![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: ZszyidfJoqZuScITOmpWTTWWQOBeNrr78a2qNsFaaTU=
Subject key identifier: 06:F8:78:F2:6C:22:02:D5:DB:44:F5:E7:ED:C2:8C:16:45:39:34:F5
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 0190723F29B841142C8AB8C6F87DDDB952E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 045B
Signing time: Tue 02 Jul 2024 07:01:00 +0000
Manifest this update: Tue 02 Jul 2024 07:01:00 +0000
Manifest next update: Wed 03 Jul 2024 07:01:00 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: 49uC1vxXQwwDPY6K/AIo43DCbOE+ocIjlRijSeiwgwM=)
2: jV7hKj2mwJiYMkjowu_Az2iONak.roa (hash: +OGWq4TXSrAbFA6t7QZIKqlSuPUiSW9C334KAFNO0G4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 03 Jul 2024 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:72:3f:29:b8:41:14:2c:8a:b8:c6:f8:7d:dd:b9:52:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Jul 2 07:01:00 2024 GMT
Not After : Jul 3 07:01:00 2024 GMT
Subject: CN=06f878f26c2202d5db44f5e7edc28c16453934f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:51:e4:d4:77:64:21:41:9d:f9:3f:2f:49:23:
40:e7:f5:9e:f5:5b:5d:41:7d:23:5d:72:b4:c9:5f:
1c:84:8b:9b:7b:ca:41:39:c3:33:cc:e9:f9:8c:ea:
bf:d6:89:64:a6:49:ac:8f:7d:02:a0:e9:13:b4:01:
4d:86:53:c1:36:5f:83:8b:58:5a:0d:f8:65:d3:b2:
46:fd:00:35:43:9e:53:a1:cf:b0:67:d9:3d:80:47:
1d:90:18:67:97:e6:d9:44:31:92:98:28:3c:f4:82:
78:88:4f:9a:fa:68:69:34:58:51:0d:e9:f4:e7:e1:
48:0c:54:df:2f:21:e3:d8:c6:2b:31:dd:e4:a1:e5:
42:83:bc:c2:bf:38:e6:2d:20:45:66:6b:99:8f:0c:
a5:ff:50:4f:12:3c:7e:60:ce:5f:ad:1f:10:52:c5:
d3:fc:0f:56:01:9a:67:9c:c0:6b:33:1d:05:ab:3d:
31:9c:15:ec:03:44:61:bc:28:be:0c:a7:ed:b2:10:
03:a2:19:f6:a3:a5:b5:ec:3f:1f:bf:24:a4:c3:df:
dd:5b:1f:41:31:43:17:fe:10:72:42:61:90:6e:44:
de:0a:f3:13:3a:70:ed:3d:94:4d:eb:8e:5e:ce:56:
c7:76:67:24:e8:e4:75:75:31:e3:8a:17:ee:c1:28:
ad:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F8:78:F2:6C:22:02:D5:DB:44:F5:E7:ED:C2:8C:16:45:39:34:F5
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:f5:cc:ed:f9:5f:0d:e4:9a:ca:66:58:60:4e:88:d5:4a:f0:
e3:e2:75:c4:c3:3e:06:94:fa:cf:f5:c8:b0:f9:86:ea:2b:64:
cc:0f:76:34:13:93:5e:cd:74:9d:de:04:5b:d1:eb:4d:76:f4:
b4:94:d9:94:b9:ad:a4:ea:bb:56:58:dc:47:c8:9c:f0:88:62:
32:6c:29:44:81:3d:98:a3:c6:b9:ed:18:94:9b:ba:15:7e:63:
7d:d8:1e:ca:76:87:87:e6:14:48:28:20:87:e6:f6:4a:74:bd:
d2:c4:cb:1b:0c:50:54:98:76:94:dd:9c:33:f6:2c:29:dd:18:
4f:5b:71:5c:cc:39:44:25:b9:4c:f2:eb:23:47:3d:0c:02:2d:
bb:42:a4:6d:b0:33:75:56:55:f2:a1:92:a9:07:4b:10:af:13:
5c:c8:f0:b2:28:df:74:f9:47:65:de:03:76:fe:0a:fa:d0:a5:
dc:a0:c2:e1:f4:fb:9e:9b:61:2f:64:15:83:c5:57:7e:75:a2:
28:6f:d0:26:b4:e7:7a:c8:b0:85:e9:21:88:95:e8:18:7c:4f:
09:29:f6:5c:e5:95:4e:dc:60:75:9a:a0:af:5b:a9:6e:ed:56:
13:8e:15:73:71:6f:f2:47:dc:ff:0b:5d:22:d9:4f:ff:4f:bb:
70:53:a0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 2 09:15:05 2024 by rpki-client on console-ams.rpki-client.org