![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
File: aL0515MSXGhN_ycviGIrrEMhgPA.mft (raw, json)
Hash identifier: eGFfMRivxsRbAFBN5dp5auy9asyjMHU0xy1ixIEYs0s=
Subject key identifier: 52:53:3E:8C:C7:1D:2D:CE:E6:16:E3:31:A1:F8:E2:68:BB:AE:50:B9
Authority key identifier: 68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
Certificate issuer: /CN=68bd39d793125c684dff272f88622bac432180f0
Certificate serial: 019052112A729BE28EC85CB8FDBEAD0DF717
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
Manifest number: 11E3
Signing time: Wed 26 Jun 2024 01:02:54 +0000
Manifest this update: Wed 26 Jun 2024 01:02:54 +0000
Manifest next update: Thu 27 Jun 2024 01:02:54 +0000
Files and hashes: 1: aL0515MSXGhN_ycviGIrrEMhgPA.crl (hash: joU9StxOXeQkxrOurLh0iw45y2yzEGRuz/CMRCVjqS8=)
2: e9VBkjn0Yvvk4UM3TajHrAEkQdw.roa (hash: ECpwXVnWne3Pc7gUkhfVgrc5IFF0li9CYL+U+q+dUXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:52:11:2a:72:9b:e2:8e:c8:5c:b8:fd:be:ad:0d:f7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd39d793125c684dff272f88622bac432180f0
Validity
Not Before: Jun 26 01:02:54 2024 GMT
Not After : Jun 27 01:02:54 2024 GMT
Subject: CN=52533e8cc71d2dcee616e331a1f8e268bbae50b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2e:21:f8:a9:52:16:75:3c:63:18:68:30:96:
ed:35:74:05:74:af:6a:87:cc:56:e7:d2:c9:8d:39:
c1:fc:9e:8c:b2:83:e7:b3:96:be:3b:26:67:94:11:
9c:43:15:7b:88:4d:ff:c7:16:b2:65:dc:7f:64:2c:
1a:7f:e4:12:3b:f9:79:81:70:32:70:85:a1:9b:ef:
13:c5:00:bb:da:89:b3:f7:73:7a:69:c9:d9:d9:ad:
dc:32:cd:8a:46:41:cc:bb:83:ba:f8:5f:2d:13:3c:
6f:45:f7:1e:f3:d1:5a:e5:0b:fa:51:39:de:80:6c:
0d:48:64:c5:bd:ea:04:06:2e:d3:4c:c6:f6:8f:60:
f2:48:cf:19:f8:3c:d5:cb:06:9d:bf:fc:92:e8:25:
90:ab:02:3c:5c:4a:93:5a:0f:7a:be:b7:fa:ea:68:
44:54:94:21:32:33:83:5c:7b:06:41:d3:a1:3c:7c:
46:f4:c1:f1:e2:4f:c1:7c:6b:3b:22:43:a5:18:22:
a6:5a:5f:a6:47:80:81:2c:02:17:86:51:bf:b7:cc:
68:b3:9c:b0:45:11:2e:d8:20:2e:7e:43:f7:ec:0d:
f1:54:c0:08:76:92:aa:03:c0:7a:cc:e8:fd:3b:49:
ea:36:95:34:f0:bc:fc:04:9c:47:8b:0e:69:fc:2a:
40:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:53:3E:8C:C7:1D:2D:CE:E6:16:E3:31:A1:F8:E2:68:BB:AE:50:B9
X509v3 Authority Key Identifier:
keyid:68:BD:39:D7:93:12:5C:68:4D:FF:27:2F:88:62:2B:AC:43:21:80:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0515MSXGhN_ycviGIrrEMhgPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/424b94-e702-4b22-ae2e-0890520b8846/1/aL0515MSXGhN_ycviGIrrEMhgPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:1a:26:20:31:73:48:27:f2:11:77:06:16:b5:6b:7d:c7:e2:
40:79:50:ab:73:71:d1:4b:f3:c5:a3:fd:d4:e0:eb:b5:24:6f:
11:b3:1f:7e:10:3b:78:a1:a2:48:5a:c4:0c:f8:26:07:d7:94:
2b:f9:5f:89:87:18:6d:f0:32:d7:e4:5d:4c:ec:60:e8:6f:66:
83:54:6c:66:f4:ff:44:da:2f:b8:fa:ae:c3:07:d5:16:4b:81:
e9:d6:f6:b7:f2:ac:59:b0:5f:2a:90:63:ed:ea:69:5e:5c:50:
55:c7:cb:b2:8d:10:c7:87:b6:72:07:96:92:56:95:90:a1:f7:
1e:a6:9b:74:38:c8:b1:bf:10:90:91:f8:bb:59:64:f9:63:23:
ab:8a:94:f4:57:fa:f7:0a:84:41:64:1e:48:48:eb:90:0e:86:
a5:ef:81:4c:4e:25:81:49:20:0b:5a:d9:5e:0d:8d:bb:f5:2c:
af:8a:53:e1:f6:94:00:f1:22:77:b7:01:0d:fb:b7:62:d7:fd:
35:f3:fc:a6:2a:68:10:f8:62:5b:0f:30:a1:d4:35:50:ec:46:
b0:55:3b:70:73:c5:f9:51:fe:ea:4d:34:27:4c:69:3f:fa:d7:
69:3f:c9:c4:2e:e0:de:e2:fb:1e:f3:90:84:96:d3:41:c5:25:
4c:61:83:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 03:31:32 2024 by rpki-client on console-fra.rpki-client.org