![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
File: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft (raw, json)
Hash identifier: qjBP+gfzyMwnq+osePESf7QO/WGJtDDzxwXWcUC5tyc=
Subject key identifier: F3:AF:D5:01:05:9C:09:63:36:24:59:C7:BE:9D:A8:5E:C1:16:98:50
Authority key identifier: 3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77
Certificate issuer: /CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
Certificate serial: 01906E2B345735AC2402C82EA28DB796FF87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
Manifest number: 6E
Signing time: Mon 01 Jul 2024 12:00:43 +0000
Manifest this update: Mon 01 Jul 2024 12:00:43 +0000
Manifest next update: Tue 02 Jul 2024 12:00:43 +0000
Files and hashes: 1: Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl (hash: T5QPjcuuPpI9M+tB8V+2YOhuB9XyInpTysdPJ5l/q90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 12:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:2b:34:57:35:ac:24:02:c8:2e:a2:8d:b7:96:ff:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e0aba30f4b404ff4dec9fc0016c0bbee4b6b877
Validity
Not Before: Jul 1 12:00:43 2024 GMT
Not After : Jul 2 12:00:43 2024 GMT
Subject: CN=f3afd501059c0963362459c7be9da85ec1169850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bc:0b:24:c9:de:79:76:c0:de:b6:9b:9e:62:
9e:8d:50:cc:15:15:08:60:08:32:b5:83:ee:44:f3:
50:fd:ce:ee:6b:f2:55:b4:f5:1f:57:24:52:d8:99:
70:84:8f:6b:30:e2:ff:a0:98:f2:38:91:d9:a3:33:
dc:e7:eb:bd:e5:7a:af:0a:6c:a0:8c:1c:13:97:dd:
ae:55:25:24:04:67:75:90:c2:af:1a:85:97:07:c4:
45:44:ee:70:8e:e4:e7:97:c6:f0:b5:5e:42:a4:20:
01:71:88:a3:5c:ad:ad:72:fd:37:6b:4b:96:7b:99:
00:50:a4:58:30:10:be:54:41:75:e9:c9:8c:6d:c5:
e4:df:e2:75:93:4e:c7:59:0f:9c:c3:52:51:da:c9:
07:c6:3a:88:bc:3b:6e:90:a8:43:5f:3d:fc:9c:e8:
ed:4b:cc:f5:f9:32:7c:29:b3:5a:4b:e3:f9:e3:48:
7e:ac:fc:5b:b7:39:91:bf:4c:3d:43:b9:a6:af:11:
cd:62:91:23:0e:ef:62:4a:38:7c:9f:7d:6d:a2:9d:
6d:e9:ca:bc:7f:9c:c3:e8:95:c4:c4:0d:b7:2d:97:
b8:fd:17:c8:d5:8c:2c:c1:06:1d:05:74:e5:df:64:
22:31:ac:0b:4a:67:a2:c4:18:df:7f:c6:e1:d9:1d:
33:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:AF:D5:01:05:9C:09:63:36:24:59:C7:BE:9D:A8:5E:C1:16:98:50
X509v3 Authority Key Identifier:
keyid:3E:0A:BA:30:F4:B4:04:FF:4D:EC:9F:C0:01:6C:0B:BE:E4:B6:B8:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d4e557-0640-48d3-87d6-59029a8b533a/1/Pgq6MPS0BP9N7J_AAWwLvuS2uHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:89:50:7b:8d:a7:a4:c6:37:f4:af:f7:65:93:3b:bd:92:30:
53:37:d6:db:5a:d7:2c:24:f8:e7:9f:ce:70:d9:fb:1e:71:1a:
1d:59:b9:ea:12:c0:d4:31:e2:ef:0e:66:36:8d:45:20:3f:91:
b5:1f:3e:44:01:db:60:ed:19:4e:c9:14:ed:ce:7b:4b:ac:72:
70:ab:34:2e:fc:8b:78:ee:ce:83:f3:61:d3:c4:fb:36:18:59:
31:4e:d7:0f:22:39:8c:5d:33:a4:bc:9b:14:4e:6c:d8:d0:f4:
30:10:b3:6b:38:ce:9c:55:ca:ef:95:c2:2a:b9:73:de:60:ac:
03:21:bb:6d:a5:91:48:a4:34:84:d8:75:3d:14:39:d5:f4:64:
89:56:28:b5:a0:c1:bf:fe:9e:6b:15:f0:96:a8:c3:c0:0f:d4:
59:3c:6a:62:9e:f6:f0:60:0f:9e:96:73:9e:67:39:ea:c3:58:
65:77:67:be:81:21:54:76:26:c3:16:be:bd:96:d3:78:2c:58:
c4:a8:0f:e0:cf:4c:dc:c2:42:ea:58:eb:cc:99:02:d8:ea:db:
f7:56:58:a2:dc:a7:61:5b:d7:11:fa:70:0d:50:6d:36:a2:ba:
d0:90:49:25:3a:7a:bf:cd:4d:b8:dc:17:8f:d4:16:76:40:36:
77:03:a4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 17:45:53 2024 by rpki-client on console-ams.rpki-client.org