![](/console.gif)
Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
File: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft (raw, json)
Hash identifier: rf1D5dW8rL2svMl+SqMlaZQbFEj1UkOYErZw24OIIdE=
Subject key identifier: E3:B8:2D:51:A2:93:C6:C7:D0:6D:30:B2:F2:1E:5D:49:E4:13:BD:BA
Authority key identifier: B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
Certificate issuer: /CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Certificate serial: 4BEA1E8F0D2B86EAB7B67C398B479D4A7EDAAEDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
Manifest number: 6B
Signing time: Mon 01 Jul 2024 01:00:23 +0000
Manifest this update: Mon 01 Jul 2024 00:55:23 +0000
Manifest next update: Tue 02 Jul 2024 04:11:23 +0000
Files and hashes: 1: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl (hash: wZ2dxbn2bM+d6vg2k3Q9rrJ75DRbci7G07cMIWg+Vpo=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jul 2024 23:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ea:1e:8f:0d:2b:86:ea:b7:b6:7c:39:8b:47:9d:4a:7e:da:ae:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Validity
Not Before: Jul 1 00:55:23 2024 GMT
Not After : Jul 2 04:11:23 2024 GMT
Subject: CN=E3B82D51A293C6C7D06D30B2F21E5D49E413BDBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:91:84:ee:ef:1d:9b:23:f2:1c:a7:21:89:
aa:9c:1d:d5:7f:21:ee:20:65:a6:8b:fb:5d:6e:7a:
b2:a1:3d:28:cd:02:3d:54:6c:7b:a5:a3:28:88:fd:
c6:56:c9:70:60:12:55:98:84:86:d1:51:25:67:9f:
30:9e:bb:fe:4f:90:8c:84:92:fe:e7:b3:42:fd:67:
19:7e:2e:5e:f2:f3:84:47:42:7e:e5:90:57:fb:d3:
71:41:76:9b:e8:62:f9:42:ce:3b:de:2e:9a:ba:8d:
f4:e2:51:bb:c7:79:e2:8b:f4:d0:52:ce:dc:15:e0:
85:46:a3:4e:e8:33:3b:5c:8f:0b:a3:db:2c:50:ac:
f3:a8:b5:bd:58:bc:7c:b6:ee:f1:69:3e:c9:52:26:
d9:c9:69:8a:18:ed:8e:86:9f:5f:fe:d5:c9:b1:d3:
4b:67:56:37:9e:21:2a:c8:9b:2a:44:69:4d:ef:00:
b1:19:0e:3b:09:bb:24:93:be:5c:55:a2:e3:ed:16:
39:31:71:a8:7c:3e:dc:45:59:5c:74:5e:46:c2:1f:
49:df:58:69:03:20:a5:26:29:74:84:04:9d:f0:d0:
e1:9c:ab:08:45:77:fe:be:fc:ed:ba:04:d8:18:4b:
09:7f:8c:aa:47:6b:6c:4a:7f:5c:a9:8a:7d:0f:dd:
a9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B8:2D:51:A2:93:C6:C7:D0:6D:30:B2:F2:1E:5D:49:E4:13:BD:BA
X509v3 Authority Key Identifier:
keyid:B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:3a:83:47:ee:43:9e:f9:f0:d3:ab:c4:26:f9:c3:e9:95:9d:
73:26:57:17:19:dc:8d:b2:6a:ef:56:45:87:0e:07:5a:3a:2a:
82:c2:87:8e:b1:52:57:54:5c:f2:6d:08:c2:9f:17:21:d8:08:
