![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
File: 3C8IdW9U7NcoDR6sz4eK6z8orE8.mft (raw, json)
Hash identifier: 0Qfe/VVusthm7u8ygVISib8hITZdoeXLnDmmQWa3mus=
Subject key identifier: 4B:51:11:62:0E:9C:B5:72:D0:7D:D2:5E:36:4B:9E:4E:3A:8A:65:BE
Authority key identifier: DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F
Certificate issuer: /CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
Certificate serial: 0190411C0037B5F8A03963545EA44E841321
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
Manifest number: 0EE6
Signing time: Sat 22 Jun 2024 18:01:12 +0000
Manifest this update: Sat 22 Jun 2024 18:01:12 +0000
Manifest next update: Sun 23 Jun 2024 18:01:12 +0000
Files and hashes: 1: 3C8IdW9U7NcoDR6sz4eK6z8orE8.crl (hash: 6nvfhY9jd+L1TzN2XNxmtyt37JLodvZXE6Y7rMJIGfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 23 Jun 2024 18:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:41:1c:00:37:b5:f8:a0:39:63:54:5e:a4:4e:84:13:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
Validity
Not Before: Jun 22 18:01:12 2024 GMT
Not After : Jun 23 18:01:12 2024 GMT
Subject: CN=4b5111620e9cb572d07dd25e364b9e4e3a8a65be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:39:61:38:99:a7:cc:03:43:75:5c:04:3a:
00:d3:e9:83:53:c8:34:b0:81:f1:62:53:82:2b:a3:
cb:63:f2:f0:75:e5:1c:45:5f:71:bb:c0:e7:ca:12:
eb:ec:67:aa:09:f4:85:97:a9:c0:38:fb:e7:ce:a9:
9c:b4:cb:89:d1:bf:cd:6e:46:2c:fe:fe:14:1c:e5:
5e:d9:4c:8f:d4:82:b2:73:5a:98:c3:55:d8:fd:f9:
64:d5:67:e3:5b:0f:b6:91:39:0f:b4:da:40:05:7f:
f1:58:fc:8f:f3:0a:97:a7:83:47:03:d9:79:93:3f:
c5:18:c8:51:49:60:7b:95:1a:9d:d3:b7:12:75:c0:
70:e9:3a:73:cf:73:8b:40:c1:3c:ed:33:06:27:3e:
4f:45:f2:29:4c:b1:eb:5f:64:18:34:9b:50:6b:90:
a1:e9:64:45:8a:f1:07:2f:0d:fc:73:22:3a:b8:c6:
3a:64:11:db:71:6f:70:c0:d4:88:9f:c4:c7:90:97:
1d:ba:69:19:64:1d:0a:7f:12:17:fe:e9:70:cb:5e:
ce:fe:cb:9e:dc:c5:57:de:68:6d:4b:c6:3e:86:0e:
d0:c8:67:cf:6a:d3:82:fe:bd:5a:78:5c:3e:0c:37:
f7:50:63:14:23:19:91:10:d8:3a:5c:42:4c:a4:bb:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:51:11:62:0E:9C:B5:72:D0:7D:D2:5E:36:4B:9E:4E:3A:8A:65:BE
X509v3 Authority Key Identifier:
keyid:DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:85:c9:73:9d:d4:9b:94:6a:d9:c0:f4:5c:8c:02:3d:f8:1b:
3d:9e:fb:4c:13:c4:86:04:b3:39:89:9a:1e:bb:4b:3e:35:d8:
0d:b1:c4:0e:5e:32:ae:af:e7:9c:83:86:e1:8c:11:ce:8a:24:
5e:70:37:71:7e:e7:f6:75:70:0d:02:19:61:d7:e2:0a:1b:98:
37:2d:8d:6c:a4:9b:46:2d:14:c5:b4:db:00:35:be:f5:92:88:
0d:38:f4:eb:c3:45:47:19:8b:c2:b6:d4:f7:f7:32:23:ad:68:
2b:44:da:8c:55:bb:e5:73:7e:b8:40:4e:b5:a9:52:26:ad:17:
8a:99:2b:09:62:46:cb:6b:b5:c8:ea:d9:a8:98:f9:7a:88:af:
bb:5b:ea:cb:77:05:76:85:57:4d:f2:c7:3f:0d:5a:83:ce:97:
0c:24:0d:ca:81:c4:03:13:4a:ce:8d:0b:ef:5c:c2:6b:f6:e2:
9a:41:77:a2:f4:10:f5:a9:3b:3e:91:97:35:72:9e:23:a7:17:
dd:4c:01:e2:fb:ae:98:7c:81:60:9e:c4:4e:0a:75:2e:fc:e3:
f8:e7:35:d3:a0:7d:94:c9:57:28:68:7b:49:ff:1d:36:b4:2a:
f1:45:46:e7:1a:f6:db:55:9f:9f:5b:2d:18:a9:e4:ee:50:50:
45:8d:f7:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:01:37 2024 by rpki-client on console-fra.rpki-client.org