Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
File: PNKqcak6qcEye3NTigR45PeC9vc.mft (raw, json)
Hash identifier: Vgg8k2papXwmQQjOr7hA2kVoq7dmDA4FFZUBNuhNLnA=
Subject key identifier: BA:A3:56:3E:9E:A0:D1:62:2F:97:78:51:12:9E:13:FD:42:7B:AD:27
Authority key identifier: 3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
Certificate issuer: /CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Certificate serial: 0194BAF22D643E933BF8D1B4F73C9CA218CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
Manifest number: 0BA3
Signing time: Fri 31 Jan 2025 06:00:20 +0000
Manifest this update: Fri 31 Jan 2025 06:00:20 +0000
Manifest next update: Sat 01 Feb 2025 06:00:20 +0000
Files and hashes: 1: PNKqcak6qcEye3NTigR45PeC9vc.crl (hash: zXb5Sg4tT5tYEcE5FIkX27QhMjXR1jETmK+2oGy7ls0=)
2: mkUXmgygJpYBMQ2Igm9L-tv-j1s.roa (hash: 9Fpz5SGKImESLClWOjbnaFAMtUoqIoi74+/yK2yHMuQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 06:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ba:f2:2d:64:3e:93:3b:f8:d1:b4:f7:3c:9c:a2:18:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Validity
Not Before: Jan 31 06:00:20 2025 GMT
Not After : Feb 1 06:00:20 2025 GMT
Subject: CN=baa3563e9ea0d1622f977851129e13fd427bad27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:78:17:20:83:04:33:1b:c8:32:df:f0:94:63:
77:b6:ba:d7:cd:a9:f3:a3:fd:30:15:2c:58:a6:e9:
38:a7:37:47:29:16:f4:b7:c2:ee:e0:f8:eb:05:a4:
95:fc:d2:f6:8b:ab:14:c5:22:93:ed:5c:f5:37:06:
30:7b:40:27:63:88:b5:9a:15:f8:13:48:d2:79:87:
24:a8:ae:6c:91:92:e4:1c:25:d1:2b:e5:12:8b:ac:
8b:34:e6:da:ea:34:8a:70:4f:fe:a7:27:75:03:2f:
9b:59:94:8b:12:03:43:73:86:e6:07:cd:84:e3:bd:
eb:54:7b:d7:d8:ab:2a:56:92:b9:87:b2:22:83:bc:
c0:bb:4d:37:e0:26:13:20:9c:21:fd:24:a1:55:bc:
30:4d:1f:55:ec:15:13:45:73:08:54:e4:42:7e:e0:
51:c8:d6:c7:09:48:40:82:85:ee:7a:20:5a:09:f4:
a0:a0:fd:fb:bc:c4:b7:b6:e7:98:40:6b:5e:70:f1:
66:20:62:10:43:8b:79:2c:ee:19:92:31:9b:f4:44:
93:53:41:5c:d4:18:08:88:86:5d:e3:16:cf:0a:f8:
ed:18:04:62:a5:de:ca:ec:24:d3:11:89:18:d8:b6:
5e:1b:36:b2:1e:a8:89:03:58:bd:32:30:d0:56:08:
5b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A3:56:3E:9E:A0:D1:62:2F:97:78:51:12:9E:13:FD:42:7B:AD:27
X509v3 Authority Key Identifier:
keyid:3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:7c:94:69:ea:67:93:94:48:b6:d1:59:9b:f0:a2:05:68:19:
f8:d1:cd:96:e7:da:83:d5:dd:64:79:77:25:6e:6d:5f:cd:cd:
e5:6e:3b:ed:5f:c4:ff:74:c8:85:fc:ae:d3:56:8e:73:89:d1:
11:9c:60:4e:64:f2:af:03:73:7d:8d:eb:bf:39:94:89:e9:ea:
cb:51:a9:e0:62:d5:33:0f:2b:47:9f:39:02:8e:be:73:0c:d3:
84:f8:c5:f1:37:9d:77:9d:f4:5a:89:3e:9a:9a:bb:99:90:ab:
da:35:5d:35:43:18:4c:df:43:8a:f8:4b:20:6f:4d:b7:b5:b8:
95:42:35:0e:2b:ec:a6:60:68:2f:6c:c5:ae:07:0a:28:ab:bc:
15:34:f7:a9:8e:9e:b4:06:3b:6e:62:ba:aa:af:29:fd:db:ee:
6d:15:1e:e3:7c:c5:5c:55:5b:e8:91:49:15:be:e3:f3:00:ac:
8d:20:bf:3b:6d:ea:35:0d:11:82:e0:ff:ce:f9:f0:67:fa:a8:
20:2e:b5:22:35:b5:80:40:cc:43:b4:d4:e2:67:92:84:96:bd:
bc:92:69:0a:df:01:aa:aa:54:31:3a:4c:57:e5:ac:83:f9:7f:
12:68:10:0b:6d:6a:a3:ce:5c:72:06:d7:f1:84:9a:44:27:ae:
6f:9f:e0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 31 15:34:37 2025 by rpki-client on console-fra.rpki-client.org