![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
File: ksrhHed02u8FJ0JGPOlU9SHG0nI.mft (raw, json)
Hash identifier: wLaMrWL5aei6QNnmdH2RJPVRM3mGXiGqhnURtlQNvgg=
Subject key identifier: A8:0D:5C:15:89:08:6E:7C:5F:9A:1E:30:75:1F:AE:A9:0D:2D:67:90
Authority key identifier: 92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72
Certificate issuer: /CN=92cae11de774daef052742463ce954f521c6d272
Certificate serial: 01906D1A27D469B2FD781B06C396E83EE825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
Manifest number: 0BE7
Signing time: Mon 01 Jul 2024 07:02:28 +0000
Manifest this update: Mon 01 Jul 2024 07:02:28 +0000
Manifest next update: Tue 02 Jul 2024 07:02:28 +0000
Files and hashes: 1: ksrhHed02u8FJ0JGPOlU9SHG0nI.crl (hash: YNeGO4vpXcIU5SavzGBG3zz3jrSXX+J1KA77FhmBPTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 07:02:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:1a:27:d4:69:b2:fd:78:1b:06:c3:96:e8:3e:e8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92cae11de774daef052742463ce954f521c6d272
Validity
Not Before: Jul 1 07:02:28 2024 GMT
Not After : Jul 2 07:02:28 2024 GMT
Subject: CN=a80d5c1589086e7c5f9a1e30751faea90d2d6790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4a:f9:a4:6a:9f:4c:8a:e2:b7:90:f9:03:41:
99:b0:b1:da:43:f6:4d:bd:2d:36:f8:5b:45:04:67:
5a:b3:b2:ed:78:ac:3e:68:36:30:d4:e6:7e:c6:ca:
f0:7e:ce:2c:ca:0c:76:be:dd:ca:a1:07:d1:91:d0:
0e:41:42:bc:e9:77:1d:0e:5c:5e:f9:cf:f0:28:6a:
8c:a6:49:fb:f0:7c:20:00:0d:31:0d:47:69:14:59:
80:b6:54:fd:7d:74:85:41:b1:d2:09:b2:af:15:06:
36:2f:d4:67:28:95:4e:a5:49:82:eb:41:3e:4f:ed:
ba:f6:b6:8f:2c:45:0b:f0:1c:71:35:4e:7a:38:d4:
fe:31:7d:ab:4c:fb:d7:22:78:5a:42:4e:a1:d4:ab:
05:11:5b:5d:90:7f:69:16:75:9a:dc:48:cf:06:9e:
5a:38:3d:33:ce:f4:fc:23:c3:76:68:98:2d:1f:11:
40:0f:e5:23:bf:71:0a:8e:61:d4:c8:1b:76:6c:b7:
86:41:5e:2b:3c:fd:43:0a:9a:d2:88:00:ae:4d:16:
7a:d6:0c:d6:4c:06:cc:d5:62:37:cc:58:1d:18:14:
94:97:d0:46:80:ba:a9:47:b4:fe:d9:21:89:34:b4:
54:ca:26:e6:4f:5f:8f:7a:88:d8:cf:72:f9:9b:c6:
72:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0D:5C:15:89:08:6E:7C:5F:9A:1E:30:75:1F:AE:A9:0D:2D:67:90
X509v3 Authority Key Identifier:
keyid:92:CA:E1:1D:E7:74:DA:EF:05:27:42:46:3C:E9:54:F5:21:C6:D2:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ksrhHed02u8FJ0JGPOlU9SHG0nI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/edf435-1abf-470e-ba6d-eff6fd7d3b28/1/ksrhHed02u8FJ0JGPOlU9SHG0nI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:36:37:11:f1:8c:1a:fc:d5:64:c0:e3:6c:74:64:84:08:44:
f1:31:2b:2e:0d:84:ea:bc:0a:71:6e:98:a1:e7:a3:54:18:05:
b0:06:2c:30:88:94:e7:f0:a3:8e:88:b6:9d:07:ea:9e:e9:f0:
e4:65:46:02:53:80:68:b9:a9:4b:17:13:cf:87:2a:c7:7b:b6:
e0:ce:e1:b0:f2:ea:0c:8b:59:65:d0:7f:32:ab:e2:0b:26:2c:
0a:6b:4d:45:b6:be:0b:43:35:ce:8e:21:1c:b5:fd:be:03:03:
40:b4:69:b3:92:b7:63:55:0d:b6:96:0f:52:4d:00:53:bb:26:
73:78:9d:9f:cf:96:58:c4:17:01:c3:15:bf:e9:08:e1:44:96:
56:07:ec:f1:3b:4c:2c:35:cf:44:62:f0:79:ea:52:cc:08:c6:
7c:1a:00:63:fb:46:17:a7:5b:32:f9:8f:38:28:0a:3c:bf:ea:
80:fd:25:7f:75:26:1d:d8:16:6e:72:60:78:54:3e:b6:9f:90:
fe:de:7b:a8:c1:56:63:74:6f:b3:34:d3:1f:22:9c:2d:6a:fb:
df:0b:ca:32:f5:d2:34:7d:dc:92:9c:a0:27:a5:4e:ad:0b:8b:
f3:89:ea:e9:0a:d6:0a:a4:30:72:2c:fd:ec:94:78:13:fe:4b:
89:f9:bc:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 16:13:32 2024 by rpki-client on console-ams.rpki-client.org