![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
File: AIVd2JclbobaPL5plOlM4ulpryY.mft (raw, json)
Hash identifier: UDEycKJ/ojDnqIcOkSkPj+J7JYO4ZJ/r/FucD89lAOk=
Subject key identifier: 51:7A:F1:3E:CC:67:F3:3E:CB:C3:50:20:E0:DA:45:85:CE:BF:88:D1
Authority key identifier: 00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
Certificate issuer: /CN=00855dd897256e86da3cbe6994e94ce2e969af26
Certificate serial: 019406462B7CC0DEB10CFFA8970BFF61331F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
Manifest number: 13C9
Signing time: Fri 27 Dec 2024 04:00:49 +0000
Manifest this update: Fri 27 Dec 2024 04:00:49 +0000
Manifest next update: Sat 28 Dec 2024 04:00:49 +0000
Files and hashes: 1: AIVd2JclbobaPL5plOlM4ulpryY.crl (hash: 8ykllD/3CcCbacfmXf5j0lGJbLbSE0XjcnafTPpbxUQ=)
2: D2IlFf4s8VcS2i9pgTYbU-XvVKk.roa (hash: rDlz741tQQM9X2bOardgbfhn+LzUVzj7ZAPO2SRIdNU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Dec 2024 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:06:46:2b:7c:c0:de:b1:0c:ff:a8:97:0b:ff:61:33:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00855dd897256e86da3cbe6994e94ce2e969af26
Validity
Not Before: Dec 27 04:00:49 2024 GMT
Not After : Dec 28 04:00:49 2024 GMT
Subject: CN=517af13ecc67f33ecbc35020e0da4585cebf88d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2f:fa:39:e2:e4:f4:5d:09:b3:6e:2e:eb:07:
6b:fb:29:84:87:ce:2b:1b:11:fa:1e:62:be:9c:ea:
56:78:18:33:24:1e:6e:a8:26:e1:a3:4a:1c:eb:d0:
7d:0d:80:6d:c2:32:6f:5b:9a:a5:16:f4:22:6f:6a:
3f:08:5a:c0:28:cd:eb:71:b9:8a:c9:d2:6f:fc:ca:
ca:6f:86:d7:7a:53:b5:fe:1b:36:5f:98:25:2d:b6:
f7:04:a5:45:fe:ae:38:44:67:8d:19:96:35:d3:52:
52:f4:57:fb:02:c3:c1:ab:46:59:66:2e:f5:5e:d9:
40:34:62:8b:63:dc:1c:57:37:02:3b:15:45:01:7b:
6a:d9:aa:6d:7d:eb:f5:ef:dc:01:f7:6d:b3:dc:45:
4c:c2:63:ed:f3:f6:43:13:38:c3:fa:05:3e:45:a1:
b0:42:33:b9:b9:df:aa:eb:9d:2b:60:5b:5c:b6:1d:
de:fd:3d:3f:b3:ba:c1:7c:55:9b:fb:95:fc:d3:4e:
0a:0f:e5:f7:11:1e:6d:8e:6b:3e:b5:41:e6:5d:e7:
a5:19:a0:26:bb:c6:4e:67:83:20:22:77:78:43:fe:
3b:08:ad:f4:ed:45:85:61:b8:6d:ef:4a:51:98:4c:
d1:e9:4e:4a:4a:fc:f7:cd:fe:ba:94:75:a4:08:32:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:7A:F1:3E:CC:67:F3:3E:CB:C3:50:20:E0:DA:45:85:CE:BF:88:D1
X509v3 Authority Key Identifier:
keyid:00:85:5D:D8:97:25:6E:86:DA:3C:BE:69:94:E9:4C:E2:E9:69:AF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AIVd2JclbobaPL5plOlM4ulpryY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9fc395-98bc-4aed-939e-886f66bb6ee8/1/AIVd2JclbobaPL5plOlM4ulpryY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:d9:8e:89:32:72:f9:80:7f:b9:95:4f:12:a5:b6:b0:17:e6:
58:ef:6b:ba:9f:00:bc:19:cd:9b:5a:c9:aa:69:d4:44:64:04:
45:f7:ca:36:77:bb:09:a6:29:b5:6e:ce:7e:ab:1a:f7:55:5c:
6e:50:fc:12:5c:d4:b7:13:73:73:7a:29:a6:06:ad:77:81:a0:
96:5b:a2:32:90:f8:45:c5:77:b7:bb:d2:74:bd:4f:be:a4:2b:
28:c1:55:56:f6:5c:39:58:55:cb:aa:ab:46:a8:b0:97:11:6b:
cc:51:2e:41:77:30:a5:4a:94:a2:48:6f:58:bc:4e:43:61:80:
c5:ed:06:90:0c:62:0e:09:8c:d5:4c:02:81:85:4a:c5:2d:ca:
a3:59:06:45:80:77:d5:54:c2:04:57:6c:ba:86:5f:22:16:f0:
8e:d5:91:4d:25:32:a0:64:15:84:a5:86:2f:b0:9c:82:d4:23:
96:e3:0e:74:43:b6:0d:d3:81:a6:47:01:be:56:f9:c3:34:6b:
6d:68:0a:63:93:b1:77:ae:69:46:31:84:72:2f:1d:cc:8d:33:
a9:0c:1d:45:e8:51:e1:34:10:7e:2d:a8:32:c6:c4:c0:56:9f:
7a:ad:b3:f1:f1:0c:20:e5:43:7d:4c:b4:70:e7:2a:07:24:95:
ec:36:cf:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 27 09:47:02 2024 by rpki-client on console-ams.rpki-client.org