![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
File: _XF_OrY5RaG-c5wrOiWJvqVd224.mft (raw, json)
Hash identifier: TRRdVN1+ix3Ucjp4xWzBwWH/4Z12CIvEDeJRBLGpK+I=
Subject key identifier: 59:8F:8A:C6:EC:4A:81:5C:8E:8C:8B:6E:E0:A5:8E:C8:17:64:57:29
Authority key identifier: FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
Certificate issuer: /CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Certificate serial: 0190723EFC8EBAB066A5E6436E88CDFAD342
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
Manifest number: 07A3
Signing time: Tue 02 Jul 2024 07:00:48 +0000
Manifest this update: Tue 02 Jul 2024 07:00:48 +0000
Manifest next update: Wed 03 Jul 2024 07:00:48 +0000
Files and hashes: 1: _XF_OrY5RaG-c5wrOiWJvqVd224.crl (hash: mvDlWvfKutMmFf90ijs+uFqgm4OppTxgYCEYFPhqI2Q=)
2: v9Lt3fGaEcduUjlPyMTA0-TU3m4.roa (hash: I2UdTH3ckCCUc0ttLHdJWn9TsqIWijWeNc//Mt1750g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:3e:fc:8e:ba:b0:66:a5:e6:43:6e:88:cd:fa:d3:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd717f3ab63945a1be739c2b3a2589bea55ddb6e
Validity
Not Before: Jul 2 07:00:48 2024 GMT
Not After : Jul 3 07:00:48 2024 GMT
Subject: CN=598f8ac6ec4a815c8e8c8b6ee0a58ec817645729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:9e:47:5e:c2:0e:44:cc:76:2d:91:f2:b3:94:
6f:6a:6b:ae:8b:ee:e6:32:9f:3c:b9:7d:e9:74:98:
be:be:e6:2b:74:d3:a5:e3:ee:70:d1:4b:24:1c:f1:
c2:30:e9:8e:05:72:a1:1f:a8:00:f6:50:54:a3:31:
22:0f:61:6e:95:c3:25:a0:d1:e2:9e:7e:55:30:bf:
9e:52:b3:93:29:34:34:50:cb:ad:47:83:1b:5c:75:
9a:dd:a4:65:3e:9d:da:48:a6:28:3f:14:02:86:b6:
35:8a:3f:1b:de:a2:13:34:25:cd:c7:42:2b:5d:df:
73:d1:c4:a0:60:e5:8a:c1:cc:e9:2b:d1:5e:2c:7e:
3d:d7:94:fe:92:52:8c:9f:63:ee:55:0e:02:a2:f6:
31:8c:7f:44:ae:a2:a8:a3:28:16:55:de:f1:05:5d:
5a:9f:6c:61:b3:d2:cf:79:b7:58:e2:b3:be:36:a6:
46:46:56:6d:d3:68:86:f6:bd:fe:df:e6:0a:53:11:
22:c3:d9:38:21:3b:7b:8b:13:7d:7c:2f:fc:d0:86:
ab:20:b3:7e:3a:3e:84:26:fd:15:db:8e:6a:bc:0e:
7b:5d:ac:c1:a6:ce:d7:32:02:20:93:48:5b:d3:c1:
a9:32:e5:7d:02:a9:a0:07:df:91:90:86:98:a2:ef:
dd:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:8F:8A:C6:EC:4A:81:5C:8E:8C:8B:6E:E0:A5:8E:C8:17:64:57:29
X509v3 Authority Key Identifier:
keyid:FD:71:7F:3A:B6:39:45:A1:BE:73:9C:2B:3A:25:89:BE:A5:5D:DB:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XF_OrY5RaG-c5wrOiWJvqVd224.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2f0a66-1634-40fb-99b0-931505ff41c5/1/_XF_OrY5RaG-c5wrOiWJvqVd224.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:75:3d:8b:d3:16:92:df:28:40:c8:9e:c8:0a:f6:5d:4d:5c:
5d:3d:5a:cf:11:62:56:63:48:19:54:a6:4c:19:57:44:1d:40:
70:91:e4:bc:28:cf:8d:1d:0e:cf:18:1b:67:85:65:6d:a9:1e:
fa:5c:43:df:36:31:76:7c:dd:67:c8:be:4f:c8:e9:f0:a5:6e:
31:3e:fe:20:55:1a:1f:c6:e1:89:ad:62:35:b7:04:bb:ff:c8:
0c:f2:96:0b:ae:99:e1:ae:ed:a1:33:b9:42:f7:0c:e7:f5:c1:
ce:db:f4:ff:58:0d:d1:55:cc:8d:96:a3:f4:a3:39:03:59:b3:
c7:00:6b:71:f7:6d:2e:1d:ad:cd:56:7b:2c:92:2c:ec:34:42:
c9:db:ba:ba:3c:8e:f5:d4:51:bf:9a:42:2e:eb:fb:96:b8:a4:
fd:79:4e:de:70:94:f9:5f:9b:2b:29:fc:b4:fd:e1:a6:d1:b2:
53:84:da:7b:0f:ff:01:38:65:9f:e1:f8:4b:df:f9:b5:cf:1f:
99:11:df:2e:ee:5e:1a:34:a7:b1:97:c2:ce:a2:bf:ac:ae:87:
5a:2c:3f:e6:b8:58:b9:28:4c:3a:9a:70:f0:32:59:25:7d:c6:
2c:95:28:cc:f1:6a:4d:0d:19:92:ca:66:24:8b:5f:74:cd:ba:
db:ec:66:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 12:39:04 2024 by rpki-client on console-ams.rpki-client.org