb:c4:88:3a:
2a:79:9c:37:2c:15:50:25:18:ed:d4:8f:dc:78:81:
b6:c9:73:ad:44:e4:80:7a:b7:a9:ea:88:b9:8a:c1:
89:3d:d1:1d:b3:80:7a:71:65:88:80:b8:53:2e:1f:
d6:b7:85:7b:70:1e:9d:84:1c:8a:fb:b3:8b:e9:47:
92:5e:3e:2f:4f:01:fa:92:97:4a:ac:d3:33:f3:fd:
dd:77:20:cb:8c:80:61:ca:3d:b9:40:5f:1c:3e:52:
fa:91:5d:29:a9:a0:8c:31:3d:36:84:a6:87:bd:f9:
c9:56:7c:ab:d5:f4:e9:44:43:60:bb:86:33:b9:e2:
82:c4:f5:d7:3b:b5:0f:50:d5:c1:60:70:ed:45:4a:
c4:5f:e8:90:cd:4c:eb:89:15:31:b3:31:3e:e0:53:
c9:d9:4f:62:ae:a4:82:73:01:ae:ad:eb:30:a9:15:
8e:0a:85:ad:e4:59:04:6a:10:e0:de:be:7d:3a:17:
9e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:46:91:53:B9:8F:75:E9:50:B4:BE:0A:22:FC:27:65:81:97:CB:85
X509v3 Authority Key Identifier:
keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:32:fb:14:55:02:6f:29:6b:ab:22:e0:7e:05:62:36:59:49:
64:25:d4:28:97:ad:17:4b:cd:b6:53:76:05:dd:75:f4:bc:0d:
47:9b:39:f0:b8:3b:f9:78:69:1e:c0:68:ef:c0:18:34:5c:0a:
54:57:f1:33:b0:79:38:1a:3c:14:a0:f6:36:57:ab:a2:35:8c:
35:c2:17:13:f5:40:8c:81:7c:e4:dd:8a:24:3f:6f:30:45:18:
cb:cb:09:6a:a6:d1:80:e5:ed:98:6d:58:90:a7:51:cf:3d:bc:
7f:84:81:8b:d8:40:2f:2b:f0:56:24:0f:ba:7d:e8:68:9d:be:
f6:09:2a:64:21:4d:76:d8:1e:13:a0:8b:d5:95:5d:0f:f7:29:
7d:da:40:20:8d:29:c6:8f:73:fd:88:ad:f2:c0:05:77:ff:4a:
79:b9:f9:97:67:96:77:dc:b7:5e:7a:c6:5a:e0:49:44:63:b1:
93:1a:f2:8f:0a:94:c0:27:54:32:9a:d5:22:1e:36:13:85:85:
a7:5f:c5:01:e7:ba:e5:86:25:db:48:ea:f4:f8:8f:82:a5:0d:
e0:eb:e9:80:8a:4d:18:14:d8:29:0d:47:17:ba:14:0f:f2:52:
76:4c:db:1c:50:9b:8c:5f:46:6d:52:0e:c3:30:07:49:fa:4a:
c5:07:90:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAc2DsJmwFpr7qAJlUQMsAaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZWQ0ZmNjNDU5NjRkNGVhNzJmYzQ0OTJjNGQ3OTU3MTMz
MjEwYzMwHhcNMjQwNjE1MTcwMDUxWhcNMjQwNjE2MTcwMDUxWjAzMTEwLwYDVQQD
EygzMjQ2OTE1M2I5OGY3NWU5NTBiNGJlMGEyMmZjMjc2NTgxOTdjYjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubqqXsff9HparNU8Hh4vUfHHw2mV
ieciZbqUt5pzjzzrmEMGoQaxknpgnzh3T++6H1g2geehIIr01X+STUDeLkQExaon
UMvEiDoqeZw3LBVQJRjt1I/ceIG2yXOtROSAerep6oi5isGJPdEds4B6cWWIgLhT
Lh/Wt4V7cB6dhByK+7OL6UeSXj4vTwH6kpdKrNMz8/3ddyDLjIBhyj25QF8cPlL6
kV0pqaCMMT02hKaHvfnJVnyr1fTpRENgu4YzueKCxPXXO7UPUNXBYHDtRUrEX+iQ
zUzriRUxszE+4FPJ2U9irqSCcwGureswqRWOCoWt5FkEahDg3r59Ohee3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJGkVO5j3XpULS+CiL8J2WBl8uFMB8GA1UdIwQY
MBaAFIXtT8xFlk1Opy/ESSxNeVcTMhDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9jYTQ2MGUtNjYzNS00ODFiLWI2ZTkt
Zjg1YTdjYjFkMTkyLzEvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9jYTQ2MGUtNjYzNS00ODFiLWI2ZTktZjg1YTdjYjFkMTky
LzEvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsDL7FFUC
bylrqyLgfgViNllJZCXUKJetF0vNtlN2Bd119LwNR5s58Lg7+XhpHsBo78AYNFwK
VFfxM7B5OBo8FKD2NlerojWMNcIXE/VAjIF85N2KJD9vMEUYy8sJaqbRgOXtmG1Y
kKdRzz28f4SBi9hALyvwViQPun3oaJ2+9gkqZCFNdtgeE6CL1ZVdD/cpfdpAII0p
xo9z/Yit8sAFd/9Kebn5l2eWd9y3XnrGWuBJRGOxkxryjwqUwCdUMprVIh42E4WF
p1/FAee65YYl20jq9PiPgqUN4OvpgIpNGBTYKQ1HF7oUD/JSdkzbHFCbjF9GbVIO
wzAHSfpKxQeQFA==
-----END CERTIFICATE-----
Generated at Sat Jun 15 20:02:55 2024 by rpki-client on console-fra.rpki-client.org