![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File: iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier: mMfXVSrmDUVoaZhJiuVv1OEkrWP+SV6B76A5kTLCDkg=
Subject key identifier: 27:E2:AD:52:07:72:1D:3F:1A:FC:84:34:F1:D6:1A:48:E4:C3:D4:FF
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer: /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial: 0190448CBE4668EFEA7D760442A377A56F77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number: 02E4
Signing time: Sun 23 Jun 2024 10:03:12 +0000
Manifest this update: Sun 23 Jun 2024 10:03:12 +0000
Manifest next update: Mon 24 Jun 2024 10:03:12 +0000
Files and hashes: 1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: zBUvxVIgpRfsH2Az0hs2lof2UKo2W6kDVRou0UvFLGA=)
2: kXsCl5aANWOJMxq9RWrtG4BUYPo.roa (hash: UAUydXeJe0qPbF8sCXywITMWigUQZjXMBeCDQgMxtkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:8c:be:46:68:ef:ea:7d:76:04:42:a3:77:a5:6f:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
Validity
Not Before: Jun 23 10:03:12 2024 GMT
Not After : Jun 24 10:03:12 2024 GMT
Subject: CN=27e2ad5207721d3f1afc8434f1d61a48e4c3d4ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a3:7c:29:87:24:33:67:78:cf:f4:8b:c2:c7:
f8:67:84:ba:df:49:73:b2:3b:01:04:47:64:fe:8b:
18:4f:50:5b:92:60:ba:fb:b9:8c:e2:41:c1:53:b7:
22:c5:ec:d2:c5:bb:88:80:9e:2c:12:7f:2a:46:7f:
94:ab:f3:f5:88:39:43:30:df:e3:b3:41:3b:f4:01:
18:93:bd:36:ea:84:59:e1:e1:6c:3d:58:cd:08:df:
9a:eb:c8:2f:93:ca:be:69:b0:99:02:12:a7:04:dc:
fa:18:c6:e7:8f:20:a2:2f:09:d4:3d:d0:18:51:a6:
08:60:38:c9:b5:56:eb:d7:cf:fd:70:b9:4b:c2:f9:
0d:97:29:d8:a5:de:fc:76:78:ca:5c:28:3e:92:b1:
8b:1f:b1:31:65:af:2e:b6:8b:90:e7:1e:03:ee:1c:
11:13:dc:64:b9:79:ad:44:38:b8:3e:95:cc:9b:9e:
19:6e:06:97:ce:65:e8:b1:84:b9:8e:6d:52:e6:89:
b8:59:2b:ac:14:e9:5c:25:9d:13:46:f5:23:3c:09:
d4:36:b9:c0:49:cd:33:3f:74:4a:4e:2f:5c:e3:e3:
6c:ac:ec:36:40:f9:5f:81:bf:a1:4a:fc:bd:05:59:
18:32:f4:13:2d:a2:3e:16:d1:bb:94:8d:b1:1a:5f:
ed:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E2:AD:52:07:72:1D:3F:1A:FC:84:34:F1:D6:1A:48:E4:C3:D4:FF
X509v3 Authority Key Identifier:
keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:c6:63:b6:8c:0b:1a:0f:45:6c:9d:e6:6d:35:14:a5:a6:92:
db:7b:2f:f2:96:16:97:1e:df:15:db:f7:ef:2a:7a:09:1d:f9:
21:aa:66:39:a9:76:62:aa:30:e8:fd:34:8e:1f:66:af:05:79:
35:fd:5c:0a:e7:88:34:ff:0d:91:3b:be:8a:ee:4a:07:4c:4a:
76:26:9d:e7:47:d0:8c:02:99:c6:8f:23:fd:f9:24:4e:81:0d:
d4:c2:df:0c:ce:7f:1c:9b:e2:0a:6a:a7:11:92:a7:6c:19:18:
f2:7b:8a:21:7e:00:1d:66:f2:42:aa:a9:9c:6c:2d:71:e2:6f:
40:1a:dc:d1:69:75:bb:bb:43:47:a9:47:3f:7a:7c:d7:c2:9d:
94:95:64:a7:30:1b:1d:1b:09:fc:51:5d:ce:2f:65:52:b9:55:
d5:3b:38:17:bd:8d:5e:9d:e0:ba:71:7a:5a:1b:ac:d0:13:17:
d8:8b:e6:a8:c7:36:44:bc:84:fc:b1:79:42:2f:fd:6f:d0:83:
1c:27:68:a1:94:e2:0a:8c:46:61:62:97:37:8d:53:6b:3f:80:
1b:ce:58:33:a4:1b:eb:49:b9:24:e7:ed:ca:76:5e:d2:ab:0d:
1f:3d:0c:8b:a4:01:43:1c:fb:bf:64:37:9b:24:cb:76:51:28:
8a:3d:c0:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBEjL5GaO/qfXYEQqN3pW93MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDNkY2E3NjMxOTkwMzE1MmYyNDZlMDVjMDY5ZmQxYTFk
YjVjNTkwHhcNMjQwNjIzMTAwMzEyWhcNMjQwNjI0MTAwMzEyWjAzMTEwLwYDVQQD
EygyN2UyYWQ1MjA3NzIxZDNmMWFmYzg0MzRmMWQ2MWE0OGU0YzNkNGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqN8KYckM2d4z/SLwsf4Z4S630lz
sjsBBEdk/osYT1BbkmC6+7mM4kHBU7cixezSxbuIgJ4sEn8qRn+Uq/P1iDlDMN/j
s0E79AEYk7026oRZ4eFsPVjNCN+a68gvk8q+abCZAhKnBNz6GMbnjyCiLwnUPdAY
UaYIYDjJtVbr18/9cLlLwvkNlynYpd78dnjKXCg+krGLH7ExZa8utouQ5x4D7hwR
E9xkuXmtRDi4PpXMm54ZbgaXzmXosYS5jm1S5om4WSusFOlcJZ0TRvUjPAnUNrnA
Sc0zP3RKTi9c4+NsrOw2QPlfgb+hSvy9BVkYMvQTLaI+FtG7lI2xGl/t9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfirVIHch0/GvyENPHWGkjkw9T/MB8GA1UdIwQY
MBaAFIsD3KdjGZAxUvJG4FwGn9Gh21xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQt
MDI5ZTYzZjA4ODlhLzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQtMDI5ZTYzZjA4ODlh
LzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtsZjtowL
Gg9FbJ3mbTUUpaaS23sv8pYWlx7fFdv37yp6CR35IapmOal2Yqow6P00jh9mrwV5
Nf1cCueINP8NkTu+iu5KB0xKdiad50fQjAKZxo8j/fkkToEN1MLfDM5/HJviCmqn
EZKnbBkY8nuKIX4AHWbyQqqpnGwtceJvQBrc0Wl1u7tDR6lHP3p818KdlJVkpzAb
HRsJ/FFdzi9lUrlV1Ts4F72NXp3gunF6Whus0BMX2IvmqMc2RLyE/LF5Qi/9b9CD
HCdooZTiCoxGYWKXN41Taz+AG85YM6Qb60m5JOftynZe0qsNHz0Mi6QBQxz7v2Q3
myTLdlEoij3ACw==
-----END CERTIFICATE-----
Generated at Sun Jun 23 15:01:59 2024 by rpki-client on console-ams.rpki-client.org