![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: fabCKOiK5RgubjBUGpxflopHUOhFQFnicqVhP5fWtc0=
Subject key identifier: 86:1C:34:EC:41:13:EE:F5:F4:C4:80:4E:9C:9C:ED:CB:2C:60:1F:5D
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 0195113498711F8E1ADD0CD2A7CA3A43DEC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0AAF
Signing time: Mon 17 Feb 2025 00:00:14 +0000
Manifest this update: Mon 17 Feb 2025 00:00:14 +0000
Manifest next update: Tue 18 Feb 2025 00:00:14 +0000
Files and hashes: 1: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: Mn6fUsGYQETXn+rp9zhjWVw2vhLfXpVRqdy2PV8iFw4=)
2: xc-UZLTq46CsoQwfrFH96loErL8.roa (hash: imTueTgO4U1HucCZCJDX7it/v879nWtNhBcC9zIM6Z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:34:98:71:1f:8e:1a:dd:0c:d2:a7:ca:3a:43:de:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Feb 17 00:00:14 2025 GMT
Not After : Feb 18 00:00:14 2025 GMT
Subject: CN=861c34ec4113eef5f4c4804e9c9cedcb2c601f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:92:03:4f:b0:c2:3d:e9:32:23:7e:e2:fc:30:
fc:ac:a6:f1:37:0d:47:97:a2:ae:fa:f0:ab:3f:3c:
4c:f8:58:e1:bd:4b:15:63:92:4e:87:95:53:da:67:
db:b1:b4:3d:22:ee:41:a4:da:50:08:b9:c2:ec:ae:
f5:2c:48:2c:80:25:b2:76:3e:65:34:fd:8f:3c:72:
1d:9a:f1:4b:8c:a8:63:19:0f:1a:87:3e:e0:ce:7b:
6f:ec:c2:11:d1:38:3a:2e:71:c1:01:c2:92:6f:a9:
5b:5d:0f:5c:e0:38:9b:07:12:c7:34:75:47:51:60:
98:37:0d:ca:af:2a:d5:30:72:46:b4:d6:00:62:23:
2a:12:a4:87:61:ee:c6:b7:80:f7:62:22:e6:47:1e:
18:5a:38:e1:cf:b2:e7:4b:20:f0:11:c2:03:62:1d:
58:cd:97:04:e0:28:03:46:05:b1:de:e4:cb:d1:90:
80:31:35:9b:80:33:bf:e9:2b:12:19:52:44:40:d4:
c8:f5:50:fb:03:94:d5:c8:cc:79:fc:ce:ec:83:4e:
8a:76:a0:83:84:60:56:66:29:d1:31:2e:53:40:27:
35:64:90:72:30:72:96:c7:2d:30:ff:4b:da:55:20:
67:65:5f:7c:ef:f7:f2:2b:2b:c4:3e:cf:d2:5f:92:
52:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:1C:34:EC:41:13:EE:F5:F4:C4:80:4E:9C:9C:ED:CB:2C:60:1F:5D
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:26:9a:5c:e0:ef:8d:94:56:59:4a:2c:8d:b1:34:fb:ba:04:
8e:7c:62:a0:ba:6b:9a:ac:1a:f0:0d:ca:f2:8a:36:df:93:e5:
ec:41:92:c7:f6:5c:00:93:d7:4b:5c:bc:6d:57:39:45:75:02:
e3:15:c3:0a:21:bc:c9:63:07:7f:42:3a:fa:5a:68:e7:ed:42:
61:54:48:01:90:09:8f:94:90:b5:ee:25:b7:82:69:3f:43:e0:
7f:f7:af:d6:3c:c8:0d:e3:17:0f:64:89:80:2f:f0:32:d3:19:
70:16:93:9e:56:ba:25:cb:17:4b:22:df:1b:13:af:44:eb:27:
d5:00:b1:9c:69:38:d6:80:b5:f8:13:2e:5d:f6:a4:5f:58:3b:
c9:d9:d8:61:5d:a3:1f:3b:90:26:a2:67:8a:86:76:6a:a7:36:
ea:7b:95:83:45:28:3b:17:eb:01:88:bf:00:bc:13:82:59:ff:
de:df:27:db:be:1b:4b:8e:be:0d:21:3e:88:98:5f:ea:9b:ed:
e3:98:99:e5:91:11:ef:64:f2:15:2a:ce:d4:87:e8:a9:f6:83:
a0:eb:01:eb:3b:5d:f0:4d:83:af:bd:05:6f:5f:53:ba:39:13:
eb:9c:46:ba:21:38:ff:a5:54:00:09:ea:c1:fb:ae:ac:38:14:
bd:59:9b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:35:20 2025 by rpki-client