![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
File: 8lizqXQbQx177NZChrnmvODpddo.mft (raw, json)
Hash identifier: L/oDj6aDQj0rae471eIBLTToTtWp7yu/ibF0FfYBwI4=
Subject key identifier: 66:BF:96:3B:90:CE:26:9F:CC:2B:CB:1A:9D:F5:C7:65:6E:4C:20:DF
Authority key identifier: F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
Certificate issuer: /CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Certificate serial: 01905321C45050915F7B2D4DA4E5FCD7BAD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
Manifest number: 11AF
Signing time: Wed 26 Jun 2024 06:00:40 +0000
Manifest this update: Wed 26 Jun 2024 06:00:40 +0000
Manifest next update: Thu 27 Jun 2024 06:00:40 +0000
Files and hashes: 1: 8lizqXQbQx177NZChrnmvODpddo.crl (hash: a6HvHC1YkCO8+GQf6RWz64llITcRZlAhMnOKw0qETYU=)
2: 8yz9oJPZ_5wMoGWBsjEuVL3HNqU.roa (hash: kJ4nj66xDRwUzbTUTBvK5J/fHh/UVQTibAiJa3YyYKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 26 Jun 2024 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:21:c4:50:50:91:5f:7b:2d:4d:a4:e5:fc:d7:ba:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f258b3a9741b431d7becd64286b9e6bce0e975da
Validity
Not Before: Jun 26 06:00:40 2024 GMT
Not After : Jun 27 06:00:40 2024 GMT
Subject: CN=66bf963b90ce269fcc2bcb1a9df5c7656e4c20df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f3:35:32:91:9e:0d:f4:50:d8:f1:26:fb:c2:
b5:99:1b:02:f9:a0:1f:ff:6a:c6:6e:34:26:52:2b:
d6:e9:1d:e6:70:fa:ec:bb:fa:c2:78:2d:87:9d:86:
68:2e:92:bf:7e:10:8f:45:3a:8d:fa:f1:35:c1:50:
4c:90:b4:2e:a6:a5:cd:59:c4:b6:eb:81:e0:cb:31:
38:24:a2:e9:4b:17:76:43:a3:60:f6:eb:24:e2:6d:
17:5f:1e:47:56:b3:e7:1e:45:5e:47:31:c0:94:03:
bf:9b:88:33:a1:ed:b8:77:aa:d9:d2:60:2a:a6:5e:
0b:71:2f:19:72:06:b5:2e:bd:25:37:18:1d:76:82:
3e:28:95:a6:37:35:05:c2:5b:44:3c:93:01:fd:5c:
bf:1b:2a:3f:93:88:8a:75:13:cb:bd:e0:9c:36:58:
00:e2:ad:ad:1e:27:f3:1a:6d:5d:be:0a:cb:40:a5:
79:cf:20:c9:3a:e3:a7:66:5a:4d:18:94:0b:b6:48:
b1:b4:c6:d4:88:c5:be:cf:9e:43:ff:23:1d:b9:17:
22:08:19:14:98:23:e2:d8:1e:a0:2c:f0:10:c5:52:
42:d7:03:28:5b:23:8a:2a:02:16:14:04:ca:34:4f:
4b:48:7e:4c:17:80:70:9b:dd:19:68:a3:a9:31:a4:
c1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:BF:96:3B:90:CE:26:9F:CC:2B:CB:1A:9D:F5:C7:65:6E:4C:20:DF
X509v3 Authority Key Identifier:
keyid:F2:58:B3:A9:74:1B:43:1D:7B:EC:D6:42:86:B9:E6:BC:E0:E9:75:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lizqXQbQx177NZChrnmvODpddo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/095d5f-2693-4182-9397-cda94fb796d1/1/8lizqXQbQx177NZChrnmvODpddo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:b7:ec:ec:17:5b:4e:bd:e1:f3:58:81:14:8a:01:0a:ef:14:
dc:12:cf:7f:91:ae:4b:bd:ff:17:42:11:c9:b4:a5:80:4f:21:
db:d3:32:ea:9c:86:74:4a:9a:1d:fd:47:53:8f:49:c9:2b:c2:
3f:d0:89:56:c6:13:dd:be:5a:6e:5c:d0:08:fa:92:08:12:11:
27:30:49:dc:04:0b:20:40:c8:e4:39:fc:30:ec:5e:4e:aa:54:
e6:e0:0f:79:cb:cb:44:84:f6:e2:b2:4b:61:17:23:32:a7:8e:
a9:90:b2:f0:ba:9d:2a:e2:ba:02:c7:60:3b:61:e1:0b:20:6b:
35:0f:bc:2b:a3:1b:52:92:76:bb:a4:36:21:0f:b0:68:4b:78:
cc:2c:5f:65:a6:d6:7f:78:30:dc:a2:c2:e3:b1:20:55:3c:a2:
5b:31:16:1b:8b:0f:e1:45:bd:9f:04:32:b2:17:39:7c:30:ef:
a2:90:82:df:bb:a7:3e:c8:05:46:be:e9:96:48:29:f5:a4:2a:
a2:16:76:6d:51:78:fd:23:6e:3c:17:15:74:d7:ee:c4:61:12:
01:44:11:7f:c5:eb:36:44:e0:8e:05:05:a4:73:ac:fd:ab:24:
01:21:91:3b:55:18:c2:28:44:47:33:f2:7b:71:27:d0:db:ef:
c1:6f:d9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 09:38:42 2024 by rpki-client on console-ams.rpki-client.org