Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
File: 21m85hup0qDjVb4B8TQbjfdq69s.mft (raw, json)
Hash identifier: Z/wep2jljEPLm248Qjf8yXVClBIqEO7iVRx4PZv2jKs=
Subject key identifier: 18:6C:D0:89:C7:FB:38:7B:ED:B1:99:23:0D:2A:1B:11:70:17:58:73
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 019369DA4BFAF4ED18C9189E1C77BEA20335
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
Manifest number: 137B
Signing time: Tue 26 Nov 2024 19:02:13 +0000
Manifest this update: Tue 26 Nov 2024 19:02:13 +0000
Manifest next update: Wed 27 Nov 2024 19:02:13 +0000
Files and hashes: 1: 1bNM4QMwQp2eONpbcD-bXdT1B3E.roa (hash: rCvgBgSdi/13SW/sqSzVNRfR1/qAoy/qrhi5H17x0Tc=)
2: 21m85hup0qDjVb4B8TQbjfdq69s.crl (hash: HZnSCMHNlEFHxVz8FAyWNEXdyAW5qB/9eCgwAQZl6BY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:da:4b:fa:f4:ed:18:c9:18:9e:1c:77:be:a2:03:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: Nov 26 19:02:13 2024 GMT
Not After : Nov 27 19:02:13 2024 GMT
Subject: CN=186cd089c7fb387bedb199230d2a1b1170175873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a5:5c:38:51:62:f8:98:c3:19:c8:2b:34:0b:
48:37:7a:b8:ff:96:0f:0f:44:fd:49:1c:3d:c5:f3:
c1:da:5e:a7:fd:8f:da:0d:3e:ac:51:cd:91:c9:12:
48:df:77:21:80:fe:f2:27:bc:7c:b8:a0:82:01:11:
66:c6:e8:d1:f2:7d:78:b9:cb:0f:f3:44:27:7d:c9:
a0:bf:5f:ca:fd:e5:54:aa:3a:89:11:c1:b5:c2:35:
a7:6e:bc:84:42:ec:0f:47:c2:fa:1f:df:02:84:c4:
7f:cb:d8:0d:9d:c2:44:1d:e4:99:c0:3e:eb:45:05:
85:a5:a6:ac:2b:b4:24:27:8a:c0:80:c6:3d:87:e6:
d2:f0:4a:f2:aa:8d:10:16:17:84:cd:5b:6c:8c:47:
19:ed:8e:e0:83:74:bc:c0:ff:cf:43:0e:58:ba:46:
65:9c:9e:7c:d6:a5:7b:43:fb:94:3f:f7:5c:f0:d2:
5f:ec:b5:04:d5:39:fd:76:1a:82:18:98:33:5f:a2:
63:61:bc:0b:c0:51:4e:98:f5:83:33:17:86:a5:94:
7d:1d:22:bf:3d:38:9b:b9:c7:5d:a2:95:5a:09:8c:
8f:35:7b:42:08:af:23:2a:82:41:e1:98:18:7a:1c:
5b:87:d9:d2:ec:79:15:b6:98:2c:66:98:a1:48:9f:
9c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:6C:D0:89:C7:FB:38:7B:ED:B1:99:23:0D:2A:1B:11:70:17:58:73
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:e6:91:d5:52:c4:6d:60:6a:25:ce:00:19:e5:9c:86:41:84:
6a:83:37:05:01:a1:ef:2f:dd:3e:d1:bc:27:e4:23:5a:64:73:
5f:66:1a:1b:79:23:1f:a3:76:79:a6:0c:cc:c6:a9:95:75:04:
64:f4:fa:82:3f:09:07:c0:51:ec:76:eb:ee:d7:1f:53:c9:8c:
29:e9:46:f2:ab:34:44:76:ea:dc:bf:12:46:68:1c:f2:b3:af:
fd:37:62:84:ce:fd:e8:12:aa:67:59:c9:3e:4a:07:2e:fc:4f:
60:22:37:31:38:d0:fd:5e:16:8e:c8:1b:93:25:fd:ac:b2:ce:
99:68:30:68:b9:63:dd:8c:0d:0a:fb:f0:45:07:83:ca:b8:e8:
f7:2d:d0:4f:36:9c:66:1d:1a:87:1e:2d:12:d9:bc:80:b1:7b:
44:97:9b:ea:7d:e2:d4:cf:01:b3:f3:c0:3d:7a:64:69:a7:30:
61:c5:bb:60:e0:be:3b:91:76:d8:4d:df:fd:46:71:a2:8e:71:
ac:af:bb:5d:80:70:c2:3b:3a:f0:8c:ee:05:79:24:8f:50:2f:
85:76:88:25:ca:27:70:b5:92:fb:22:c0:ce:e6:87:85:45:fc:
09:5e:df:dd:11:ff:d8:65:de:41:95:c8:11:71:62:07:ee:92:
03:04:63:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 22:23:15 2024 by rpki-client on console-ams.rpki-client.org