Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: QAXTj0IN7MYOj/rrGCUEjdOm+6hxJxN2vqTQuUhG114=
Subject key identifier: 41:71:3F:14:E1:49:4A:80:7A:2A:A1:75:91:88:0E:B6:3C:C2:A1:83
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 01901C33654E94553193FD11148FB96E7629
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 11CF
Signing time: Sat 15 Jun 2024 14:00:48 +0000
Manifest this update: Sat 15 Jun 2024 14:00:48 +0000
Manifest next update: Sun 16 Jun 2024 14:00:48 +0000
Files and hashes: 1: HL3zbPTcxhVqirSBJma1znBaOUA.roa (hash: 7ZR3whBUXhwSo29A4QrdKRJ/028T23eDDNNBAiwMCIU=)
2: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: NbwpuipgJwPHev1OgBTlkAL5ugLcQHTgHu8xOYf6khY=)
3: v7KHKA9Gv3M_MNtLx-v2tqBsAis.roa (hash: h1BxJWmT2WOCx6cyv//ByM7HquCCTNawwAC/Jscu1Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 16 Jun 2024 11:16:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1c:33:65:4e:94:55:31:93:fd:11:14:8f:b9:6e:76:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Jun 15 14:00:48 2024 GMT
Not After : Jun 16 14:00:48 2024 GMT
Subject: CN=41713f14e1494a807a2aa17591880eb63cc2a183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:77:e7:b0:2b:cd:52:57:10:14:bf:94:52:81:
d3:dd:75:28:f5:a4:f4:c6:73:b3:0f:99:18:5d:47:
bb:cf:61:74:ff:1c:40:7c:e1:17:83:18:c2:a4:6e:
76:43:96:d9:4c:38:38:22:9f:14:6c:77:74:0a:21:
6f:1f:4e:4e:83:32:09:91:27:27:eb:64:05:ae:2a:
8d:e6:10:5c:57:13:3a:ec:f6:dc:74:0c:a4:7f:36:
20:00:11:aa:8b:74:3b:78:9f:c8:b5:1a:9a:81:ed:
0a:6c:68:db:d2:ba:d7:c8:ee:ae:be:af:d9:d5:85:
ad:dd:96:5a:9a:d0:1b:bf:75:d8:fc:18:cf:ae:a6:
c8:e0:6c:d5:ed:8b:8c:d0:d6:19:27:00:e0:cc:5c:
71:d2:8a:05:32:a5:71:6b:51:ff:38:04:53:64:41:
88:f6:e6:f7:2f:0e:68:37:41:eb:36:1c:ef:f4:d7:
e6:f7:ac:02:2f:6c:28:4c:d6:0f:37:69:a7:9e:bf:
04:77:f0:e4:f1:69:ef:a1:50:6d:46:d1:c7:f6:a4:
97:60:f7:e7:90:87:50:19:3b:49:9b:cd:f5:2e:9c:
e8:a8:6f:74:0f:6a:a3:ac:87:00:b4:b8:58:a9:f5:
55:fc:9c:9b:20:e2:11:c8:7b:a1:6a:e4:3f:d3:2d:
47:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:71:3F:14:E1:49:4A:80:7A:2A:A1:75:91:88:0E:B6:3C:C2:A1:83
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:6b:2f:0c:c9:ee:9b:5a:36:f5:96:57:29:21:f7:f8:ad:49:
80:2a:5f:07:f8:e2:1d:da:1e:98:11:ea:f4:da:6e:0e:3e:4c:
f2:73:7a:5f:fd:98:15:1e:8d:35:8d:27:4b:e8:66:03:43:c4:
9d:61:ad:f5:84:6a:41:3c:45:d7:3b:ae:9a:c3:02:63:1f:c1:
5c:59:e3:ad:ed:ad:7d:cd:d2:32:0c:48:ea:5d:d0:91:fb:6e:
72:d1:f1:a2:65:50:5d:f2:df:de:27:33:29:ef:96:f3:e3:eb:
6a:e6:32:53:cc:45:79:52:40:97:a2:30:81:4f:b2:c8:9f:77:
26:bf:de:34:f9:ff:e1:59:d7:c6:85:1d:61:90:61:04:df:d3:
0c:07:2f:3a:d2:73:93:c5:1b:d9:28:a6:b5:80:c9:1a:6f:d5:
e4:60:ac:6f:ce:4a:30:43:67:1b:c5:93:c0:e9:4f:41:f0:6c:
fb:ab:39:d2:d3:82:59:e9:46:59:2b:43:f4:57:88:74:e1:54:
0b:12:70:94:dd:6e:d6:30:88:90:ea:48:30:fd:9c:a8:75:12:
f2:77:9e:f8:7e:7c:71:55:20:bd:d9:9b:93:b8:79:09:87:d8:
db:da:3f:23:59:12:a0:93:03:01:ce:1a:95:75:bb:77:ad:43:
e5:18:7a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 15:35:28 2024 by rpki-client on console-fra.rpki-client.org