![](/console.gif)
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
File: ImidD5E9Kcxj1skmy0Yssn8YRAg.mft (raw, json)
Hash identifier: odJNOPeETjy/RpSw6Q1aKaq4tu8yjqOPEhzdFTdAAwI=
Subject key identifier: 91:18:59:99:5A:77:13:D7:CB:25:E4:38:BE:99:92:DF:85:A1:A7:75
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 01906E61D749CB5D5D2675CEE29E62714EDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
Manifest number: 11EE
Signing time: Mon 01 Jul 2024 13:00:24 +0000
Manifest this update: Mon 01 Jul 2024 13:00:24 +0000
Manifest next update: Tue 02 Jul 2024 13:00:24 +0000
Files and hashes: 1: 8s8S-IuqQY9k7C65EZsmuSRAQlc.roa (hash: tBk30B6bdHnKw2lrvytyEpzA2hQjhpDnAoY4k/tviEw=)
2: ImidD5E9Kcxj1skmy0Yssn8YRAg.crl (hash: 3yfZsOMUakGeLvSVD+45odgunUbVI2CJ/0UNQWP0Ddg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 02 Jul 2024 13:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6e:61:d7:49:cb:5d:5d:26:75:ce:e2:9e:62:71:4e:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Jul 1 13:00:24 2024 GMT
Not After : Jul 2 13:00:24 2024 GMT
Subject: CN=911859995a7713d7cb25e438be9992df85a1a775
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1c:22:62:52:ee:f4:9f:c8:19:f5:9f:2d:2f:
be:f6:8d:11:a4:b1:9b:fc:2a:0a:99:9d:aa:8e:ef:
a8:e7:c3:ee:0d:56:e9:a5:24:86:ad:01:3c:d1:c5:
65:1f:8a:79:02:2f:db:94:e3:fd:fc:1b:8c:a8:18:
7a:3b:64:1d:ed:04:2b:3f:a7:11:b3:5a:1f:e9:c6:
eb:cd:3d:71:01:c2:47:4f:01:2f:24:6c:09:51:79:
cd:cb:4e:32:45:bb:86:93:8e:0a:3d:de:17:ce:7a:
bb:b7:bf:de:87:d2:f2:ee:a0:85:80:13:b1:21:80:
90:02:93:10:2b:8d:66:4e:b1:b6:96:01:6f:6a:0e:
3e:69:9d:ad:d3:3d:7c:16:88:b8:fc:79:c1:4b:14:
0b:cd:56:db:02:b7:98:e7:78:de:0a:48:c8:f1:7d:
e0:1d:e8:ce:8c:67:dd:08:6d:57:9f:e6:5a:59:3c:
30:90:58:95:39:6f:cd:17:65:ae:c3:d8:f4:de:1e:
bb:f1:26:d9:ca:c5:5c:13:2e:26:30:6a:31:31:43:
c3:73:ee:dc:2e:61:e5:85:50:33:1b:d9:4a:c4:f2:
06:da:c3:61:a0:c8:f6:c7:49:61:c0:ca:2f:62:99:
b0:5f:a2:d6:99:ac:37:5a:6b:30:83:db:e2:d1:e8:
c9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:18:59:99:5A:77:13:D7:CB:25:E4:38:BE:99:92:DF:85:A1:A7:75
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:49:b2:85:dc:11:6b:5d:f2:f0:ea:d8:a2:06:a4:64:7e:4e:
63:5a:cc:d7:0e:6f:3e:95:cf:c7:d5:11:f4:21:2f:97:cb:1d:
f9:d4:64:fa:b5:30:7b:82:5e:27:71:6d:31:ce:d7:c9:36:ec:
6f:ff:00:ed:d6:89:07:3d:4d:96:e8:17:9d:21:f2:86:63:ff:
01:7e:85:be:16:c7:4c:5c:df:18:78:52:b2:a2:3a:66:1f:36:
5f:f2:3c:37:6a:07:2e:9e:6b:b9:c5:33:51:3d:ad:96:b5:8f:
7c:32:6b:0d:02:c2:ae:7f:6f:f6:ec:ae:46:9d:9d:f9:e4:7f:
b6:30:12:a5:6e:c4:14:d5:0f:ff:73:90:fb:62:0a:75:1b:46:
7d:58:a5:95:a1:1f:c8:16:8d:69:7a:3e:fd:d5:78:34:7b:d4:
a1:57:1f:e2:13:f7:d4:4a:34:87:cb:b6:2d:73:46:a3:c0:ed:
a5:12:d9:d0:dc:10:20:29:e1:0d:4d:f0:3f:73:85:fd:b0:df:
90:4f:1a:8d:c6:2d:45:3c:11:b7:12:6d:ee:02:fd:ea:aa:d6:
8e:48:c7:ca:ec:26:3d:63:ae:8d:80:c0:27:a1:b8:03:d9:f8:
d0:51:90:19:09:d4:70:c0:84:ca:82:02:79:4d:1b:21:09:dd:
d8:96:e9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 16:05:59 2024 by rpki-client on console-fra.rpki-client.org