Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
File: PNKqcak6qcEye3NTigR45PeC9vc.mft (raw, json)
Hash identifier: VTipqv2CrwIJIPffW4oSo5kY+SZHPbBK8ETKlTpe1IM=
Subject key identifier: 1C:13:FA:02:F7:7C:AD:71:DC:26:B2:9E:49:E9:A7:C7:A1:29:12:1A
Authority key identifier: 3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
Certificate issuer: /CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Certificate serial: 019352E2E9292539071253D79EBE985E8484
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
Manifest number: 0AE8
Signing time: Fri 22 Nov 2024 08:00:22 +0000
Manifest this update: Fri 22 Nov 2024 08:00:22 +0000
Manifest next update: Sat 23 Nov 2024 08:00:22 +0000
Files and hashes: 1: C7HES5ypXI2QWo6Q7UQ0oevT-NI.roa (hash: xdWxU1U5tBeU6use48JuXspS7DgAiW9uLa0dSoFTGEU=)
2: PNKqcak6qcEye3NTigR45PeC9vc.crl (hash: RanzkC0il7flmpxsWGxB9ESD6+8yBsa7dau87tK1MEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 08:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:52:e2:e9:29:25:39:07:12:53:d7:9e:be:98:5e:84:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cd2aa71a93aa9c1327b73538a0478e4f782f6f7
Validity
Not Before: Nov 22 08:00:22 2024 GMT
Not After : Nov 23 08:00:22 2024 GMT
Subject: CN=1c13fa02f77cad71dc26b29e49e9a7c7a129121a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:bc:1e:ae:3e:4e:e0:90:83:56:6c:25:de:
19:cc:27:d9:11:f2:f5:84:12:3f:a7:ad:cd:2f:a9:
50:8e:d7:cd:de:62:ac:00:9d:fc:3f:06:20:2a:35:
9c:02:a3:f2:39:62:1f:3d:88:d2:4e:39:af:ca:e0:
b7:70:2c:62:f0:f4:16:55:5f:32:c1:af:7b:e1:61:
45:d2:80:3f:68:e2:25:99:6d:b5:f7:a6:0c:1c:d1:
93:69:6a:ba:29:ff:5f:2c:39:cd:78:25:e4:18:d4:
a1:dc:ba:3f:b9:fb:93:36:d5:0b:fe:f5:91:10:06:
dc:17:ed:bc:e9:54:93:29:42:2e:57:39:de:e3:9d:
40:3b:b8:5b:20:30:32:21:df:cd:c6:a8:0c:bd:bf:
14:d8:87:4f:5a:22:6c:89:5c:d2:53:b7:ac:f7:1c:
dc:1c:73:f3:4e:c6:96:1b:07:a9:58:73:5b:62:ac:
04:76:8e:e0:e5:d9:09:0b:ce:c5:03:b8:16:97:d2:
cc:7b:0e:a1:2b:6e:db:61:5b:f6:1d:74:86:95:44:
4f:73:e2:95:e9:2f:96:69:85:06:c3:c3:7f:dc:83:
d8:ec:c3:e2:13:8b:ee:39:82:c2:20:76:b5:88:01:
6d:f3:f5:10:82:13:76:a0:a3:20:99:ed:87:40:ff:
35:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:13:FA:02:F7:7C:AD:71:DC:26:B2:9E:49:E9:A7:C7:A1:29:12:1A
X509v3 Authority Key Identifier:
keyid:3C:D2:AA:71:A9:3A:A9:C1:32:7B:73:53:8A:04:78:E4:F7:82:F6:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNKqcak6qcEye3NTigR45PeC9vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/757f2b-4f01-4e70-b3d5-4fdba867e47a/1/PNKqcak6qcEye3NTigR45PeC9vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:bc:10:79:d4:43:d2:52:e6:5a:8f:65:3e:50:9c:0e:c0:98:
e7:90:32:40:b1:6f:ad:1d:56:2e:8c:4b:56:f5:a2:96:1f:ae:
64:c6:fe:28:b1:07:0d:9c:be:7e:41:ca:e2:ff:1b:73:6e:ec:
af:66:10:ea:0b:52:ce:02:9e:5b:be:36:de:11:05:91:a6:85:
90:b6:13:f8:73:97:32:90:11:25:34:f1:76:ce:e3:34:56:86:
28:ff:a4:df:83:9c:66:52:03:f2:09:67:da:23:13:95:f8:6a:
f9:8e:8b:63:ae:b2:e9:6d:11:8b:5c:3e:93:72:7b:58:d5:51:
14:72:41:7c:41:fe:ce:3a:0f:2d:5c:8f:b7:be:49:81:13:7b:
ca:0d:3c:bb:e2:ce:08:9b:8f:fa:8b:47:c1:1f:62:29:02:f9:
d5:43:ff:65:6b:85:07:e3:22:82:30:43:a5:4d:1c:a2:9a:ca:
98:e1:9f:cc:f4:09:b9:69:42:5f:5b:87:9e:8b:37:a6:5c:c0:
6a:04:56:86:cb:8c:25:b4:a3:f6:8b:00:e6:61:58:c1:8d:94:
ef:84:41:6d:0b:a3:a6:70:cc:19:f9:9e:b7:1c:34:b8:09:33:
bd:16:c7:5d:b9:15:9b:d1:17:ec:0d:dd:a9:9a:a7:ba:7d:ea:
39:51:b0:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 16:17:34 2024 by rpki-client on console-fra.rpki-client.org