![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
File: MFOQl41XlfFI4eYK6c_XKDNIEiw.mft (raw, json)
Hash identifier: n7aQhJozaqbrIV2EJRbi/R2u4SYXqIQ2z/mtcWYagzw=
Subject key identifier: E3:40:4A:C5:9E:DD:6A:9E:96:74:DB:32:6D:90:8F:F0:91:57:AC:1B
Authority key identifier: 30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C
Certificate issuer: /CN=305390978d5795f148e1e60ae9cfd7283348122c
Certificate serial: 0190456610B5138DE4B99F38C4731D05F0EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
Manifest number: 087F
Signing time: Sun 23 Jun 2024 14:00:35 +0000
Manifest this update: Sun 23 Jun 2024 14:00:35 +0000
Manifest next update: Mon 24 Jun 2024 14:00:35 +0000
Files and hashes: 1: MFOQl41XlfFI4eYK6c_XKDNIEiw.crl (hash: wMGwNsyu505OlXFUBznQdtNQC4qVVWmZjR/29b4+JYA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 24 Jun 2024 14:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:45:66:10:b5:13:8d:e4:b9:9f:38:c4:73:1d:05:f0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305390978d5795f148e1e60ae9cfd7283348122c
Validity
Not Before: Jun 23 14:00:35 2024 GMT
Not After : Jun 24 14:00:35 2024 GMT
Subject: CN=e3404ac59edd6a9e9674db326d908ff09157ac1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:15:7b:ce:5a:df:8c:e0:1d:55:7d:4b:23:
f9:b3:e0:0d:e8:ef:49:1d:27:88:c0:8d:fe:4d:1b:
f6:43:27:02:55:ff:54:b6:8a:c3:07:e1:96:3b:65:
67:45:91:3f:01:11:4e:6f:05:45:99:00:6e:6b:bb:
3b:e2:a1:33:53:56:4d:59:32:c3:f4:0c:0c:b8:59:
94:a8:9f:72:89:86:2c:2f:ca:1d:f8:bf:7e:5c:ee:
67:47:cb:8e:5c:b4:27:b1:b3:c8:85:bc:fa:f4:5b:
cf:65:de:31:e2:07:74:7e:c3:46:51:b5:4e:95:00:
b8:9a:28:6a:69:f8:b8:e9:a1:8e:5e:58:b3:92:68:
a2:d4:1c:8e:71:24:ab:f8:df:c0:21:6f:20:b9:51:
09:89:16:d8:9c:76:ee:5f:8f:c9:7b:25:5f:a7:92:
67:a8:dc:be:0d:6c:cf:17:71:3c:47:64:ef:14:8d:
c0:ae:d2:2d:b0:ef:dc:a4:26:82:a7:aa:f1:8f:e3:
fa:91:3a:ec:a8:44:55:79:1d:e7:ac:ed:3f:64:77:
73:82:7f:da:29:cf:d2:d4:40:a3:f3:a1:f7:f9:18:
b1:a8:ca:d3:83:d4:f6:e2:12:4f:7d:83:31:3a:f9:
04:e7:7e:b4:06:8e:1e:14:28:43:68:d9:5d:e0:62:
81:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:40:4A:C5:9E:DD:6A:9E:96:74:DB:32:6D:90:8F:F0:91:57:AC:1B
X509v3 Authority Key Identifier:
keyid:30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:df:ae:7b:34:c2:e3:05:b5:44:35:11:5c:1b:52:48:71:a0:
cf:aa:7c:45:16:c6:57:10:3d:f4:89:3a:7b:7d:12:a3:29:d7:
