![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File: lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier: hz1XvSHTr2/VpSCe8DXMXmzhBuIFCJ9fg/nE+IH5Rvs=
Subject key identifier: F4:1D:AB:55:50:16:9A:B2:D6:B0:4C:4C:D2:07:FE:3E:D4:07:8F:61
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer: /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial: 0190448A8CB7E98ABC4AB2F06FB17828C9D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number: 0D9A
Signing time: Sun 23 Jun 2024 10:00:48 +0000
Manifest this update: Sun 23 Jun 2024 10:00:48 +0000
Manifest next update: Mon 24 Jun 2024 10:00:48 +0000
Files and hashes: 1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: 6tSje/r4Er/y47FPTO1L1r/QxlU4D137ye2ip6/uX64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 10:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:8a:8c:b7:e9:8a:bc:4a:b2:f0:6f:b1:78:28:c9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Validity
Not Before: Jun 23 10:00:48 2024 GMT
Not After : Jun 24 10:00:48 2024 GMT
Subject: CN=f41dab5550169ab2d6b04c4cd207fe3ed4078f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e4:ef:21:cd:10:a3:54:65:68:2c:96:b7:ae:
8f:ae:bd:d4:23:16:c5:cd:7c:37:04:75:c2:a7:e5:
30:fb:51:3d:3d:23:b0:e2:f1:ee:3b:d3:36:1a:7d:
04:2f:e3:f4:30:36:48:15:35:69:6e:6f:38:33:67:
86:a3:ba:3b:dc:1e:f1:03:ce:9b:bc:7c:29:c9:cf:
8e:4f:60:7f:73:1e:6e:05:06:a4:7c:42:2f:cc:74:
c5:c7:3c:8b:b0:ca:ac:29:ff:89:35:06:7a:bd:87:
4d:8d:53:40:44:71:8b:a8:da:65:a7:d1:bd:32:9f:
b1:6d:67:15:01:4f:f0:ea:cd:9a:fe:e1:c6:28:48:
d3:43:f3:17:fb:2a:4a:ac:37:28:56:40:2a:e4:8f:
b2:21:3a:6c:90:40:43:19:7c:eb:66:f0:7d:a8:a2:
62:35:af:35:66:0c:2e:0e:19:df:03:d1:00:63:5a:
2f:a3:fc:d8:da:06:bb:0f:dc:59:a5:3c:a3:4e:14:
10:c6:fb:0e:03:e9:81:69:c1:9c:1f:9c:96:42:81:
19:34:6b:33:92:52:07:02:29:1e:1f:76:26:6f:c1:
87:24:2d:fd:12:a2:5a:ea:66:16:24:b2:c0:06:e5:
12:53:38:5a:5b:9d:3b:56:10:bb:ba:60:d9:96:08:
e8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1D:AB:55:50:16:9A:B2:D6:B0:4C:4C:D2:07:FE:3E:D4:07:8F:61
X509v3 Authority Key Identifier:
keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:0f:42:b6:8b:93:44:c2:ab:16:ed:ab:41:76:aa:fd:dd:b9:
24:0e:96:f7:e1:3b:98:d9:ce:84:81:a3:d5:28:fa:e2:3c:96:
57:58:00:07:83:9e:87:02:fb:da:50:ea:23:2c:9c:08:02:85:
aa:a5:50:ec:af:57:06:f3:9c:11:00:96:09:61:88:c3:f8:1d:
54:5d:a2:ba:21:01:9e:be:ef:c7:31:4f:8b:9e:ef:4e:cb:6b:
5b:8e:bc:3a:98:a1:70:fe:66:42:7f:e2:d7:ff:8c:4b:e2:7f:
a0:3b:5a:0b:0f:1f:02:78:88:bb:54:b4:b8:0e:a5:1f:d1:14:
30:d4:8b:f6:2f:ab:2f:70:58:1b:31:59:5b:dc:eb:4e:cc:66:
64:41:e1:48:e6:fb:99:e7:09:ed:64:9e:29:53:2e:4b:b0:3e:
63:02:7a:88:06:8a:1c:4a:f7:95:f2:5b:24:8e:80:ad:be:8b:
fd:fe:bb:e0:c8:2d:6f:17:88:6a:7d:d8:ce:98:61:da:26:0e:
3c:72:8f:60:e8:9e:73:be:db:4f:12:8c:37:3d:77:78:ec:56:
f9:ad:dc:1f:3e:d3:45:79:fa:a9:b9:c2:f4:9f:5d:84:49:e9:
25:7f:4e:a3:5d:84:ce:86:14:2f:eb:7c:d1:6e:81:46:6c:0a:
c3:ba:97:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBEioy36Yq8SrLwb7F4KMnZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2YzgyYzk0MzlhNDE0N2IyZWEyYjU5N2NmZmM1MTAwYmE4
ZDMyN2MwHhcNMjQwNjIzMTAwMDQ4WhcNMjQwNjI0MTAwMDQ4WjAzMTEwLwYDVQQD
EyhmNDFkYWI1NTUwMTY5YWIyZDZiMDRjNGNkMjA3ZmUzZWQ0MDc4ZjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAluTvIc0Qo1RlaCyWt66Prr3UIxbF
zXw3BHXCp+Uw+1E9PSOw4vHuO9M2Gn0EL+P0MDZIFTVpbm84M2eGo7o73B7xA86b
vHwpyc+OT2B/cx5uBQakfEIvzHTFxzyLsMqsKf+JNQZ6vYdNjVNARHGLqNplp9G9
Mp+xbWcVAU/w6s2a/uHGKEjTQ/MX+ypKrDcoVkAq5I+yITpskEBDGXzrZvB9qKJi
Na81ZgwuDhnfA9EAY1ovo/zY2ga7D9xZpTyjThQQxvsOA+mBacGcH5yWQoEZNGsz
klIHAikeH3Ymb8GHJC39EqJa6mYWJLLABuUSUzhaW507VhC7umDZlgjonwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQdq1VQFpqy1rBMTNIH/j7UB49hMB8GA1UdIwQY
MBaAFJbILJQ5pBR7LqK1l8/8UQC6jTJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYt
ZGNjNGM0NWJmMTYyLzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYtZGNjNGM0NWJmMTYy
LzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARA9CtouT
RMKrFu2rQXaq/d25JA6W9+E7mNnOhIGj1Sj64jyWV1gAB4OehwL72lDqIyycCAKF
qqVQ7K9XBvOcEQCWCWGIw/gdVF2iuiEBnr7vxzFPi57vTstrW468OpihcP5mQn/i
1/+MS+J/oDtaCw8fAniIu1S0uA6lH9EUMNSL9i+rL3BYGzFZW9zrTsxmZEHhSOb7
mecJ7WSeKVMuS7A+YwJ6iAaKHEr3lfJbJI6Arb6L/f674MgtbxeIan3Yzphh2iYO
PHKPYOiec77bTxKMNz13eOxW+a3cHz7TRXn6qbnC9J9dhEnpJX9Oo12EzoYUL+t8
0W6BRmwKw7qXzA==
-----END CERTIFICATE-----
Generated at Sun Jun 23 18:40:40 2024 by rpki-client on console-ams.rpki-client.org