Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
File: CLFH055Du3X596_0XnvyuDUw-HQ.mft (raw, json)
Hash identifier: SFITuXfXf3DgKm/QLhBVF+0OQJg8gc83d7G6hNy+sXA=
Subject key identifier: 26:22:9A:CB:9C:A8:9D:27:E7:82:43:93:95:CC:C2:22:13:B5:BB:15
Authority key identifier: 08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
Certificate issuer: /CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Certificate serial: 019EBEB5A8105ACF08A041CE3FF4D5E7F375
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
Manifest number: 06BF
Signing time: Sat 13 Jun 2026 02:00:36 +0000
Manifest this update: Sat 13 Jun 2026 02:00:36 +0000
Manifest next update: Sun 14 Jun 2026 02:00:36 +0000
Files and hashes: 1: CLFH055Du3X596_0XnvyuDUw-HQ.crl (hash: gGg7UvHjyVV+AcrGUEjg9HssPzQCv1F1EAj0HOY1scU=)
2: xhzE5qx5c_vKPAy0deGs6eofNZ0.roa (hash: jXZvydAfDIyrWuRlwsg2DPksah0YrS3WxzlZdKuIQXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b5:a8:10:5a:cf:08:a0:41:ce:3f:f4:d5:e7:f3:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Validity
Not Before: Jun 13 02:00:36 2026 GMT
Not After : Jun 14 02:00:36 2026 GMT
Subject: CN=26229acb9ca89d27e782439395ccc22213b5bb15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:46:9b:a5:51:6d:0c:b2:5b:6e:dc:50:83:
5a:02:be:2c:07:e5:38:09:34:ce:11:a1:6a:f6:80:
c0:23:0d:0f:d6:c3:08:92:30:89:8c:42:5f:d8:10:
e0:0c:ad:d4:fe:76:a5:e6:62:7d:a1:e5:a4:fd:cd:
0c:cf:83:a4:77:ba:f9:d9:ff:95:37:39:be:e9:40:
0d:e5:fa:a1:96:bf:8e:e7:08:6e:29:9f:f6:e0:a2:
5f:7c:23:3f:7f:46:c0:22:f5:ad:05:83:77:51:15:
4e:fd:26:d5:ef:95:f8:71:57:da:d0:15:27:33:a4:
32:33:c0:a7:a4:fa:4a:3c:43:0f:2d:13:01:2b:73:
f3:80:0c:eb:59:cd:9f:ca:5e:10:09:64:04:ac:60:
29:1d:72:4d:59:a6:cc:5d:b4:4b:04:56:bb:c6:91:
93:ee:34:02:b1:71:12:2e:c7:80:74:c3:a9:f2:4d:
f4:61:2b:9a:bb:1c:ff:f8:c5:e6:ea:25:17:3e:3a:
ff:41:19:87:60:f4:77:75:af:67:83:62:95:db:1e:
5e:28:22:a6:05:7c:95:6e:6b:c6:c4:ee:61:da:7b:
52:0b:88:0b:01:5a:31:20:ed:7a:6d:3b:e6:10:e0:
46:d5:8b:34:4a:b9:dc:f2:96:c4:6f:d2:ee:02:30:
bf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:22:9A:CB:9C:A8:9D:27:E7:82:43:93:95:CC:C2:22:13:B5:BB:15
X509v3 Authority Key Identifier:
keyid:08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:44:e5:eb:45:c5:9e:fd:45:a8:7d:2e:ab:d7:10:73:31:34:
43:5d:45:26:3e:1f:42:f5:b5:8d:4b:cc:63:a6:17:99:c5:82:
3d:39:44:a5:69:54:2c:98:f0:2c:7b:37:5d:69:4d:f6:7e:42:
cf:9c:c5:cf:4a:17:67:5a:77:17:bf:af:2d:4e:b9:71:46:80:
c2:80:f3:2c:f7:d6:2e:2f:9c:52:7a:44:2f:e7:80:af:a1:18:
f4:e6:f8:ea:60:62:0d:2c:fd:74:fb:e6:e7:a5:9c:d1:6c:ee:
4a:d8:b0:70:82:61:50:62:1f:8d:9a:31:1d:09:81:77:d4:6a:
05:47:f9:e5:88:f8:d4:34:84:78:be:bd:65:69:1f:eb:41:53:
78:89:f9:1b:1b:a5:e1:55:cb:19:f9:1b:54:ae:b3:b4:86:cf:
80:b1:0f:5c:22:b4:20:db:c5:36:f0:59:15:a1:6d:c0:a7:b7:
49:e4:62:66:89:ab:6a:af:53:46:4e:36:ab:b3:c8:17:e2:fe:
b2:b3:05:70:96:e8:d5:f3:3d:9b:0d:57:7c:54:a1:4c:0e:65:
5b:8a:5b:ea:19:7b:7c:c7:31:cd:90:32:ed:cb:8e:9e:ff:f7:
9d:3b:f1:8f:14:a0:d4:27:cb:c5:f5:45:83:5f:d4:c4:61:e3:
a0:00:11:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:36:19 2026 by rpki-client