48:ab:7b:db:eb:c4:f1:b5:58:2a:eb:35:78:f5:48:98:2f:ae:
64:24:05:1b:66:0e:f8:25:d4:42:0e:63:45:ee:ef:90:8b:32:
ac:97:25:5e:50:2a:ea:80:31:5d:55:95:7e:e7:29:f5:ae:84:
73:3d:95:a0:c4:3d:11:d8:e9:11:7d:9e:91:13:24:06:17:b8:
d1:11:68:51:4b:e1:79:d6:ce:51:18:a0:6d:97:7e:43:1b:0c:
cb:5c:4e:89:80:da:4c:ab:de:f7:7f:8f:4c:5b:ab:0b:18:16:
12:6f:16:a8:b2:81:96:18:11:88:36:d5:8d:0c:b3:1d:0a:81:
d5:42:a7:81:a2:ed:e3:e2:24:a1:86:53:ab:bb:78:3e:91:b5:
d5:c2:a3:4f:6e:ed:b3:d5:69:5c:11:49:ea:d2:5f:00:27:9a:
fb:9c:50:73:d8:4a:47:f7:6d:d3:10:4c:f4:54:56:71:b2:39:
07:6d:5e:b1:cb:3f:c0:4e:0e:12:06:d5:ba:10:d2:b7:78:97:
ae:0a:c0:00:7f:b1:e4:6e:5d:db:ba:e7:ca:d2:23:49:b1:05:
7c:68:be:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBFZhC1E43kuZ84xHMdBfDuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNTM5MDk3OGQ1Nzk1ZjE0OGUxZTYwYWU5Y2ZkNzI4MzM0
ODEyMmMwHhcNMjQwNjIzMTQwMDM1WhcNMjQwNjI0MTQwMDM1WjAzMTEwLwYDVQQD
EyhlMzQwNGFjNTllZGQ2YTllOTY3NGRiMzI2ZDkwOGZmMDkxNTdhYzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouEVe85a34zgHVV9SyP5s+AN6O9J
HSeIwI3+TRv2QycCVf9UtorDB+GWO2VnRZE/ARFObwVFmQBua7s74qEzU1ZNWTLD
9AwMuFmUqJ9yiYYsL8od+L9+XO5nR8uOXLQnsbPIhbz69FvPZd4x4gd0fsNGUbVO
lQC4mihqafi46aGOXlizkmii1ByOcSSr+N/AIW8guVEJiRbYnHbuX4/JeyVfp5Jn
qNy+DWzPF3E8R2TvFI3ArtItsO/cpCaCp6rxj+P6kTrsqERVeR3nrO0/ZHdzgn/a
Kc/S1ECj86H3+RixqMrTg9T24hJPfYMxOvkE5360Bo4eFChDaNld4GKBbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFONASsWe3WqelnTbMm2Qj/CRV6wbMB8GA1UdIwQY
MBaAFDBTkJeNV5XxSOHmCunP1ygzSBIsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUZPUWw0MVhsZkZJNGVZSzZjX1hLRE5JRWl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8xODcwNWItNDhhYy00ODRjLTk3YmQt
ZWMxYTRiOWEzN2IyLzEvTUZPUWw0MVhsZkZJNGVZSzZjX1hLRE5JRWl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8xODcwNWItNDhhYy00ODRjLTk3YmQtZWMxYTRiOWEzN2Iy
LzEvTUZPUWw0MVhsZkZJNGVZSzZjX1hLRE5JRWl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYt+uezTC
4wW1RDURXBtSSHGgz6p8RRbGVxA99Ik6e30SoynXSKt72+vE8bVYKus1ePVImC+u
ZCQFG2YO+CXUQg5jRe7vkIsyrJclXlAq6oAxXVWVfucp9a6Ecz2VoMQ9EdjpEX2e
kRMkBhe40RFoUUvhedbOURigbZd+QxsMy1xOiYDaTKve93+PTFurCxgWEm8WqLKB
lhgRiDbVjQyzHQqB1UKngaLt4+IkoYZTq7t4PpG11cKjT27ts9VpXBFJ6tJfACea
+5xQc9hKR/dt0xBM9FRWcbI5B21escs/wE4OEgbVuhDSt3iXrgrAAH+x5G5d27rn
ytIjSbEFfGi+1Q==
-----END CERTIFICATE-----
Generated at Sun Jun 23 19:06:09 2024 by rpki-client on console-fra.rpki-client.org