Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: argrOL0mYqIPaylczwRcFfXsNi2fUbJBwNI7BA14ahw=
Subject key identifier: 94:14:90:51:64:18:7A:DD:64:20:FF:F2:97:7D:D5:AE:D8:7A:CE:66
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 01967341C69D9BE930ADD6875681D625B111
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 151D
Signing time: Sat 26 Apr 2025 18:00:12 +0000
Manifest this update: Sat 26 Apr 2025 18:00:12 +0000
Manifest next update: Sun 27 Apr 2025 18:00:12 +0000
Files and hashes: 1: 0LO0qT2-0L6mWDwJ3dVrGvaEEOA.roa (hash: m3gjbEV2ZPpf1SrIWWEpb/lM9m2SeM9EF+s0bK96n04=)
2: CXLJsfdv2mQYEw_nRCBRyHgGrls.roa (hash: gIlLTUkZL/5+bXwsRESHghLIgWvhwbD5U5vB0n4lI0k=)
3: GZyq4JhiMN6IbDxHDi387ilVO3Q.roa (hash: RAmDxoFTdOQGRBWibMySEyO1+N/egEhlrBt73Hj0G1U=)
4: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: kN5wI3Ep25QH3tiiUEFfQtL/hTl490uNpmFxQ3pUKtw=)
5: XsnL58BowN54P94Hq8ZFELardLk.roa (hash: HNbFuOKPa1T82T8LpW7Qm3FZ0tR+dmMImgYgvtx3m4g=)
6: Zz42OKsTm8e7N4-UL7iAE7WQUo8.roa (hash: 5tp1DE1mgaUL43CN7zGdBuvgS2VFLrFuAK++O/dGYog=)
7: eGwOE8lbraIFP9l-UBBCUyjN8_w.roa (hash: E3bGB9caMn035nPuIHCWLooaKqDnHxrQ+ZG/yfDBfXc=)
8: obqfL4R2IKMApxxeeUPFE0sW9OQ.roa (hash: 7Ovq+/kB1PpmG+7SGcAWS7Jl70fuixev1vRb1jw0DXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:41:c6:9d:9b:e9:30:ad:d6:87:56:81:d6:25:b1:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Apr 26 18:00:12 2025 GMT
Not After : Apr 27 18:00:12 2025 GMT
Subject: CN=9414905164187add6420fff2977dd5aed87ace66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:33:f5:0d:fd:7a:11:7a:de:2d:b3:2c:3c:
91:2e:88:9a:cd:1c:da:5a:24:dd:a3:8f:75:d7:77:
e9:63:9d:fd:e3:b5:2e:8e:7f:ca:2f:1b:8a:2f:7c:
76:c8:04:95:2b:d9:aa:93:fc:08:33:7e:58:8d:86:
11:8b:56:5b:05:1d:f4:0b:df:e0:2f:b7:0a:95:61:
59:ae:d8:76:ee:80:6a:7c:65:7a:6c:c0:33:e4:53:
8e:44:69:0a:31:a4:3b:34:51:b4:26:33:e6:49:b7:
4f:ec:36:44:4e:71:da:3f:d5:4a:96:76:bc:d3:7c:
6f:e1:23:ad:5d:84:30:d4:97:4c:6b:48:8b:c4:0f:
12:9f:89:8e:22:9c:c6:95:b4:a5:c3:61:f4:7d:a6:
7d:75:eb:24:59:5d:74:63:b6:88:aa:cf:e3:2d:26:
53:b7:9e:b8:d2:02:5a:2b:c1:a2:c5:4f:de:e7:06:
5d:d3:c7:f0:d6:1e:c7:fb:36:6b:c1:d3:0f:9d:1c:
fe:11:5c:e0:5c:30:8e:8b:8b:45:f4:b8:5b:d4:ec:
88:4b:27:a7:79:c2:ab:8a:0c:26:f6:d8:25:51:1a:
ee:aa:7a:94:f5:f3:46:14:22:aa:1e:2d:08:1e:6b:
03:c8:91:86:08:8d:1d:ff:81:92:72:cf:3a:8b:ff:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:14:90:51:64:18:7A:DD:64:20:FF:F2:97:7D:D5:AE:D8:7A:CE:66
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:19:b6:13:6c:d0:6a:02:c2:19:04:ee:82:1e:aa:9d:7b:c1:
3b:0e:60:23:27:ad:17:83:1e:72:22:bb:64:cb:3d:3c:74:7e:
f0:b8:fc:a6:35:c2:87:3e:65:e2:30:24:b8:e8:a6:f1:fa:99:
2a:7e:ea:ca:ee:54:2a:73:08:9b:30:49:45:85:36:62:0f:52:
36:e8:c9:6d:53:fe:df:17:aa:6e:53:e2:50:c1:bc:bb:93:a2:
c3:22:9c:2c:80:eb:03:5b:c6:1a:c7:c4:e6:bc:ed:91:f8:ed:
23:51:47:22:04:aa:6c:29:4b:a9:ab:01:61:c1:97:17:d0:2c:
08:65:3e:11:57:7e:69:fc:aa:c5:93:e9:1c:51:3c:76:5a:2c:
27:25:fe:c7:c3:70:b4:53:85:07:94:cc:f8:a5:10:34:b8:ac:
e6:65:02:3d:2e:d6:87:9d:55:8d:cf:c8:0c:28:a6:69:20:9f:
80:35:2b:55:09:1a:89:48:21:75:61:af:4b:a3:7a:72:79:ff:
9a:56:75:a5:f4:69:83:97:27:13:4f:8b:b3:9a:14:0e:2a:0a:
93:fc:bc:88:fd:02:46:27:c3:b1:36:08:da:0e:37:3f:3e:d0:
59:2c:bc:2b:df:8c:ee:52:8c:51:d7:f0:95:73:19:a9:da:18:
53:c4:60:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:13:56 2025 by rpki-client