![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
File: 2hvwCCS2KL9iY7t03ndK3fmZD8k.mft (raw, json)
Hash identifier: ByzP0K2I/tQfRwt2qPQbOPRjzD9nukxqztpA+67nkQU=
Subject key identifier: 9F:06:D6:4A:D1:6B:66:7E:6C:7B:47:BA:B6:F8:6E:D4:D0:08:FF:40
Authority key identifier: DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
Certificate issuer: /CN=da1bf00824b628bf6263bb74de774addf9990fc9
Certificate serial: 019060DDBC83B35A26EDD6A0E06D991D42B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
Manifest number: 0F6C
Signing time: Fri 28 Jun 2024 22:01:02 +0000
Manifest this update: Fri 28 Jun 2024 22:01:02 +0000
Manifest next update: Sat 29 Jun 2024 22:01:02 +0000
Files and hashes: 1: 2hvwCCS2KL9iY7t03ndK3fmZD8k.crl (hash: ZNcdaBXSecKnlAiP+ivjkZopF7DhdPzqO/E9JdofsEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 29 Jun 2024 16:26:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:60:dd:bc:83:b3:5a:26:ed:d6:a0:e0:6d:99:1d:42:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1bf00824b628bf6263bb74de774addf9990fc9
Validity
Not Before: Jun 28 22:01:02 2024 GMT
Not After : Jun 29 22:01:02 2024 GMT
Subject: CN=9f06d64ad16b667e6c7b47bab6f86ed4d008ff40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:7c:7c:62:40:a9:4d:ff:8f:ba:50:80:a3:13:
57:a2:74:d9:dd:ef:80:4f:9c:0c:88:0d:8c:a7:b1:
5d:0c:42:b7:53:5d:72:13:25:4e:b2:fc:22:57:8d:
d9:67:fa:e1:0e:c5:cd:18:2f:0f:0b:21:69:1c:1f:
0f:f1:5c:cf:9a:7e:44:ab:5e:ba:8e:00:bf:c5:21:
68:f1:90:99:44:f6:06:75:04:c5:78:b3:db:2f:bf:
a6:c2:f7:60:ea:da:e7:0f:68:f1:62:5e:81:8d:9f:
a8:85:41:38:38:ed:80:e6:3e:f5:cc:27:ed:95:7d:
e1:55:5f:6d:0e:8d:32:c6:06:68:f5:c3:d2:af:2b:
7b:9d:26:80:dd:4f:24:6d:95:77:aa:73:f5:8d:82:
c7:37:5b:44:42:c3:17:29:62:2b:f3:e7:af:11:71:
32:04:99:05:ee:ed:ae:7b:a3:bd:c6:51:37:67:5c:
28:c9:fc:eb:06:50:ff:4e:55:2b:ce:1c:92:46:bc:
3e:aa:19:24:56:bd:7b:4a:4c:04:84:cc:e5:b4:88:
ba:fb:fd:6f:97:c4:3a:b4:4d:02:f2:3f:eb:65:0a:
12:eb:73:4b:24:e3:4c:70:b0:ae:3b:16:c8:d1:63:
22:e6:a2:44:38:11:96:86:d9:c9:65:49:fb:e2:a5:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:06:D6:4A:D1:6B:66:7E:6C:7B:47:BA:B6:F8:6E:D4:D0:08:FF:40
X509v3 Authority Key Identifier:
keyid:DA:1B:F0:08:24:B6:28:BF:62:63:BB:74:DE:77:4A:DD:F9:99:0F:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hvwCCS2KL9iY7t03ndK3fmZD8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/0248cc-c768-46c1-823c-d6c62142f7e3/1/2hvwCCS2KL9iY7t03ndK3fmZD8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:55:da:7e:7a:05:03:e2:a7:54:75:6e:cf:e3:ff:a5:a3:d0:
2c:42:f2:6c:29:d3:05:1e:70:1c:ef:a2:e1:5e:17:4c:45:35:
61:13:a6:02:78:fa:27:9d:00:1f:69:ce:85:c1:2c:01:10:a3:
ce:50:5c:e2:0a:66:98:54:88:f0:22:61:d4:a3:20:d4:4a:3e:
d4:5e:15:83:6f:57:9b:4c:b3:a8:4f:14:e2:08:39:cf:1c:33:
98:01:5f:40:2e:a8:99:dc:56:89:06:94:49:db:8f:27:71:67:
d1:fd:27:e3:b8:90:a1:92:c1:d5:af:13:08:2e:d4:e7:be:eb:
7c:56:3e:69:21:8f:33:3d:78:5e:54:94:58:59:39:15:15:fd:
7e:ed:fa:69:40:f5:0f:10:8a:50:30:87:75:a9:5d:cf:9e:b7:
3e:a4:6e:1e:bb:41:b0:6b:a6:a5:19:c3:57:21:c2:e2:9c:3f:
90:12:bc:f5:18:ba:66:f3:4e:48:7e:ea:bf:a5:67:a2:c9:02:
f7:0d:a2:98:74:ae:86:5a:0a:da:1a:79:72:13:4c:2c:31:e8:
60:7a:5a:f6:60:02:30:3b:fb:35:b2:b8:6e:0b:48:00:47:0e:
c2:78:98:83:3b:ff:2a:3f:a7:a5:a0:12:f2:ac:cd:b0:5d:72:
0f:14:25:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 28 23:11:42 2024 by rpki-client on console-fra.rpki-client.org