Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
File: aaKML4THXo0DiGlDVRUt0rcx8kk.mft (raw, json)
Hash identifier: K7vMhf2WDR8TJUhQyVipB8sCh/1hBJ11lb7kVwZcl4o=
Subject key identifier: 8A:19:2D:F1:2C:0E:7E:7B:3E:C6:9C:60:2D:A0:D6:FA:E3:A4:9C:89
Authority key identifier: 69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
Certificate issuer: /CN=69a28c2f84c75e8d0388694355152dd2b731f249
Certificate serial: 019354D1577E0BAB912A0DDFBD05A361A606
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
Manifest number: 1371
Signing time: Fri 22 Nov 2024 17:00:25 +0000
Manifest this update: Fri 22 Nov 2024 17:00:25 +0000
Manifest next update: Sat 23 Nov 2024 17:00:25 +0000
Files and hashes: 1: ZMTNr9Z6SK7OLfJb2WyBSPAMneM.roa (hash: ufYhDzG7xbA4ShIq2LqoWkoqwLuai4j65WKm4eaguQU=)
2: aaKML4THXo0DiGlDVRUt0rcx8kk.crl (hash: T1o1gaiLWFcHAPAhQ4LHhfFQaT628+5pmxdBkMNYX/0=)
3: yyTnRnOwDkrDVYHF7A8qtdHsoj8.roa (hash: NH/7mdZsiq7PYHaJVAX4tp191dtqg9PhRSzbC7OG2Ro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 17:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:d1:57:7e:0b:ab:91:2a:0d:df:bd:05:a3:61:a6:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69a28c2f84c75e8d0388694355152dd2b731f249
Validity
Not Before: Nov 22 17:00:25 2024 GMT
Not After : Nov 23 17:00:25 2024 GMT
Subject: CN=8a192df12c0e7e7b3ec69c602da0d6fae3a49c89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a1:0f:b8:82:71:1e:b6:68:dc:bd:a4:1e:41:
6a:62:98:29:38:a4:29:de:da:4e:0a:7e:d2:ab:ed:
a1:96:08:a1:fc:3a:5b:b8:70:da:10:25:fb:bf:77:
2a:fc:4f:91:7f:3c:75:80:b8:eb:4f:27:2f:d9:1b:
4d:f9:8f:d3:11:f8:cf:47:21:17:df:7c:48:90:c4:
1d:1d:3f:f1:9c:ef:c4:13:1d:fe:4f:0a:50:e6:e3:
0e:da:d2:be:84:9b:c6:75:10:e6:15:b4:84:19:42:
ac:8a:86:4f:9f:37:4e:b1:5e:b2:c0:05:a5:6e:b9:
8f:f7:e4:c2:d7:eb:a2:0c:72:b7:ae:6c:ba:3c:88:
c5:cd:f5:3a:b1:57:2f:9b:d5:17:67:81:37:a6:52:
b4:1c:95:ec:f9:22:a7:78:2b:f5:69:bb:13:d6:d3:
2d:1f:f8:1e:9d:5e:2d:0b:90:7d:0e:f9:83:bc:bf:
b7:70:33:79:cf:a1:2c:c6:52:9b:74:c7:14:3b:8d:
b1:cb:a8:0e:95:30:a4:bc:41:1f:d6:fb:62:38:67:
9b:4e:48:b2:89:3e:3b:eb:a6:23:03:a6:8d:89:5a:
b0:45:b4:b0:d2:a5:90:a2:9c:7e:1c:f6:3d:6d:95:
fe:40:b1:84:46:c8:93:e9:57:7d:0d:28:c4:fd:6b:
9f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:19:2D:F1:2C:0E:7E:7B:3E:C6:9C:60:2D:A0:D6:FA:E3:A4:9C:89
X509v3 Authority Key Identifier:
keyid:69:A2:8C:2F:84:C7:5E:8D:03:88:69:43:55:15:2D:D2:B7:31:F2:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aaKML4THXo0DiGlDVRUt0rcx8kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/89ff47-0b7b-4309-a8af-2cbd55f9a8ee/1/aaKML4THXo0DiGlDVRUt0rcx8kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:38:a1:b3:d3:b1:06:5e:98:e9:36:65:95:2d:26:d3:db:44:
e6:0f:69:22:0c:03:a4:80:1e:46:fc:cf:c2:27:77:7c:5b:e8:
85:da:74:79:a8:b1:9c:1c:1e:e1:12:b2:c2:6d:d7:12:ee:94:
5b:24:ad:94:44:99:3d:3a:04:56:4e:69:b0:4d:82:74:70:97:
b3:69:77:e5:8b:62:ac:f7:7a:3f:8e:59:fc:c9:ac:76:e2:7b:
b0:5d:43:1f:43:f8:d6:34:b1:ea:e1:3c:85:83:f4:25:95:f5:
a3:d2:80:56:a8:2f:37:93:a5:4e:8c:a2:6f:61:95:a2:c2:25:
65:f3:db:c8:a8:95:99:1f:19:92:9a:d3:eb:69:99:62:b4:3d:
82:81:06:48:f8:67:0d:30:e0:59:82:16:18:1f:53:20:11:64:
09:47:4a:04:0f:63:db:33:50:de:23:fa:3b:4a:e7:d9:57:5e:
06:14:41:f9:a5:d6:d1:67:8d:c9:93:9a:71:ce:62:62:53:98:
be:b2:0a:d2:17:da:2c:7d:3f:db:f6:55:f7:1c:b2:94:a9:6b:
d3:8d:fb:61:c2:2e:33:27:8b:71:b6:5b:cb:6d:a0:a4:0b:d9:
1b:ad:b3:54:4d:d8:13:d8:7f:d3:39:27:ea:10:f3:bc:ae:fd:
97:99:5e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:02:56 2024 by rpki-client on console-ams.rpki-client.org