![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: 3pF9u4OR0xLr8WjF78gbLExa4t1/5kqtu5kL+NUu6Dw=
Subject key identifier: F1:90:A8:A9:F9:5C:01:05:65:64:D5:13:88:3A:C0:B6:B1:DC:3E:04
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 0190EF583989BEA36B1FBA265F353994AD0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 1236
Signing time: Fri 26 Jul 2024 14:00:54 +0000
Manifest this update: Fri 26 Jul 2024 14:00:54 +0000
Manifest next update: Sat 27 Jul 2024 14:00:54 +0000
Files and hashes: 1: OuOBCYSSPCNK-LIQuu7JFI-SmCk.roa (hash: XB3AHKUGzdVmmgT5L2Wt836t/O/Cg7ZNzb1JZKMzzxY=)
2: qjXZ4nLPhHlaxFoRb5vNlR8VsqA.roa (hash: 82k+3DdkBYMzk1a8vgCgp4aWIUun9tBmP38rYTWSyDg=)
3: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: /ktqYYv48xLRSE5Eb59ox0FkWvDmlZqPv1SM5xlDq6Y=)
4: wy3NpXZHiXOBFV6X58raMRovXGU.roa (hash: 9aYun0UEqJd28/eiBq5m/MXMJBSWvX4TRT7W7R7pndU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jul 2024 14:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:58:39:89:be:a3:6b:1f:ba:26:5f:35:39:94:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jul 26 14:00:54 2024 GMT
Not After : Jul 27 14:00:54 2024 GMT
Subject: CN=f190a8a9f95c01056564d513883ac0b6b1dc3e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3b:2e:f4:79:4e:c0:a8:72:34:7f:a9:99:ba:
55:2f:9c:24:2f:aa:2e:ce:d5:84:4d:94:7d:b4:37:
be:88:4c:89:48:5b:40:12:33:b8:ff:2f:00:d9:da:
7d:02:4a:fe:d4:95:49:73:00:0b:cd:55:d7:40:f6:
f4:77:09:54:80:cd:f9:1d:89:d7:9a:35:c2:73:8c:
f3:d8:80:4b:24:01:ec:de:ec:ef:ec:92:88:e8:9c:
da:d5:b7:63:15:0a:a2:2f:aa:45:c3:3f:56:ab:d5:
ef:bc:2a:13:d5:24:20:24:1e:3e:1d:84:5a:93:f3:
a4:06:b4:8a:36:f4:9c:57:8d:70:a5:76:e4:37:38:
70:35:26:6e:7e:ca:a6:d7:23:af:e4:02:0a:de:0b:
d7:6a:4d:d0:42:c2:60:d5:16:df:94:d8:ee:32:2f:
40:18:be:b5:cc:98:33:b5:36:81:87:d6:af:40:9d:
0a:b0:d9:3d:2d:68:fb:41:cf:9b:82:b4:5c:2e:2b:
80:af:1d:1b:1d:7e:85:67:76:9a:e6:e9:60:54:1c:
6e:49:3c:dc:02:de:75:30:3a:f5:94:49:b8:f4:2a:
7e:39:aa:e0:df:00:9e:39:b6:b7:c6:30:26:d5:f2:
67:a6:e6:f9:c2:54:3e:86:d0:18:d1:63:e0:44:03:
cb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:90:A8:A9:F9:5C:01:05:65:64:D5:13:88:3A:C0:B6:B1:DC:3E:04
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e9:58:ca:51:d4:70:31:fa:43:d1:49:c1:88:20:b7:bb:0f:
08:c6:87:70:68:e0:91:39:a2:b3:51:d6:76:b6:3e:5d:6f:47:
a7:13:ef:55:31:f6:5c:6d:75:e0:43:18:a5:28:78:9d:b1:ae:
ba:57:d3:9c:0e:4a:8c:ec:74:bb:44:c2:17:9d:e5:41:85:86:
fa:46:46:d1:da:ed:3f:a3:03:d7:ee:64:74:3a:db:dc:3b:c0:
dd:6c:9d:78:f7:f6:93:5b:15:06:00:54:c4:20:32:b6:c2:e2:
4f:bc:0c:66:cf:87:b6:15:b1:70:bd:9d:dd:19:b8:a4:3b:8e:
2a:d6:a7:27:93:fc:22:ee:2d:18:f6:06:5e:7b:81:dd:57:3c:
0d:8c:57:1e:35:b9:91:0d:53:44:af:fa:49:65:ed:84:82:08:
0b:68:68:2c:bc:a5:36:67:4c:0d:f7:57:7e:36:3f:f7:80:1b:
5a:57:f2:e4:50:86:d9:f3:df:b5:98:22:4c:8d:b8:30:e1:3d:
85:29:0f:f1:75:f6:7f:68:4e:60:32:0b:f9:b3:77:b0:08:59:
f0:e2:11:22:db:94:a6:11:3b:d0:3d:00:be:92:88:4e:41:5c:
e4:54:a8:13:e8:f7:ad:ba:20:2a:0f:bc:b3:71:c8:d7:77:b6:
43:2e:6e:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 23:06:45 2024 by rpki-client on console-ams.rpki-client.org