![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: 1BO6ZAmKUS+vZlUOa59AQ3XlrofnzKIlVOlk5THXvVk=
Subject key identifier: 02:3C:2D:1D:5F:FA:38:56:88:05:40:05:AD:6E:4E:EB:02:3F:B9:5A
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 01905022D7990BAB80F002D284D53E15137F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 02A6
Signing time: Tue 25 Jun 2024 16:02:58 +0000
Manifest this update: Tue 25 Jun 2024 16:02:58 +0000
Manifest next update: Wed 26 Jun 2024 16:02:58 +0000
Files and hashes: 1: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: BaTNO342joZYxdoVEaPfe9hHF/amNsrs+ChmUzU1NjE=)
2: sGWSf-xHUHrOgvNkITc8l0s2SBw.roa (hash: HnnC11N9+2hBi9exZUwNcRsG0nrKMg+6AT+jxX+p0kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 14:33:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:50:22:d7:99:0b:ab:80:f0:02:d2:84:d5:3e:15:13:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Jun 25 16:02:58 2024 GMT
Not After : Jun 26 16:02:58 2024 GMT
Subject: CN=023c2d1d5ffa385688054005ad6e4eeb023fb95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4b:63:d3:0c:95:9d:af:dc:ea:64:e8:83:96:
38:50:bb:3e:11:0f:d5:d4:e3:5c:c2:b9:c0:49:ae:
c8:dd:bf:87:69:fc:8e:f1:5a:87:62:67:a2:0b:85:
cd:d1:7f:16:8c:c7:e4:72:cf:b4:20:22:d1:ed:89:
7b:74:68:e7:e9:db:b1:26:d9:71:13:5c:ca:43:df:
00:9d:1f:d6:9e:46:ac:c2:45:28:02:75:44:89:69:
67:e4:96:28:b9:77:f5:b1:0f:91:0c:3c:48:9e:54:
e2:2c:d0:68:6c:02:94:3f:e9:d2:30:7e:0a:45:dc:
43:4f:95:19:e7:ca:35:6d:62:8f:0a:0a:86:c3:36:
36:aa:c6:8e:dc:79:82:e5:ae:6b:58:64:86:f0:2e:
a4:1d:d7:cf:e7:76:b9:75:3b:35:f3:0d:e5:2d:b2:
41:27:32:74:91:1f:61:bd:bb:94:32:03:8e:d5:bc:
02:3a:bc:2a:39:1b:32:84:c7:bf:1e:ec:39:1a:1b:
34:51:26:79:c7:50:eb:f6:8c:cf:48:89:03:c2:a2:
d5:93:d0:8f:d5:b8:04:fa:02:bb:d0:3d:ca:9a:db:
3d:2b:4f:bc:05:64:14:56:e7:95:21:ad:dd:00:22:
27:c1:fd:68:0b:04:8c:dd:72:b2:3b:59:37:da:e3:
d9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3C:2D:1D:5F:FA:38:56:88:05:40:05:AD:6E:4E:EB:02:3F:B9:5A
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d1:ad:1f:55:16:88:60:b3:53:f0:c5:0d:15:bf:8d:80:10:
24:9c:0c:74:cc:5f:8a:7c:73:2d:b9:c6:24:86:ed:71:bb:9a:
e2:22:60:51:8a:64:ad:ef:af:d2:f7:14:2e:bd:e0:09:94:cb:
cb:cd:0d:28:1c:ee:be:a0:0d:f7:48:3e:cb:eb:07:ea:dd:f6:
98:03:0b:f4:b3:87:3a:2e:98:91:11:b7:2c:b4:b4:93:a9:61:
cb:cf:13:b1:45:a8:25:65:46:7d:f7:d5:f5:9c:55:e1:0e:f0:
57:54:c5:9d:c4:4a:fa:e7:3a:31:db:80:11:70:fd:6a:28:26:
30:44:6d:4b:5c:b4:c7:c6:f6:b2:b1:fb:42:1b:b3:3a:bf:a5:
8e:3f:83:fe:40:8b:16:a9:b2:5f:9d:10:20:a8:a2:42:b4:13:
54:46:67:67:05:26:4e:c9:05:f7:4a:25:4c:05:bb:2b:3a:9d:
5e:47:aa:fa:28:fa:91:6b:33:f1:92:e3:26:a4:70:4e:d0:64:
fe:e1:ce:f2:e5:ad:1a:48:bf:5d:99:49:f9:09:45:62:e8:a7:
3c:54:60:c6:2d:63:a7:84:36:a1:dc:1f:57:78:79:f4:b9:b8:
d0:1c:19:c0:98:a8:64:19:43:70:b1:28:a7:0b:5e:e1:56:ff:
7f:51:6d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 23:50:26 2024 by rpki-client on console-fra.rpki-client.org