Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
File: 21m85hup0qDjVb4B8TQbjfdq69s.mft (raw, json)
Hash identifier: 7TDBvgVZdS5Z/xLu/VDBaDdDvS9C7x/sP7MMBymIYlc=
Subject key identifier: CB:13:57:F1:4F:F8:C9:59:47:F5:E5:8F:EC:D4:A1:A1:B9:B0:81:A0
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 018F4B6D819EC63580A475C83941B155ED2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
Manifest number: 1159
Signing time: Mon 06 May 2024 01:03:38 +0000
Manifest this update: Mon 06 May 2024 01:03:38 +0000
Manifest next update: Tue 07 May 2024 01:03:38 +0000
Files and hashes: 1: 1bNM4QMwQp2eONpbcD-bXdT1B3E.roa (hash: rCvgBgSdi/13SW/sqSzVNRfR1/qAoy/qrhi5H17x0Tc=)
2: 21m85hup0qDjVb4B8TQbjfdq69s.crl (hash: ykzD98UkASXlCY5kWtSqeZqE28HMAp9g3V+z6fy5Dvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:03:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4b:6d:81:9e:c6:35:80:a4:75:c8:39:41:b1:55:ed:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: May 6 01:03:38 2024 GMT
Not After : May 7 01:03:38 2024 GMT
Subject: CN=cb1357f14ff8c95947f5e58fecd4a1a1b9b081a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e0:bc:03:04:eb:7f:a0:1b:91:8f:ad:4d:c3:
05:d5:d7:ab:32:3d:9b:20:78:33:0e:35:4a:03:db:
d7:97:e1:92:7b:2c:94:35:4a:05:bc:90:ab:a7:fe:
88:32:36:e3:f4:47:5b:a8:58:b0:16:47:55:9e:d2:
4e:83:94:df:32:5e:b2:94:6d:16:3f:d4:2a:96:97:
28:52:3e:18:8e:19:a5:4b:f1:4c:16:be:74:3f:5f:
c7:e8:8c:3c:1f:8f:6c:9f:31:64:53:43:6c:49:31:
90:54:34:44:35:a3:d9:dd:6b:c7:46:31:07:db:55:
63:80:95:28:54:8d:67:fe:80:17:4c:94:b1:f7:0d:
04:43:4e:f9:e5:cb:26:4c:30:b9:29:e5:66:cb:01:
87:08:43:23:b3:4c:62:e3:a6:2a:a6:6d:06:5e:ec:
d9:3b:27:59:33:d3:09:4e:32:02:fd:1c:0b:b6:dd:
36:8b:71:e9:42:fc:f3:41:40:5b:e0:09:5b:5d:0e:
d9:92:67:7f:86:28:22:6e:ec:bc:6e:48:f4:cc:d8:
a3:28:f3:b4:f1:e0:cc:72:c9:80:c9:c5:70:6d:d2:
aa:bb:30:1e:06:e2:3f:ca:a5:43:19:cb:7f:76:72:
b9:32:c0:84:82:50:5a:53:6f:60:3d:9a:ec:42:18:
ac:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:13:57:F1:4F:F8:C9:59:47:F5:E5:8F:EC:D4:A1:A1:B9:B0:81:A0
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:5c:f8:e4:ea:ef:30:b4:38:7b:c8:da:00:43:7b:5b:22:5a:
99:86:7b:a4:c3:93:d9:a1:0f:49:35:5d:b5:ff:85:49:88:10:
c6:cc:4f:f5:54:13:51:9d:bf:b4:96:97:87:21:52:03:bd:ac:
f8:d7:19:bb:cd:4b:4e:c3:19:6e:83:a6:26:ed:88:37:9f:9e:
54:7d:49:82:e8:e8:fa:72:b7:7a:36:7e:f5:f6:7b:1c:ef:15:
64:05:d6:b2:bb:4e:e7:e5:57:e4:eb:94:64:c0:94:d5:9f:bf:
08:e6:ea:9a:a4:21:7b:5d:e9:26:37:55:c4:89:d7:c8:e2:ed:
f6:dd:9e:15:a2:38:01:6a:ae:e2:d2:14:e5:f2:ee:f3:c5:70:
be:fc:e9:74:43:9a:dc:c7:06:68:e8:86:09:dc:71:c0:2a:e6:
ec:de:e3:4f:17:d5:e5:e6:de:9d:f7:6c:49:97:04:ea:c4:69:
94:66:d7:1b:24:c9:4f:dd:7d:22:af:2e:68:cd:e9:48:66:2e:
fd:0c:74:f5:b5:b2:e7:30:18:1e:22:8d:62:a2:15:24:b8:18:
f8:3b:9e:86:dc:7e:ee:df:44:c3:c9:c9:5e:4b:03:37:a9:8f:
62:f0:b8:f7:43:a9:6c:1c:26:df:2e:74:53:54:f7:d2:fd:05:
0f:31:a6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 10:57:38 2024 by rpki-client on console-ams.rpki-client.org