Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
File: AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft (raw, json)
Hash identifier: QJ7/brueNL5WxdU/5/RJ4U30XjnKCjuds1NnL4o9rWM=
Subject key identifier: 96:F7:2B:85:84:C7:8A:6B:D0:E4:EF:87:7D:7A:B8:77:8C:05:B4:2D
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0193549BFBE0E3106ABA7036CE878ED508D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
Manifest number: 1372
Signing time: Fri 22 Nov 2024 16:02:08 +0000
Manifest this update: Fri 22 Nov 2024 16:02:08 +0000
Manifest next update: Sat 23 Nov 2024 16:02:08 +0000
Files and hashes: 1: 20DHGD1zkNzVmCyzqfEGT_x1F1g.roa (hash: ly4jv1RUD7dR98/dsgxQOYWdb7d3Lqa+cEybYhr33Ho=)
2: AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl (hash: Cz7wLqW1bEdI55b+c6QNPuoM9ebZPfVH2khdFkZon/Q=)
3: _Y1SmzZTKXgbUh3BAYatWrczVJQ.roa (hash: qdiQbH0L2zTyJDNO5IIF5ovNp6/uahWYq2r22yIAeTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 16:02:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:9b:fb:e0:e3:10:6a:ba:70:36:ce:87:8e:d5:08:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Nov 22 16:02:08 2024 GMT
Not After : Nov 23 16:02:08 2024 GMT
Subject: CN=96f72b8584c78a6bd0e4ef877d7ab8778c05b42d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:10:66:b1:cb:ba:97:28:b1:9b:1b:48:df:41:
ec:39:35:0e:e4:2d:69:bd:e3:22:f1:71:3a:03:05:
c7:34:76:c3:51:34:5f:f1:dc:13:16:ae:46:49:76:
41:1a:b3:b5:d3:ef:1b:a3:35:48:8c:af:fc:ef:dd:
cd:75:e1:26:99:4a:fa:e3:83:b1:0e:08:73:59:58:
b2:78:b6:be:49:01:5c:47:d0:be:8e:16:9d:71:c6:
3e:6c:1f:94:7d:59:df:9e:d8:33:77:6e:b4:ee:9b:
64:c5:d3:95:cc:a8:6a:86:6a:92:cb:2e:54:11:ee:
d6:17:90:29:78:1e:fd:bb:db:8f:b1:0d:9e:9b:09:
7c:62:9f:c6:f3:16:aa:24:24:38:9a:37:15:53:4b:
4c:b9:f6:43:a5:73:39:94:fe:1b:f0:a5:b5:a8:1b:
cf:d1:6f:35:24:97:08:79:1a:82:65:5e:05:ba:dd:
71:65:02:fa:41:75:64:82:f6:0d:b5:a8:3e:bf:a7:
5f:d5:7a:9a:10:40:82:22:31:6b:b8:07:8a:1e:dc:
55:08:f9:a2:9f:32:42:45:e7:65:0f:39:52:a9:f2:
2e:b7:dd:ce:fb:91:43:96:3e:50:47:b1:e8:45:da:
ca:99:20:0a:fc:79:32:9a:93:f3:d2:3e:4b:66:8f:
15:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F7:2B:85:84:C7:8A:6B:D0:E4:EF:87:7D:7A:B8:77:8C:05:B4:2D
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:e2:12:6a:9c:ae:cf:53:20:e0:82:cf:c5:e6:4e:1d:03:56:
90:42:0a:57:9a:fe:f4:de:42:37:43:d6:4c:fa:86:6e:58:9d:
0f:30:99:76:0d:66:db:8f:be:39:b0:d1:5a:3c:5a:6c:a7:db:
a5:f3:f2:3b:7b:0c:a7:35:3c:e5:5c:c7:dd:65:39:52:27:72:
6a:2d:93:ea:51:a5:e2:b6:58:c0:63:07:d0:b1:5f:24:5c:e6:
16:b1:64:27:41:c9:48:4f:12:cc:88:69:a5:de:f1:82:46:01:
01:b5:92:4c:2f:a1:88:3f:5c:80:64:50:f8:00:da:77:e2:80:
ea:ae:f3:64:10:e7:d7:17:76:ba:dd:52:9e:0d:20:e1:2a:17:
1f:5e:ee:ae:a0:af:ee:85:e0:5d:be:e6:26:7d:56:f8:1d:c0:
b5:5c:12:fc:52:10:33:d6:b6:83:1a:57:92:66:51:11:ce:dc:
2f:cf:12:ac:e0:a0:33:28:a5:38:06:b3:05:97:c5:f7:ae:54:
0e:aa:2f:ea:f8:37:08:4b:2f:65:b3:6d:fa:bb:b3:bb:a9:f1:
10:b2:8d:f5:6b:64:8b:af:dc:2c:ff:55:bb:fe:97:e4:da:aa:
8c:a3:88:6c:f8:03:71:c9:78:d3:f0:36:c3:71:76:98:1d:c3:
97:3c:09:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:07:04 2024 by rpki-client on console-ams.rpki-client.org