![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json)
Hash identifier: V+nfHlyhxFmM+23OcpHDqM9cyh8BcMC5Re5Gxy4nTd8=
Subject key identifier: 12:95:90:79:CA:91:33:A5:D4:0C:03:94:E2:49:17:B1:AD:D4:2B:51
Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189
Certificate serial: 0190527D62B27F58E03494338E50E9578CF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
Manifest number: 0351
Signing time: Wed 26 Jun 2024 03:01:07 +0000
Manifest this update: Wed 26 Jun 2024 03:01:07 +0000
Manifest next update: Thu 27 Jun 2024 03:01:07 +0000
Files and hashes: 1: bURJCPXUjmqC73TKcl_5sTFRR1I.roa (hash: APDrEcI8XpyWD31MMmfSnI/M37FEy5A266AiNRGJX4w=)
2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: 8PbEUSpcLBk/OO9y88yECmkN/rpug204PcR+b6MJGhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:52:7d:62:b2:7f:58:e0:34:94:33:8e:50:e9:57:8c:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccad68f7e8abadf4472623343a32561507224189
Validity
Not Before: Jun 26 03:01:07 2024 GMT
Not After : Jun 27 03:01:07 2024 GMT
Subject: CN=12959079ca9133a5d40c0394e24917b1add42b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:41:70:8f:f7:0e:ca:98:cc:c9:69:d8:75:69:
3f:44:e0:7b:3a:f7:4c:a0:ff:43:1e:43:0c:97:9a:
14:84:df:ca:7b:8b:ec:4e:e9:35:87:66:1f:13:e0:
e4:fc:59:7e:52:d8:19:e2:75:f6:ac:6b:4a:67:bb:
97:6f:35:a4:c6:5e:5f:b3:86:0d:85:b5:65:ab:17:
4c:e7:48:62:e2:0f:55:4a:5a:80:fa:fc:2f:18:24:
1d:52:ab:1b:b4:57:21:04:24:2b:75:86:7e:78:3a:
03:6f:ce:94:c0:ab:b3:bf:c3:2b:89:54:da:1c:c0:
d6:3c:c5:56:19:9a:d3:ab:ac:04:b9:ae:8e:b3:ec:
0f:e6:be:f0:53:79:50:a3:5e:f2:65:6b:0a:67:91:
6d:d1:22:e6:1b:42:86:d1:c0:f8:88:a3:8d:8d:c9:
60:cf:3f:30:61:3b:d5:fc:bb:6c:be:ab:d5:9f:8e:
f8:c1:cc:eb:f8:6d:e5:e8:87:af:1b:0b:98:94:c0:
a0:bf:76:40:8d:07:0c:49:a2:51:15:f4:e9:a0:c6:
16:40:14:4e:65:38:b3:02:19:00:d0:65:ca:6b:ab:
ba:7e:72:f8:94:71:3b:b1:31:b7:26:a4:51:2f:ea:
f3:05:83:ec:3b:05:d7:77:52:6b:68:72:73:4d:10:
2a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:95:90:79:CA:91:33:A5:D4:0C:03:94:E2:49:17:B1:AD:D4:2B:51
X509v3 Authority Key Identifier:
keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:97:de:14:17:b8:a7:29:82:b5:59:5c:b2:15:f8:5a:b9:cd:
6d:76:8c:67:45:e0:4a:c2:3b:f0:97:a0:b2:45:54:aa:cc:f8:
b9:91:b4:a9:ac:4f:2b:03:f3:9a:48:51:90:a0:5e:6e:47:64:
65:cf:8c:ed:81:c2:8d:8f:92:5b:4a:91:49:9e:4d:ac:05:5c:
a1:13:cc:83:0f:6a:cd:5b:fc:29:db:65:e7:5b:ae:26:c4:0b:
56:cb:36:b3:1d:c2:31:20:36:3e:96:ef:b5:68:3e:ff:ee:dc:
dc:35:a3:72:0d:03:fa:43:45:14:0d:e0:55:b3:7a:d1:e0:fc:
68:f3:30:f8:88:75:5c:46:a1:5f:f1:b1:89:5d:29:09:31:b1:
87:74:f3:01:9c:ed:6e:e5:ec:1a:3d:15:87:0b:35:cf:8c:03:
f0:91:19:e9:58:3a:1c:0c:dd:a8:52:de:08:3d:77:74:cf:e2:
3d:6e:64:48:4c:b2:a1:19:d5:00:62:3b:43:fa:f7:e4:a1:1f:
ec:61:c1:8c:c1:8f:a1:0a:85:f0:98:30:94:e6:e9:dc:7d:6c:
b0:a8:40:3b:02:f7:cc:d7:02:5c:a3:b9:ec:d7:ee:bc:08:03:
60:a7:63:f8:7e:da:c8:0a:3c:c2:0f:0d:cb:19:1b:e6:6e:bf:
56:13:e3:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBSfWKyf1jgNJQzjlDpV4zxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNjYWQ2OGY3ZThhYmFkZjQ0NzI2MjMzNDNhMzI1NjE1MDcy
MjQxODkwHhcNMjQwNjI2MDMwMTA3WhcNMjQwNjI3MDMwMTA3WjAzMTEwLwYDVQQD
EygxMjk1OTA3OWNhOTEzM2E1ZDQwYzAzOTRlMjQ5MTdiMWFkZDQyYjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUFwj/cOypjMyWnYdWk/ROB7OvdM
oP9DHkMMl5oUhN/Ke4vsTuk1h2YfE+Dk/Fl+UtgZ4nX2rGtKZ7uXbzWkxl5fs4YN
hbVlqxdM50hi4g9VSlqA+vwvGCQdUqsbtFchBCQrdYZ+eDoDb86UwKuzv8MriVTa
HMDWPMVWGZrTq6wEua6Os+wP5r7wU3lQo17yZWsKZ5Ft0SLmG0KG0cD4iKONjclg
zz8wYTvV/LtsvqvVn474wczr+G3l6IevGwuYlMCgv3ZAjQcMSaJRFfTpoMYWQBRO
ZTizAhkA0GXKa6u6fnL4lHE7sTG3JqRRL+rzBYPsOwXXd1JraHJzTRAqTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBKVkHnKkTOl1AwDlOJJF7Gt1CtRMB8GA1UdIwQY
MBaAFMytaPfoq630RyYjNDoyVhUHIkGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMt
NjM1OWY5MmUxZDJmLzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMtNjM1OWY5MmUxZDJm
LzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM5feFBe4
pymCtVlcshX4WrnNbXaMZ0XgSsI78JegskVUqsz4uZG0qaxPKwPzmkhRkKBebkdk
Zc+M7YHCjY+SW0qRSZ5NrAVcoRPMgw9qzVv8Kdtl51uuJsQLVss2sx3CMSA2Ppbv
tWg+/+7c3DWjcg0D+kNFFA3gVbN60eD8aPMw+Ih1XEahX/GxiV0pCTGxh3TzAZzt
buXsGj0Vhws1z4wD8JEZ6Vg6HAzdqFLeCD13dM/iPW5kSEyyoRnVAGI7Q/r35KEf
7GHBjMGPoQqF8JgwlObp3H1ssKhAOwL3zNcCXKO57NfuvAgDYKdj+H7ayAo8wg8N
yxkb5m6/VhPjxw==
-----END CERTIFICATE-----
Generated at Wed Jun 26 08:33:39 2024 by rpki-client on console-ams.rpki-client.org