Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: 81fE16MTL72ySFw/ijqMfgHn0ioiFQEe2TrEtqdftYo=
Subject key identifier: 29:FD:0A:9B:D6:1F:F6:F1:FC:F1:1A:EF:31:57:D8:4E:2B:4B:27:3D
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 018F88240642193307DA8C88BB7A593DD870
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 1182
Signing time: Fri 17 May 2024 20:00:13 +0000
Manifest this update: Fri 17 May 2024 20:00:13 +0000
Manifest next update: Sat 18 May 2024 20:00:13 +0000
Files and hashes: 1: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: bCaYMtTq2TA14H3j1rCRfMxcFoxB1CF5hIa8X3s9BqU=)
2: v7KHKA9Gv3M_MNtLx-v2tqBsAis.roa (hash: h1BxJWmT2WOCx6cyv//ByM7HquCCTNawwAC/Jscu1Yc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 17:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:88:24:06:42:19:33:07:da:8c:88:bb:7a:59:3d:d8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: May 17 20:00:13 2024 GMT
Not After : May 18 20:00:13 2024 GMT
Subject: CN=29fd0a9bd61ff6f1fcf11aef3157d84e2b4b273d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:ef:6c:5f:f7:81:da:e1:e6:64:27:05:68:
1b:1a:b0:b3:14:f0:8a:17:26:67:bf:8f:47:7b:f9:
19:d7:fc:26:b9:3f:4b:d4:38:5d:47:e5:4f:9b:94:
84:a7:0d:23:83:31:63:d7:05:4d:94:c9:5d:6e:4a:
5c:35:9c:1a:c1:fc:79:a2:29:8a:c5:dc:02:94:8f:
fb:48:58:8f:b5:79:07:27:1f:31:f8:fc:3f:73:71:
b8:31:25:a7:11:be:d1:29:e3:52:03:7a:66:72:63:
fa:44:42:7a:f1:e9:79:4e:c1:40:53:3b:46:c8:f2:
5c:bf:7b:02:32:13:aa:64:b1:cd:5d:8f:fd:4d:6c:
ee:94:99:97:b3:a8:0f:5f:49:61:93:2b:1e:07:63:
81:3a:72:25:ca:68:e2:c8:09:5b:58:c4:71:f0:29:
c2:92:51:0a:4d:b0:65:ff:5d:46:9a:b1:e1:8c:2a:
69:77:37:a7:59:b0:0c:4c:29:b1:45:2c:9a:79:e1:
7d:3b:e3:d5:e1:a3:b3:30:83:13:16:50:30:6a:04:
37:43:31:12:9b:4a:1e:56:3a:8f:c1:2f:14:86:dd:
0d:fe:fc:f7:15:4d:11:02:d4:34:23:02:45:d4:ee:
2c:d3:03:06:41:21:14:10:0c:0f:b8:73:49:6f:4d:
ec:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:FD:0A:9B:D6:1F:F6:F1:FC:F1:1A:EF:31:57:D8:4E:2B:4B:27:3D
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:97:7c:ea:a7:d6:23:0f:e4:4d:b4:89:38:32:40:da:1a:a2:
43:52:e5:ad:23:0c:c4:71:ff:f0:6d:25:6a:5d:de:ea:b8:c1:
1e:c6:5e:b8:aa:5a:bf:c4:15:fe:68:ce:db:0f:05:75:f4:b0:
62:23:bd:20:84:92:b6:c7:ef:fc:a3:6e:18:21:a3:d8:7b:ec:
d0:37:05:c4:56:62:3a:0d:41:f1:18:e3:f7:d8:70:bd:4d:c5:
2d:55:03:d5:22:a6:70:7a:c7:ee:c1:ca:b6:d2:5b:ff:54:15:
2e:5e:f1:e3:be:1c:fb:99:1e:ab:ca:d2:4c:fe:db:53:eb:70:
8d:d7:aa:d5:d2:15:bb:5d:28:0e:c5:1f:42:10:2f:98:a7:c0:
e1:9e:c0:6e:bf:81:d2:a8:d9:f4:60:3a:f7:13:0e:e6:3c:3f:
f1:2f:93:93:df:52:09:a6:85:af:20:c0:ab:98:37:83:87:36:
5b:4b:bf:a1:7d:b2:0f:31:1e:72:85:03:aa:4e:fd:86:97:bc:
3f:56:50:a8:9a:11:d8:f8:f0:ae:79:a7:36:03:94:7d:8b:b9:
34:a7:7d:0a:4b:ce:49:a0:17:98:c3:d2:3d:f1:42:c0:0d:e9:
52:9a:1d:22:f5:74:d6:88:ea:10:01:41:1a:0f:47:33:ce:66:
47:17:2f:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IJAZCGTMH2oyIu3pZPdhwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjMxYWZjMzZjYjY5NTUwMDdmZTk3ZWQ0YTVlMzE4NWQy
MjcxYmEwHhcNMjQwNTE3MjAwMDEzWhcNMjQwNTE4MjAwMDEzWjAzMTEwLwYDVQQD
EygyOWZkMGE5YmQ2MWZmNmYxZmNmMTFhZWYzMTU3ZDg0ZTJiNGIyNzNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti/vbF/3gdrh5mQnBWgbGrCzFPCK
FyZnv49He/kZ1/wmuT9L1DhdR+VPm5SEpw0jgzFj1wVNlMldbkpcNZwawfx5oimK
xdwClI/7SFiPtXkHJx8x+Pw/c3G4MSWnEb7RKeNSA3pmcmP6REJ68el5TsFAUztG
yPJcv3sCMhOqZLHNXY/9TWzulJmXs6gPX0lhkyseB2OBOnIlymjiyAlbWMRx8CnC
klEKTbBl/11GmrHhjCppdzenWbAMTCmxRSyaeeF9O+PV4aOzMIMTFlAwagQ3QzES
m0oeVjqPwS8Uht0N/vz3FU0RAtQ0IwJF1O4s0wMGQSEUEAwPuHNJb03sLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCn9CpvWH/bx/PEa7zFX2E4rSyc9MB8GA1UdIwQY
MBaAFFzzGvw2y2lVAH/pftSl4xhdInG6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQt
NzM2ZDEyODg4Y2E4LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy80NThlYzMtMDQ1MS00ZTQxLTlhMzQtNzM2ZDEyODg4Y2E4
LzEvWFBNYV9EYkxhVlVBZi1sLTFLWGpHRjBpY2JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJd86qfW
Iw/kTbSJODJA2hqiQ1LlrSMMxHH/8G0lal3e6rjBHsZeuKpav8QV/mjO2w8FdfSw
YiO9IISStsfv/KNuGCGj2Hvs0DcFxFZiOg1B8Rjj99hwvU3FLVUD1SKmcHrH7sHK
ttJb/1QVLl7x474c+5keq8rSTP7bU+twjdeq1dIVu10oDsUfQhAvmKfA4Z7Abr+B
0qjZ9GA69xMO5jw/8S+Tk99SCaaFryDAq5g3g4c2W0u/oX2yDzEecoUDqk79hpe8
P1ZQqJoR2PjwrnmnNgOUfYu5NKd9CkvOSaAXmMPSPfFCwA3pUpodIvV01ojqEAFB
Gg9HM85mRxcvJg==
-----END CERTIFICATE-----
Generated at Sat May 18 00:22:11 2024 by rpki-client on console-fra.rpki-client.org