![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: 0TSjpRgR9CtriBLqG0fGkLbITLU1KGgUpyj6ApIuphM=
Subject key identifier: AC:1C:41:B5:BA:98:B0:8E:57:9B:1D:1B:58:5E:22:42:3D:9E:31:90
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 01904D1FB68B2751957B94D8E507D93CC82A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 11DE
Signing time: Tue 25 Jun 2024 02:00:42 +0000
Manifest this update: Tue 25 Jun 2024 02:00:42 +0000
Manifest next update: Wed 26 Jun 2024 02:00:42 +0000
Files and hashes: 1: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: R7YzGeSXSYlBEf3Sq0jNr+V/xYBHt9dIjDrL4tIEQYo=)
2: yAKpuy-7QgVIsDSB_-whiK27uGI.roa (hash: SPbKaCWZxbEZW8S9eKkdQJHNPJtPSLqPQFzncgSBlvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 25 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:4d:1f:b6:8b:27:51:95:7b:94:d8:e5:07:d9:3c:c8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Jun 25 02:00:42 2024 GMT
Not After : Jun 26 02:00:42 2024 GMT
Subject: CN=ac1c41b5ba98b08e579b1d1b585e22423d9e3190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ea:1d:c5:f0:ab:5a:89:c4:58:ba:98:a5:36:
32:ea:61:71:84:be:1c:29:f5:73:dd:8c:fd:d3:a9:
68:84:ad:d7:dd:7e:3b:cf:96:b8:ac:e3:6f:f5:88:
22:eb:4f:3c:17:24:4f:76:34:cd:cf:5a:60:40:ff:
91:f1:dc:a2:d2:33:16:f7:f5:a8:6d:c5:7c:47:64:
b9:56:21:ce:fb:a3:ce:1c:f9:df:f2:ec:a3:be:f2:
4b:c3:b5:ec:09:2f:9d:08:77:76:e3:6f:8f:c6:3f:
15:cf:48:e9:42:4c:68:c1:05:45:01:1d:0e:73:71:
c2:3e:db:04:cb:87:20:c3:e8:91:c7:e8:63:f1:98:
5c:cf:0e:80:8b:7a:81:fe:82:b3:92:9a:40:44:9c:
57:b9:47:7a:53:f1:70:e7:19:70:9d:39:b7:6f:cc:
52:21:d8:72:24:05:ce:3b:92:ad:07:01:e3:19:fd:
8f:cb:d6:d0:96:4b:d8:72:8f:3c:1f:71:69:bb:04:
fe:95:2c:01:67:7a:0c:4c:7e:b2:12:8b:d6:53:7e:
bf:af:10:27:7f:45:26:f9:58:f5:45:37:22:95:a3:
29:26:cc:3f:c5:f5:c2:1e:98:1f:1c:12:6d:fc:0e:
f6:a4:c1:9e:6e:3e:1f:75:3e:15:dd:eb:fb:59:2c:
53:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1C:41:B5:BA:98:B0:8E:57:9B:1D:1B:58:5E:22:42:3D:9E:31:90
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:91:f9:51:c6:86:47:9c:b8:e9:d9:f6:1f:5c:e8:50:cc:fe:
bb:0f:86:5b:6e:75:5f:ca:e7:fe:9f:f3:9e:24:6e:51:5a:0f:
aa:58:3b:ea:4b:6f:47:68:b4:f6:0a:56:c4:2d:54:1f:28:d6:
57:1c:8f:02:80:16:c8:a2:f7:41:60:28:1a:96:a6:99:ea:fc:
12:01:80:dd:cb:63:b5:0d:8e:28:03:99:29:ff:1b:31:ec:d8:
ff:48:f0:7a:f1:3f:eb:d2:2c:b7:22:7f:04:d4:75:48:ce:44:
04:89:a3:cc:2c:99:a5:ba:bf:ae:9f:b3:ec:49:fa:33:c9:7e:
a2:95:ab:78:d6:33:67:d2:82:9f:52:a0:ad:e0:e2:4b:59:b0:
a9:fd:45:a5:8c:85:31:f4:fa:64:90:a8:0b:20:fa:67:f0:d0:
92:6a:6b:32:7f:f9:9b:d8:b6:3f:5f:c9:02:02:92:09:97:c3:
00:06:6a:1a:12:a7:01:34:62:31:cf:cf:93:f0:fc:2e:83:b1:
91:ff:de:33:af:98:f6:fe:8f:e7:12:68:f0:17:c1:3e:4c:19:
36:48:92:07:5a:13:43:d7:ec:88:1f:d5:a4:90:1a:b5:99:e8:
03:51:f3:ff:b4:99:04:41:04:46:e9:86:3c:6b:c2:cb:3c:ea:
42:93:7e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 03:24:51 2024 by rpki-client on console-fra.rpki-client.org