![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier: ITavYZ0YCJAeDZYucXd7cDComiB069fJCNMUup+lgr8=
Subject key identifier: A2:3D:3D:6C:67:3F:DC:17:6D:C4:E7:B4:97:CE:17:E2:B7:40:EE:9D
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial: 01901E21A650335D9C5ADB42F8CA09AE1C4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number: 0190
Signing time: Sat 15 Jun 2024 23:00:40 +0000
Manifest this update: Sat 15 Jun 2024 23:00:40 +0000
Manifest next update: Sun 16 Jun 2024 23:00:40 +0000
Files and hashes: 1: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: aYAshEIeaoF99HROv+XEZ+j0O5O7vRnUlwElGimauOM=)
2: vjCb31anXB6oWaUQw6Q4B-k6_38.roa (hash: u/xWSzZGyLpQB89GlVzUSQGw3KklbeBXVXgVFlR0zEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 19:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1e:21:a6:50:33:5d:9c:5a:db:42:f8:ca:09:ae:1c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Validity
Not Before: Jun 15 23:00:40 2024 GMT
Not After : Jun 16 23:00:40 2024 GMT
Subject: CN=a23d3d6c673fdc176dc4e7b497ce17e2b740ee9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f4:a9:0b:bd:ac:7f:0b:01:9f:f1:0d:b7:18:
30:e1:be:d0:5e:26:db:50:3f:7c:e1:15:17:5b:82:
86:a2:84:f0:96:15:e9:34:c2:ac:cd:f2:26:65:ce:
ef:b5:6c:0e:ad:3c:4e:28:88:4c:fb:cb:17:ed:87:
a4:2f:74:06:cd:55:f3:c3:e9:ef:71:3a:c8:ed:46:
58:89:40:a9:a8:c3:d1:06:f2:20:8b:3a:eb:ce:4f:
c1:5a:89:3c:37:53:ec:af:e4:23:83:7e:11:75:05:
c1:69:e4:b7:e8:ed:19:0b:c6:37:5c:f8:5b:78:f0:
5b:18:91:57:ac:6d:fa:a7:3c:44:c7:fb:cf:8c:ac:
f5:fb:a1:e1:12:c1:32:a4:97:9a:79:35:9f:08:7e:
21:ae:e4:c3:94:dd:55:cd:19:e6:ff:87:f3:11:0e:
8a:e9:61:9d:06:23:10:7f:a3:81:ed:e9:db:d2:b8:
d6:f0:01:43:a6:bb:02:62:7c:8f:d0:3c:c9:46:87:
2c:ff:50:b1:7e:5c:7d:a7:11:07:2e:97:70:20:7e:
92:50:8a:17:67:e5:83:36:58:9d:c4:48:c9:15:68:
b2:9e:04:8e:27:fa:6d:90:cb:6c:94:d8:fe:05:5d:
03:43:01:14:ef:8a:ff:a7:e0:78:02:a5:34:11:d7:
bb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3D:3D:6C:67:3F:DC:17:6D:C4:E7:B4:97:CE:17:E2:B7:40:EE:9D
X509v3 Authority Key Identifier:
keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:7f:d3:26:f1:37:e6:be:7f:00:5b:98:a8:d8:0b:65:11:1c:
86:bb:0f:46:6c:a4:0d:31:f4:a0:31:f8:19:35:77:95:7b:66:
0a:ed:c0:31:2d:0b:fb:f2:e8:5c:ee:a0:5c:d9:91:dd:9e:31:
34:58:93:6a:62:8e:81:5f:0b:68:88:e0:b4:9a:48:25:c6:ae:
1b:d7:f7:41:e9:9d:73:33:10:81:93:31:3d:73:ec:34:48:3a:
4c:dd:1f:4a:05:8d:21:7c:32:45:5d:b7:ef:13:3a:d8:71:f7:
55:05:52:4d:ab:fd:a9:99:ca:a3:48:d7:bc:ef:d3:80:f0:92:
b7:9e:9e:ed:23:e6:bc:b7:76:cc:47:25:39:b6:6e:6f:c5:b7:
f0:be:93:09:09:16:e3:94:76:b0:cd:63:ec:0d:2d:03:ef:6e:
4e:32:2d:d9:4c:b0:b8:eb:fe:55:f6:b9:30:85:55:ab:f7:8d:
4e:88:3c:e8:c4:09:a5:d8:e0:5e:d2:bf:15:07:d8:d8:c4:bb:
ea:51:34:6f:93:45:de:22:d0:97:8d:08:e5:c4:f7:14:b6:ee:
fb:a8:28:ab:eb:51:c3:11:27:b7:bc:97:5d:69:8f:a0:e1:01:
71:1b:7c:a7:e3:51:85:9b:43:ec:11:7f:13:6b:7e:22:cb:cb:
9a:d5:06:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAeIaZQM12cWttC+MoJrhxLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmZDA4NzVjZDAwNTFkMGMwOTI1YWNhMDQxMDM0ZTc4NDBh
Njc3MGIwHhcNMjQwNjE1MjMwMDQwWhcNMjQwNjE2MjMwMDQwWjAzMTEwLwYDVQQD
EyhhMjNkM2Q2YzY3M2ZkYzE3NmRjNGU3YjQ5N2NlMTdlMmI3NDBlZTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvSpC72sfwsBn/ENtxgw4b7QXibb
UD984RUXW4KGooTwlhXpNMKszfImZc7vtWwOrTxOKIhM+8sX7YekL3QGzVXzw+nv
cTrI7UZYiUCpqMPRBvIgizrrzk/BWok8N1Psr+Qjg34RdQXBaeS36O0ZC8Y3XPhb
ePBbGJFXrG36pzxEx/vPjKz1+6HhEsEypJeaeTWfCH4hruTDlN1VzRnm/4fzEQ6K
6WGdBiMQf6OB7enb0rjW8AFDprsCYnyP0DzJRocs/1Cxflx9pxEHLpdwIH6SUIoX
Z+WDNlidxEjJFWiyngSOJ/ptkMtslNj+BV0DQwEU74r/p+B4AqU0Ede7vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKI9PWxnP9wXbcTntJfOF+K3QO6dMB8GA1UdIwQY
MBaAFB/Qh1zQBR0MCSWsoEEDTnhApncLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMt
ZTA4MDJmNDc0NDQ0LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMtZTA4MDJmNDc0NDQ0
LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbH/TJvE3
5r5/AFuYqNgLZREchrsPRmykDTH0oDH4GTV3lXtmCu3AMS0L+/LoXO6gXNmR3Z4x
NFiTamKOgV8LaIjgtJpIJcauG9f3QemdczMQgZMxPXPsNEg6TN0fSgWNIXwyRV23
7xM62HH3VQVSTav9qZnKo0jXvO/TgPCSt56e7SPmvLd2zEclObZub8W38L6TCQkW
45R2sM1j7A0tA+9uTjIt2UywuOv+Vfa5MIVVq/eNTog86MQJpdjgXtK/FQfY2MS7
6lE0b5NF3iLQl40I5cT3FLbu+6goq+tRwxEnt7yXXWmPoOEBcRt8p+NRhZtD7BF/
E2t+IsvLmtUGCA==
-----END CERTIFICATE-----
Generated at Sun Jun 16 01:05:35 2024 by rpki-client on console-ams.rpki-client.org