![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
File: qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft (raw, json)
Hash identifier: oi9KBKqQaSF3ISHR52Pb21C+7rethZ20ShSqSuKj0lw=
Subject key identifier: B8:A0:08:7B:EB:BF:38:67:76:C8:23:3B:EE:5F:9C:19:71:85:F7:6F
Authority key identifier: AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
Certificate issuer: /CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Certificate serial: 01901E58F7FF5DA299B422E15F098CCCA047
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
Manifest number: 0A48
Signing time: Sun 16 Jun 2024 00:01:05 +0000
Manifest this update: Sun 16 Jun 2024 00:01:05 +0000
Manifest next update: Mon 17 Jun 2024 00:01:05 +0000
Files and hashes: 1: qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl (hash: 2ECD9quclnEadwJf2RtL1Nu9FTpxEIjxocspyLJ5TDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:58:f7:ff:5d:a2:99:b4:22:e1:5f:09:8c:cc:a0:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa2a707938ba62fe19e6474dac787df3f8cfdee4
Validity
Not Before: Jun 16 00:01:05 2024 GMT
Not After : Jun 17 00:01:05 2024 GMT
Subject: CN=b8a0087bebbf386776c8233bee5f9c197185f76f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ef:b6:d0:9b:04:07:c8:0b:3b:83:5d:72:d2:
a4:49:14:0d:dd:5a:16:c9:9c:87:99:e9:5c:dd:a2:
40:40:ea:46:1e:fb:02:94:de:36:50:64:ca:a1:2a:
eb:a2:77:21:7a:5e:8f:7d:07:29:bb:bd:ee:bd:31:
f0:69:f4:0c:15:be:e6:e5:d9:a9:ce:c5:8b:db:df:
4c:85:05:8f:fe:b3:f1:b9:f3:73:84:87:7c:b7:25:
47:60:93:97:3e:dc:2d:73:62:c5:f8:ca:68:67:aa:
53:af:22:21:e0:58:28:6a:82:44:da:3d:d2:e9:bc:
df:83:ea:69:43:6e:48:1d:d6:dc:35:c8:c3:38:a9:
2c:3b:97:9b:87:b6:0d:21:4d:b1:25:4a:c0:d9:a7:
7d:be:4f:e7:c3:8d:fc:36:26:f0:bc:15:f4:64:08:
b0:1c:f4:53:23:bc:26:63:a4:c0:2f:6a:ef:4d:ba:
52:0d:a3:5f:70:8e:07:4c:75:19:fc:26:73:26:79:
4c:03:5b:47:b6:b4:ee:6f:1e:03:c6:04:13:dc:cb:
11:ef:93:ea:63:94:6e:06:79:e2:88:02:1d:78:ff:
8b:25:b1:09:31:c0:0e:bb:d5:6f:fe:30:92:96:1c:
dc:32:dc:4f:aa:42:57:37:2a:0a:5b:81:24:e1:11:
32:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A0:08:7B:EB:BF:38:67:76:C8:23:3B:EE:5F:9C:19:71:85:F7:6F
X509v3 Authority Key Identifier:
keyid:AA:2A:70:79:38:BA:62:FE:19:E6:47:4D:AC:78:7D:F3:F8:CF:DE:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qipweTi6Yv4Z5kdNrHh98_jP3uQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9d42ef-74a5-4f82-8a83-d716f4068139/1/qipweTi6Yv4Z5kdNrHh98_jP3uQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:50:45:ed:e9:bf:f9:2b:cd:cb:c8:8f:3f:24:1f:1a:1b:fd:
84:3f:11:1d:00:59:74:3e:60:f0:5b:b5:3e:b9:0d:e2:6f:8e:
1b:41:f4:16:ac:31:e4:87:00:64:37:63:88:5c:f4:04:51:6e:
01:10:d8:ef:4a:0d:d7:10:21:77:d7:39:e3:03:df:a7:97:e9:
5c:78:fc:4e:be:88:c4:90:1b:eb:f6:aa:4e:90:de:2c:6b:f0:
7b:2d:c0:92:58:b5:87:ec:6e:7d:16:1d:f5:62:19:78:da:a7:
8e:a9:ed:9d:78:69:36:4b:a2:27:00:3c:96:e4:0a:8b:f7:c6:
34:c3:d7:64:cf:d7:3d:06:2b:5b:50:74:1d:20:3b:c6:ed:28:
02:48:a6:93:f2:92:50:64:9b:4e:d1:3e:79:45:d3:03:14:ac:
c1:70:ce:67:d0:23:75:db:03:99:d2:da:6b:79:de:69:88:ab:
b2:39:76:99:46:ee:ea:87:0a:d6:a0:e1:75:22:92:31:6d:ba:
82:0e:09:3f:17:5e:1a:34:5d:0a:07:d9:3e:b4:93:e9:13:d4:
db:39:5f:38:0e:31:7f:b2:d3:f3:24:9e:02:66:d1:05:b1:15:
f4:39:10:28:30:02:80:7c:89:46:29:de:e9:af:cf:2f:d4:14:
03:8e:03:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:48:39 2024 by rpki-client on console-ams.rpki-client.org