Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: Ewc67odb8O3rpQZzUYmqbWAj7yKG9SXoSgG3jhGVhNg=
Subject key identifier: B0:BD:02:B9:85:C6:BD:BB:D7:82:F4:1E:C3:3E:84:E9:2B:E6:D3:41
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 019350BE6C59939DF10CCED615EB70A353E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 137A
Signing time: Thu 21 Nov 2024 22:01:16 +0000
Manifest this update: Thu 21 Nov 2024 22:01:16 +0000
Manifest next update: Fri 22 Nov 2024 22:01:16 +0000
Files and hashes: 1: HL3zbPTcxhVqirSBJma1znBaOUA.roa (hash: 7ZR3whBUXhwSo29A4QrdKRJ/028T23eDDNNBAiwMCIU=)
2: TTpjIJZVQURQ8A8mJ3y9vnwGDow.roa (hash: 6EADDvYIFpgkEyZHWqgs5Ww5HF3Qm/1+Yftb44JtAeM=)
3: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: bZiDopMwgzzurwVmxv95krrOa9c0+w1GmGaM/kUbtlg=)
4: sk-J2bl9FP9sIGq-fQ6R1UJSOwQ.roa (hash: cOxOKsYpTElmJkv3L/MlHhNmuV3XsmV42Jm1f6hlpSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:50:be:6c:59:93:9d:f1:0c:ce:d6:15:eb:70:a3:53:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Nov 21 22:01:16 2024 GMT
Not After : Nov 22 22:01:16 2024 GMT
Subject: CN=b0bd02b985c6bdbbd782f41ec33e84e92be6d341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2a:29:d7:9d:30:d2:5f:05:c3:b2:89:52:63:
75:dc:2c:19:a8:86:f0:7f:d0:6d:b7:b0:0e:01:eb:
80:00:44:c2:db:55:30:65:8a:8b:eb:1b:ce:14:a3:
f9:89:b4:15:67:e2:98:b7:3d:47:41:12:e9:17:0d:
a8:e2:c1:7a:ab:91:40:81:bf:0c:b1:bf:c7:4a:d8:
ca:46:c8:da:86:a9:f9:e9:1a:08:e9:a2:b9:2a:0d:
b4:54:97:9f:ba:8a:ac:ab:dc:3f:a9:d2:38:6d:ab:
31:cc:f3:27:f8:1f:a7:6f:74:ac:3e:40:67:80:58:
e9:13:43:b7:7d:e4:56:76:1d:be:28:81:55:e9:bd:
19:2f:30:fc:23:a1:8d:46:8d:dc:53:97:5d:0e:45:
fa:2f:19:b3:7d:e1:07:58:73:b2:b3:2c:43:21:5e:
27:06:43:ab:f3:ec:71:fe:a5:4d:61:bc:87:bb:26:
1f:88:93:b3:6a:98:77:8c:c4:04:6f:8b:4a:f9:ff:
e2:e0:b4:86:e4:8a:e1:0e:4f:5f:3c:6d:e2:90:29:
ac:c4:98:4c:ba:65:0a:b5:bb:e0:79:01:2d:11:57:
78:9b:cc:d4:51:d9:43:4f:af:86:c2:18:68:b5:31:
08:fa:2b:37:15:0b:78:25:e7:b6:e5:4c:5f:21:f0:
13:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BD:02:B9:85:C6:BD:BB:D7:82:F4:1E:C3:3E:84:E9:2B:E6:D3:41
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:ba:ef:87:62:5f:47:5a:93:25:2c:a1:d8:86:c2:58:47:48:
aa:84:46:7d:6c:7c:08:01:42:16:5e:1b:b6:d3:3a:22:ae:c7:
9e:89:32:04:6a:71:72:ae:b9:3d:d0:87:9b:dc:6e:b9:d2:c8:
9a:36:dd:21:80:14:66:69:ec:11:ee:2e:5b:23:23:39:c7:75:
24:89:52:fd:28:a5:ca:63:4b:ef:18:f4:75:e1:2d:4e:c8:c0:
69:fa:bb:36:d3:2e:5c:fe:5a:7c:68:63:b4:5e:d6:78:2c:f7:
36:93:32:7f:2b:02:55:38:c0:3d:bd:9e:00:cd:4f:cc:07:85:
04:86:2a:a8:31:be:27:f4:f5:50:d8:a5:9b:61:03:20:99:49:
15:37:fb:7f:29:ff:41:4e:e2:c4:02:55:eb:be:21:2b:ad:53:
78:c1:9d:f0:e1:31:8e:21:4c:07:b9:48:30:5e:0e:9e:6f:35:
c2:e3:ea:da:2d:6b:c1:a0:de:2d:32:8a:f2:ee:f3:22:7d:9d:
65:bd:e0:3a:45:54:7c:b6:7a:02:93:40:d4:67:9f:9b:91:6e:
bc:4e:6a:e6:9b:47:a6:b5:c7:65:88:8e:47:e5:23:26:cb:76:
dc:1b:78:51:72:49:d3:35:01:59:d4:eb:42:19:22:20:88:40:
3e:02:a7:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNQvmxZk53xDM7WFetwo1PnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjMxYWZjMzZjYjY5NTUwMDdmZTk3ZWQ0YTVlMzE4NWQy
MjcxYmEwHhcNMjQxMTIxMjIwMTE2WhcNMjQxMTIyMjIwMTE2WjAzMTEwLwYDVQQD
EyhiMGJkMDJiOTg1YzZiZGJiZDc4MmY0MWVjMzNlODRlOTJiZTZkMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiop150w0l8Fw7KJUmN13CwZqIbw
f9Btt7AOAeuAAETC21UwZYqL6xvOFKP5ibQVZ+KYtz1HQRLpFw2o4sF6q5FAgb8M
sb/HStjKRsjahqn56RoI6aK5Kg20VJefuoqsq9w/qdI4basxzPMn+B+nb3SsPkBn
gFjpE0O3feRWdh2+KIFV6b0ZLzD8I6GNRo3cU5ddDkX6LxmzfeEHWHOysyxDIV4n
BkOr8+xx/qVNYbyHuyYfiJOzaph3jMQEb4tK+f/i4LSG5IrhDk9fPG3ikCmsxJhM
umUKtbvgeQEtEVd4m8zUUdlDT6+GwhhotTEI+is3FQt4Jee25UxfIfATxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLC9ArmFxr2714L0HsM+hOkr5tNBMB8GA1UdIwQY
MBaAFFzzGvw2y2lVAH/pftSl4xhdInG6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQt
NzM2ZDEyODg4Y2E4LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQtNzM2ZDEyODg4Y2E4
LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFbrvh2Jf
R1qTJSyh2IbCWEdIqoRGfWx8CAFCFl4bttM6Iq7HnokyBGpxcq65PdCHm9xuudLI
mjbdIYAUZmnsEe4uWyMjOcd1JIlS/SilymNL7xj0deEtTsjAafq7NtMuXP5afGhj
tF7WeCz3NpMyfysCVTjAPb2eAM1PzAeFBIYqqDG+J/T1UNilm2EDIJlJFTf7fyn/
QU7ixAJV674hK61TeMGd8OExjiFMB7lIMF4Onm81wuPq2i1rwaDeLTKK8u7zIn2d
Zb3gOkVUfLZ6ApNA1Gefm5FuvE5q5ptHprXHZYiOR+UjJst23Bt4UXJJ0zUBWdTr
QhkiIIhAPgKnfA==
-----END CERTIFICATE-----
Generated at Fri Nov 22 02:27:02 2024 by rpki-client on console-ams.rpki-client.org