0f:f6:73:02:bf:e8:ed:98:a9:82:d9:44:4c:81:0a:36:e4:ff:
8b:83:0a:9d:3f:f0:91:23:a8:64:9d:ef:23:2a:cd:01:eb:ea:
c3:23:40:71:d3:b5:5f:b4:ca:ab:37:da:f9:62:46:96:7f:17:
a4:d8:ed:ed:b7:17:05:b3:c0:76:a4:ac:0f:3a:78:f4:5f:25:
d2:1b:50:3c:72:4a:fc:36:e0:4d:61:b3:47:9f:3e:19:ef:53:
30:0c:47:f4:da:3a:ca:95:33:57:1a:dc:fc:f9:4f:11:84:9d:
e7:cd:f1:1d:80:dd:de:52:b0:7a:a5:5a:44:e2:20:50:3a:8a:
93:22:f3:35:db:c8:07:82:1f:82:20:04:30:6d:86:70:5c:57:
ce:6b:ad:fe:1d:3a:96:53:60:b8:32:fa:d8:e6:f0:86:94:a4:
ba:ce:54:a5:a5:42:b1:fb:a4:55:31:46:f7:d9:45:65:1f:e0:
79:2f:fe:63:7c:7f:77:71:47:dc:8b:67:ad:3c:f8:9d:2d:8a:
06:01:2e:23
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUS+oejw0rhuq3tnw5i0edSn7artwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjgyODhlYTllM2Q2N2RjM2QzOGZhNzc1MTgxYzRiMmM4
NzcyOWJkZjAeFw0yNDA3MDEwMDU1MjNaFw0yNDA3MDIwNDExMjNaMDMxMTAvBgNV
BAMTKEUzQjgyRDUxQTI5M0M2QzdEMDZEMzBCMkYyMUU1RDQ5RTQxM0JEQkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkrpGE7u8dmyPyHKchiaqcHdV/
Ie4gZaaL+11uerKhPSjNAj1UbHuloyiI/cZWyXBgElWYhIbRUSVnnzCeu/5PkIyE
kv7ns0L9Zxl+Ll7y84RHQn7lkFf703FBdpvoYvlCzjveLpq6jfTiUbvHeeKL9NBS
ztwV4IVGo07oMztcjwuj2yxQrPOotb1YvHy27vFpPslSJtnJaYoY7Y6Gn1/+1cmx
00tnVjeeISrImypEaU3vALEZDjsJuySTvlxVouPtFjkxcah8PtxFWVx0XkbCH0nf
WGkDIKUmKXSEBJ3w0OGcqwhFd/6+/O26BNgYSwl/jKpHa2xKf1ypin0P3akVAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQU47gtUaKTxsfQbTCy8h5dSeQTvbowHwYDVR0j
BBgwFoAUuCiOqePWfcPTj6d1GBxLLIdym98wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvM2M4ZTRlMTEtM2FjYS00MzA1LWFjZDQtZjA1ZTZjOTA5
MTE1LzAvQjgyODhFQTlFM0Q2N0RDM0QzOEZBNzc1MTgxQzRCMkM4NzcyOUJERi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3VDaU9xZVBXZmNQVGo2ZDFHQnhMTElk
eW05OC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zYzhlNGUxMS0z
YWNhLTQzMDUtYWNkNC1mMDVlNmM5MDkxMTUvMC9CODI4OEVBOUUzRDY3REMzRDM4
RkE3NzUxODFDNEIyQzg3NzI5QkRGLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQjqDR+5Dnvnw06vEJvnD
6ZWdcyZXFxncjbJq71ZFhw4HWjoqgsKHjrFSV1Rc8m0Iwp8XIdgID/ZzAr/o7Zip
gtlETIEKNuT/i4MKnT/wkSOoZJ3vIyrNAevqwyNAcdO1X7TKqzfa+WJGln8XpNjt
7bcXBbPAdqSsDzp49F8l0htQPHJK/DbgTWGzR58+Ge9TMAxH9No6ypUzVxrc/PlP
EYSd583xHYDd3lKweqVaROIgUDqKkyLzNdvIB4IfgiAEMG2GcFxXzmut/h06llNg
uDL62ObwhpSkus5UpaVCsfukVTFG99lFZR/geS/+Y3x/d3FH3ItnrTz4nS2KBgEu
Iw==
-----END CERTIFICATE-----
Generated at Mon Jul 1 02:56:34 2024 by rpki-client on console-ams.rpki-client.org