![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json)
Hash identifier: E218s/kpzqBzwmwWIjaRvIPaT+nhd/NI+swscq1uSi8=
Subject key identifier: 10:4F:8A:3F:CA:56:9C:51:21:B7:30:06:C2:FE:7B:73:89:29:35:47
Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47
Certificate serial: 01901C6A9121EA7CD69B84F94B35D69CA718
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
Manifest number: 0EC7
Signing time: Sat 15 Jun 2024 15:01:04 +0000
Manifest this update: Sat 15 Jun 2024 15:01:04 +0000
Manifest next update: Sun 16 Jun 2024 15:01:04 +0000
Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: C5JDI10uBshKqm+ru/ugqe8BFHCqbtPGZy84saSVYtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:6a:91:21:ea:7c:d6:9b:84:f9:4b:35:d6:9c:a7:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47
Validity
Not Before: Jun 15 15:01:04 2024 GMT
Not After : Jun 16 15:01:04 2024 GMT
Subject: CN=104f8a3fca569c5121b73006c2fe7b7389293547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:20:ea:2a:b2:2e:9c:97:b4:08:37:0f:69:a1:
72:f7:16:b1:e0:fd:ec:3a:c7:93:13:43:6c:63:a7:
da:84:da:c7:aa:3a:02:56:cf:2e:2b:2e:6f:7e:e1:
21:2c:ce:cd:7a:d5:31:d3:1b:43:89:ee:43:d0:dc:
5e:ba:b0:af:b5:b9:21:62:88:77:af:39:bb:d0:df:
59:67:65:65:c3:fc:26:b1:c3:e8:e1:cf:05:4f:c1:
0e:8f:e6:f6:29:77:06:2a:d2:16:f4:42:c0:72:20:
71:67:8a:4d:e6:32:d5:b1:bb:3e:d8:05:f8:3c:a0:
be:45:44:0f:73:6c:c0:40:71:69:fe:0d:d1:22:ca:
9e:d2:ab:d3:d9:03:d7:43:8e:b8:3d:f1:dc:08:c2:
10:24:4d:68:9f:e2:02:97:ed:5d:de:3a:79:64:51:
b2:87:31:ec:cd:59:39:c3:4f:fe:46:89:aa:50:2f:
33:04:96:f7:8d:44:36:4f:34:02:35:79:9a:f2:8b:
f7:11:70:aa:96:e3:34:77:1c:48:68:97:af:a3:32:
cf:ea:ac:ab:4a:7c:48:ed:45:1b:30:15:c9:ac:14:
52:20:34:72:30:b4:14:ae:b7:d4:d7:4b:59:c6:2c:
71:ef:34:f4:62:92:7c:c3:3d:7e:8b:7d:ad:99:b2:
77:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:4F:8A:3F:CA:56:9C:51:21:B7:30:06:C2:FE:7B:73:89:29:35:47
X509v3 Authority Key Identifier:
keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:eb:fe:f5:5c:68:18:ce:77:9a:e8:72:cb:89:b5:5e:af:fe:
05:e1:44:a8:f9:ec:08:35:18:ba:e8:12:d0:77:4b:bb:cf:07:
8d:9b:6f:bf:27:2b:b3:c0:4b:a3:0b:c5:fa:88:f3:06:5d:54:
13:8a:eb:5d:6d:69:04:43:ca:a7:86:ee:9e:e0:d2:a3:c8:c6:
91:72:c8:45:1b:77:ad:06:01:a8:26:1b:25:65:26:ec:e2:8f:
e9:1d:36:f7:9f:79:72:8b:5d:50:6e:c9:6c:24:a0:d5:00:d2:
c4:8c:26:f0:a6:69:ba:7f:7e:c1:d7:4b:ac:7e:00:9e:e2:d2:
6b:a4:31:66:19:ef:08:3c:bb:7e:6d:6e:39:e6:70:ce:e0:c7:
58:5f:19:b9:9e:f7:33:46:7a:41:35:b2:23:a4:b0:14:61:68:
9f:99:d6:6f:f7:5c:bd:33:0c:30:54:db:9b:c1:ab:ba:36:89:
16:34:fb:ee:e0:7d:47:59:d5:d2:b8:0d:13:49:1b:00:5c:df:
06:bb:ef:bb:31:c6:08:f3:63:45:62:0d:47:6f:1b:6b:2b:a4:
b3:37:96:55:0b:24:e9:dc:53:22:95:d2:a8:fe:7d:61:67:a7:
2f:5c:f9:56:79:a6:0b:e7:28:fc:9a:2c:d0:89:dc:45:34:9f:
88:c7:c1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 22:09:54 2024 by rpki-client on console-ams.rpki-client.org