![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: ysIm0OpYH92ZAsGVXma+DkkbFVNUXeMvJ82rz8gQ990=
Subject key identifier: 25:97:BB:E3:56:D4:F3:47:05:91:1B:C8:B0:CD:11:E8:E0:CA:9F:CD
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 01906DF441D91338E8EE4625D8100F7636A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0477
Signing time: Mon 01 Jul 2024 11:00:42 +0000
Manifest this update: Mon 01 Jul 2024 11:00:42 +0000
Manifest next update: Tue 02 Jul 2024 11:00:42 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: BK0yjkXSQb8VwCVhogbh+NEKyGVJt4N6D0QaG4sIAzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:f4:41:d9:13:38:e8:ee:46:25:d8:10:0f:76:36:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Jul 1 11:00:42 2024 GMT
Not After : Jul 2 11:00:42 2024 GMT
Subject: CN=2597bbe356d4f34705911bc8b0cd11e8e0ca9fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:81:48:af:7c:00:da:40:3b:6c:92:47:e5:a6:
a3:c3:3c:28:4c:35:33:9d:d0:1b:d9:46:c8:4c:55:
7a:39:8f:dc:0e:10:e9:bb:f5:ab:8f:f4:38:6b:f1:
49:df:39:c0:24:91:d0:2e:a9:c8:c5:82:12:8c:88:
a1:b0:79:9f:a5:1d:f8:21:f6:bc:c6:2a:9d:32:d0:
e4:37:fb:d4:42:9d:23:77:d9:f8:85:5f:dc:b1:9b:
2f:d4:37:40:50:37:3d:5d:83:9d:d7:cd:6b:ff:1f:
ae:eb:ed:fa:e3:9b:a9:4b:64:c7:b0:42:42:e9:48:
eb:e0:0a:27:98:ad:d8:47:ab:a6:b4:aa:21:c9:be:
97:75:8d:e6:eb:77:a7:28:e2:f8:b5:2f:9b:29:13:
8d:92:28:88:1f:21:7a:ea:9f:e0:b9:98:6c:8a:9c:
8e:86:72:6e:0c:af:04:e5:a3:18:ac:f3:63:14:33:
4c:dc:59:6e:48:bc:a7:b5:ce:ab:c8:2c:6a:92:35:
e6:4b:3e:dd:01:1a:5d:96:df:7d:6d:f8:ad:a6:e3:
0a:02:58:d7:63:42:e9:11:db:6d:5e:e6:b7:eb:c1:
f6:f7:8d:18:54:c5:da:67:01:ec:62:e6:07:0c:49:
b7:6e:7e:13:64:1a:74:e7:cd:1b:3a:6b:05:47:21:
95:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:97:BB:E3:56:D4:F3:47:05:91:1B:C8:B0:CD:11:E8:E0:CA:9F:CD
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:4e:06:6e:dc:5d:17:bc:fc:0f:21:28:c9:82:fc:fd:10:eb:
41:b5:af:c5:9e:c9:5c:bf:d6:bb:f3:2e:0e:36:35:7c:05:95:
79:2e:52:99:85:13:c1:a6:ab:49:51:79:7d:eb:be:99:5e:d5:
fb:8d:fd:d9:b8:b3:cd:8e:d5:96:2d:3b:6a:b7:67:77:c8:19:
d5:41:e5:03:6a:3b:d6:19:fe:17:74:49:ae:83:b6:8f:f4:c8:
6f:62:3e:cd:b0:b0:a6:84:1b:c5:ea:ef:6d:a1:d3:19:5b:a1:
79:89:07:52:19:ea:bb:86:94:be:4d:a9:16:ad:4b:be:b2:a4:
71:a2:6e:bb:f2:14:c3:b9:7b:31:09:77:c1:b9:53:a8:cf:00:
ea:c1:28:74:3c:03:f4:56:2e:97:a8:66:02:29:02:ca:1d:f0:
a6:e7:15:48:5a:f3:8b:51:3a:10:fb:92:32:c3:9b:ff:41:20:
75:cf:71:ce:e6:d8:bb:df:59:d1:65:31:04:70:da:70:b8:cd:
f6:f8:bd:2e:a0:2a:53:3c:26:76:03:23:9e:53:23:b5:b7:e2:
8f:31:3a:48:71:de:91:9c:c7:98:56:fd:03:58:a2:70:07:65:
6e:dc:f8:da:53:b8:f0:e5:88:ab:16:a7:cf:ce:74:ba:f1:b7:
cd:9e:1a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 15:51:20 2024 by rpki-client on console-fra.rpki-client.org