Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
File: CLFH055Du3X596_0XnvyuDUw-HQ.mft (raw, json)
Hash identifier: if3gqAHYWBBHDW6iyHuYQkDJ8JUY3sh0Qs//hibhkyI=
Subject key identifier: D2:31:D7:75:F7:57:DF:7B:FB:51:97:5B:87:B0:1E:D4:6A:D6:A3:5C
Authority key identifier: 08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
Certificate issuer: /CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Certificate serial: 01989FDEBE5D5C11B5881E2DA7DDED15558F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
Manifest number: 0393
Signing time: Tue 12 Aug 2025 20:00:31 +0000
Manifest this update: Tue 12 Aug 2025 20:00:31 +0000
Manifest next update: Wed 13 Aug 2025 20:00:31 +0000
Files and hashes: 1: 7SbxWOq-MRP5ULWQ2099XB6fnsw.roa (hash: 5+GTdZJjZ/hGlJyiza+hMgn0Xvc9DgVXyOpbY9SRSSQ=)
2: CLFH055Du3X596_0XnvyuDUw-HQ.crl (hash: 4EMpMv7+mMN8JHiy9uwwJQaNaGPpgtZVdk5p7KStHRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 13:24:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:9f:de:be:5d:5c:11:b5:88:1e:2d:a7:dd:ed:15:55:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Validity
Not Before: Aug 12 20:00:31 2025 GMT
Not After : Aug 13 20:00:31 2025 GMT
Subject: CN=d231d775f757df7bfb51975b87b01ed46ad6a35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:53:44:59:56:58:4f:b3:2d:6d:b2:cf:34:24:
8e:17:2d:25:c3:a2:04:83:4d:69:05:e4:c9:bc:06:
ff:ca:8d:33:12:c8:22:b0:a5:65:b4:30:44:33:f9:
be:d9:00:36:37:3b:39:a9:3f:31:ee:cd:7e:83:38:
55:b7:80:6a:77:a9:a6:c1:61:0f:2f:c5:9c:86:7a:
4f:df:79:2f:89:a3:fb:1a:ca:01:81:91:29:00:11:
a7:54:89:20:17:40:c5:f2:ac:07:82:68:47:cf:ee:
62:cf:1d:04:b7:3c:02:e3:49:f8:57:6a:6d:c5:f6:
57:2a:1f:81:73:ea:f7:ff:7f:30:6f:14:a6:df:c6:
d7:f8:cb:a8:5b:76:6b:9f:06:cd:ce:68:87:20:8d:
73:86:3c:4a:31:a9:e9:b9:7c:4a:70:62:d5:03:10:
e6:f8:6d:a9:3d:99:a4:44:f9:90:e3:80:1b:79:36:
02:f7:a5:30:22:ea:09:73:5c:65:4c:4d:b7:68:d0:
7b:ee:31:ee:49:14:12:ae:c9:f8:5c:4f:43:94:17:
65:bc:b1:08:c9:b6:ad:06:a3:4e:58:b7:c8:3e:e3:
4a:55:f3:98:89:6c:7f:89:9d:61:37:54:24:11:54:
4e:18:97:3e:43:77:ab:4f:0b:af:44:37:d1:1c:21:
86:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:31:D7:75:F7:57:DF:7B:FB:51:97:5B:87:B0:1E:D4:6A:D6:A3:5C
X509v3 Authority Key Identifier:
keyid:08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c3:e1:e7:c0:86:fd:88:ed:7e:aa:bf:4a:8e:54:85:fa:c1:
d3:61:be:dd:2a:57:4e:62:ea:3b:63:dd:1d:15:00:c4:cf:71:
44:ae:a9:66:c6:17:e9:47:c0:27:95:24:9f:f2:a9:f1:a9:27:
10:69:39:d1:5b:f7:c6:89:df:3a:91:46:d1:d7:73:4d:85:6d:
cc:0b:ad:a1:31:ba:fd:7b:97:52:95:b0:05:3a:45:38:c6:dc:
5a:f3:66:d0:1d:e5:33:50:93:ca:0a:38:ba:66:15:b0:ff:43:
e2:fa:89:76:0b:73:10:a7:09:4d:46:f8:fa:10:87:1a:0f:e5:
b9:ae:a1:1c:98:ce:41:41:1e:52:12:8b:37:e7:72:ce:2e:9c:
f3:e8:d4:96:f7:8f:6b:11:44:4b:f7:5c:3c:a2:fa:e2:4a:80:
02:fd:e5:a1:83:8f:49:8b:93:6f:9f:18:35:71:a1:cb:ab:f0:
8a:31:d8:14:58:bf:73:c4:24:98:72:38:b0:45:4a:dd:81:b6:
d4:a4:2e:8d:5f:13:cd:67:65:a2:83:74:07:df:71:9e:b4:04:
44:03:56:1b:c6:b2:b4:0b:48:8b:9f:7f:10:9d:d4:bb:71:86:
7c:d7:66:24:fe:f0:44:4d:9c:28:18:95:26:1b:dc:82:45:0d:
69:f2:f3:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZif3r5dXBG1iB4tp93tFVWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YjE0N2QzOWU0M2JiNzVmOWY3YWZmNDVlN2JmMmI4MzUz
MGY4NzQwHhcNMjUwODEyMjAwMDMxWhcNMjUwODEzMjAwMDMxWjAzMTEwLwYDVQQD
EyhkMjMxZDc3NWY3NTdkZjdiZmI1MTk3NWI4N2IwMWVkNDZhZDZhMzVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA11NEWVZYT7MtbbLPNCSOFy0lw6IE
g01pBeTJvAb/yo0zEsgisKVltDBEM/m+2QA2Nzs5qT8x7s1+gzhVt4Bqd6mmwWEP
L8WchnpP33kviaP7GsoBgZEpABGnVIkgF0DF8qwHgmhHz+5izx0EtzwC40n4V2pt
xfZXKh+Bc+r3/38wbxSm38bX+MuoW3ZrnwbNzmiHII1zhjxKManpuXxKcGLVAxDm
+G2pPZmkRPmQ44AbeTYC96UwIuoJc1xlTE23aNB77jHuSRQSrsn4XE9DlBdlvLEI
ybatBqNOWLfIPuNKVfOYiWx/iZ1hN1QkEVROGJc+Q3erTwuvRDfRHCGGSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNIx13X3V997+1GXW4ewHtRq1qNcMB8GA1UdIwQY
MBaAFAixR9OeQ7t1+fev9F578rg1MPh0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82YWM3M2EtNmI1Zi00MjMyLTliOGMt
MzA1ZTMzZWY4YjI5LzEvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82YWM3M2EtNmI1Zi00MjMyLTliOGMtMzA1ZTMzZWY4YjI5
LzEvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALsPh58CG
/Yjtfqq/So5UhfrB02G+3SpXTmLqO2PdHRUAxM9xRK6pZsYX6UfAJ5Ukn/Kp8akn
EGk50Vv3xonfOpFG0ddzTYVtzAutoTG6/XuXUpWwBTpFOMbcWvNm0B3lM1CTygo4
umYVsP9D4vqJdgtzEKcJTUb4+hCHGg/lua6hHJjOQUEeUhKLN+dyzi6c8+jUlveP
axFES/dcPKL64kqAAv3loYOPSYuTb58YNXGhy6vwijHYFFi/c8QkmHI4sEVK3YG2
1KQujV8TzWdlooN0B99xnrQERANWG8aytAtIi59/EJ3Uu3GGfNdmJP7wRE2cKBiV
JhvcgkUNafLzeg==
-----END CERTIFICATE-----
Generated at Tue Aug 12 22:39:37 2025 by rpki-client