![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
File: Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft (raw, json)
Hash identifier: 5YotXtg+z7cIQJJyYjyRMSRG68bFieYEPc2ZCnZAM6o=
Subject key identifier: 80:7F:18:5D:63:1F:B8:11:7E:89:D4:D7:AA:59:58:FF:CF:DE:EF:9D
Authority key identifier: 1D:BD:89:81:D7:0D:1C:4E:1C:4F:05:38:BD:04:F7:01:1F:AD:C3:B9
Certificate issuer: /CN=1dbd8981d70d1c4e1c4f0538bd04f7011fadc3b9
Certificate serial: 019041F7EBDDC33B1A5711F662BBAE524D47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
Manifest number: 059A
Signing time: Sat 22 Jun 2024 22:01:25 +0000
Manifest this update: Sat 22 Jun 2024 22:01:25 +0000
Manifest next update: Sun 23 Jun 2024 22:01:25 +0000
Files and hashes: 1: 2A1M9twGPD1-4PIkttPdprW7aBM.roa (hash: pfzZjAP4oOXZVW16atseLgUkhdLMr4uAWy0Rj7f1Rr0=)
2: Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl (hash: ZKqa/BLvKVQyUkqoMgu/TOiupbMTQ2YaY6hrXVxPf2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 21:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:41:f7:eb:dd:c3:3b:1a:57:11:f6:62:bb:ae:52:4d:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dbd8981d70d1c4e1c4f0538bd04f7011fadc3b9
Validity
Not Before: Jun 22 22:01:25 2024 GMT
Not After : Jun 23 22:01:25 2024 GMT
Subject: CN=807f185d631fb8117e89d4d7aa5958ffcfdeef9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:dd:88:83:dd:2c:28:85:c1:c4:d5:18:60:44:
31:31:0e:8f:78:5e:f6:62:4f:e6:32:18:c1:02:d4:
ea:37:24:e6:93:d0:b8:5e:38:e4:53:4d:f6:e0:89:
39:20:82:87:fe:57:9c:d6:30:0d:91:bc:e8:61:c8:
9d:ae:ed:36:92:9e:9f:19:70:c9:5e:14:14:9f:e7:
3f:3e:a3:83:76:23:43:ca:26:6d:7f:db:5c:8c:b4:
14:45:43:d1:ac:58:df:51:1c:bd:4f:a8:b2:59:4d:
19:c3:15:e3:3a:94:94:fe:32:ab:cc:5a:50:30:21:
40:1c:f6:c4:16:ff:c9:3e:85:fc:2d:3c:79:ad:57:
91:da:29:63:f5:40:93:2a:94:2d:1d:82:9d:08:3a:
5f:a8:8d:2f:a8:78:79:48:41:d5:93:0b:ad:24:83:
33:7a:6b:7f:a4:d6:09:17:34:af:0c:14:60:64:e1:
a1:5a:71:f0:c3:e7:f0:76:67:c1:e0:ce:33:ab:a2:
e9:2a:76:a5:17:45:da:8e:c9:e0:58:05:37:4a:8e:
04:3f:71:7a:ab:d1:26:d2:8a:bc:4c:0f:28:6f:81:
a4:25:bc:7a:7a:17:79:32:40:fd:2e:7d:25:75:a0:
a5:5f:97:02:02:ed:87:fd:1b:f7:b6:73:8c:b8:a9:
b8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7F:18:5D:63:1F:B8:11:7E:89:D4:D7:AA:59:58:FF:CF:DE:EF:9D
X509v3 Authority Key Identifier:
keyid:1D:BD:89:81:D7:0D:1C:4E:1C:4F:05:38:BD:04:F7:01:1F:AD:C3:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:4e:18:47:11:4f:08:e9:ac:79:c4:4e:3c:ce:c0:94:4c:08:
c0:ac:06:e7:1a:20:96:f1:04:af:c4:12:08:01:18:47:27:5c:
f7:50:db:94:c1:33:43:81:18:40:f1:e2:db:ad:b5:13:42:67:
10:1a:51:83:91:c0:6d:6b:71:4e:ee:a0:55:42:93:eb:d4:35:
17:c6:35:84:1a:1c:c5:cc:f6:3a:ca:5e:bf:b9:09:73:15:d0:
05:57:ed:eb:ca:f1:00:ee:c8:d4:17:9a:7d:19:cb:53:47:53:
ea:ec:93:62:b6:06:3e:10:a3:0b:3c:af:bc:1c:62:90:8a:49:
bf:52:d8:39:df:23:63:9d:10:55:d5:19:cf:f0:11:dd:95:0d:
86:fb:e2:db:c6:ce:be:52:ba:1c:6f:c0:50:36:f8:fa:ec:8b:
10:b2:4f:ad:90:e4:3c:73:2b:be:09:c8:f6:79:de:28:b5:69:
2c:c7:fd:6f:31:d4:e9:0e:d5:c5:02:df:87:d5:4c:67:28:5e:
67:c9:1a:32:83:51:c0:87:14:5d:c6:f0:7c:af:43:3a:d3:c4:
f8:9d:36:59:b4:55:da:0e:1b:71:ec:90:94:00:0c:71:17:c3:
de:4d:e5:c6:bd:90:ec:86:8c:54:ee:44:ec:bc:6d:06:ac:69:
78:a7:2d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:35:48 2024 by rpki-client on console-fra.rpki-client.org