![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
File: jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft (raw, json)
Hash identifier: a8m1e8asPFskb13eK/6sFe9nQqgdTmuxJSLdu2x5cA0=
Subject key identifier: 7C:D8:BA:57:35:14:DD:78:8D:09:FC:DF:DB:ED:66:7A:CD:A3:58:17
Authority key identifier: 8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91
Certificate issuer: /CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
Certificate serial: 01901DEC999F638CA1667478C38CBA74FB51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
Manifest number: 03E0
Signing time: Sat 15 Jun 2024 22:02:43 +0000
Manifest this update: Sat 15 Jun 2024 22:02:43 +0000
Manifest next update: Sun 16 Jun 2024 22:02:43 +0000
Files and hashes: 1: jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl (hash: O8AgNoMFgR4VaWKxEKm/v7dwhMwN8+ByylWaH2eE8OQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 14:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:ec:99:9f:63:8c:a1:66:74:78:c3:8c:ba:74:fb:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
Validity
Not Before: Jun 15 22:02:43 2024 GMT
Not After : Jun 16 22:02:43 2024 GMT
Subject: CN=7cd8ba573514dd788d09fcdfdbed667acda35817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e0:2e:48:fd:cf:f2:07:29:d7:3e:f0:58:ad:
64:da:89:51:57:94:ec:eb:0d:62:e9:59:9a:72:62:
12:73:0b:df:e2:c6:78:8a:c8:7c:9c:84:62:49:ea:
06:e6:92:02:96:a3:68:b9:ad:8e:3b:84:76:5a:c8:
27:dc:f7:3d:15:6d:8a:5e:3c:76:6b:92:04:a1:8a:
d3:cc:74:27:ae:32:1b:d2:18:71:31:6e:55:13:72:
a6:f3:f3:7c:dc:59:40:e2:80:80:ab:85:40:1e:ef:
7a:e4:dc:71:9e:10:bf:19:d7:1b:3d:2e:a5:69:84:
66:a8:7f:b1:c3:2b:72:d5:63:17:04:8c:f9:75:c8:
ca:c7:b6:fe:55:07:fa:5e:1a:f4:94:eb:52:a9:6b:
31:53:6b:28:72:43:12:96:01:53:79:25:fe:84:41:
72:57:ae:bd:65:b8:3f:be:0b:32:00:fe:fa:d3:4a:
36:7b:7e:24:dd:13:12:9f:e7:26:26:10:09:b1:87:
f1:0b:98:f2:1e:75:39:9f:02:50:44:ec:d2:d6:24:
aa:16:fd:30:51:ec:45:f9:34:0a:da:4f:4c:67:16:
56:c3:3c:3a:f7:e4:15:ca:38:6e:1f:ea:4b:91:f3:
40:42:4c:ef:5c:40:79:df:d8:c5:7f:c7:90:de:65:
3d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D8:BA:57:35:14:DD:78:8D:09:FC:DF:DB:ED:66:7A:CD:A3:58:17
X509v3 Authority Key Identifier:
keyid:8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:a5:19:83:9e:62:71:eb:a1:b2:f9:12:ee:e8:c3:dd:86:c4:
6d:7a:43:f5:b7:b2:94:b4:36:db:bb:38:cc:0c:70:00:a5:14:
9f:56:e6:6c:2a:51:b6:8a:48:90:9a:f2:22:53:db:6c:c8:bf:
c2:cc:27:a2:e5:f1:a4:f9:fe:83:1c:c9:c6:1e:c1:12:98:b2:
47:20:2b:cc:a4:67:8b:1a:33:f6:c0:3c:71:2e:5e:d6:c5:13:
8b:4c:e4:23:1b:7f:9f:1b:4d:81:90:bc:cf:53:b7:85:55:60:
c8:b7:ef:34:b7:81:36:57:48:ad:99:db:8c:56:1b:06:b2:cf:
02:ac:a5:c5:d1:7f:f6:4e:be:da:e5:35:5d:f1:34:9d:3b:4e:
93:4a:55:5f:cb:92:f6:e7:0f:4d:d1:e8:f9:6a:7c:d3:c5:ec:
6c:23:26:a9:65:18:b0:e8:b1:04:8d:2e:09:33:22:b1:c9:f4:
ab:9c:05:6e:36:a8:86:1e:61:54:40:18:9e:9d:a9:a6:6a:92:
84:dd:ac:95:a0:42:75:13:9b:84:be:0f:66:d8:f3:17:3f:ca:
6f:4d:18:12:75:e6:e3:92:d7:e0:46:a0:9f:a7:80:fd:a0:77:
d8:93:5a:d0:a9:4a:1e:05:e0:da:e4:81:18:16:35:ff:db:da:
fa:f0:a0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:01:27 2024 by rpki-client on console-fra.rpki-client.org