Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
File: CLFH055Du3X596_0XnvyuDUw-HQ.mft (raw, json)
Hash identifier: Fhc9jA0KAigEZNUS7qsCxQkvi4jmIbdPUng+k0NOzFs=
Subject key identifier: C4:D0:D9:39:02:46:1E:9A:00:90:20:43:B6:BD:A5:8E:CF:32:F8:E0
Authority key identifier: 08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
Certificate issuer: /CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Certificate serial: 01968322D66C72EF13AB6C75C8C91EE358E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
Manifest number: 027B
Signing time: Tue 29 Apr 2025 20:00:20 +0000
Manifest this update: Tue 29 Apr 2025 20:00:20 +0000
Manifest next update: Wed 30 Apr 2025 20:00:20 +0000
Files and hashes: 1: 7SbxWOq-MRP5ULWQ2099XB6fnsw.roa (hash: 5+GTdZJjZ/hGlJyiza+hMgn0Xvc9DgVXyOpbY9SRSSQ=)
2: CLFH055Du3X596_0XnvyuDUw-HQ.crl (hash: DlRl0yrMYIkduXmi0q/YMZbRmYwBdEww+gmaoB6NlYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 20:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:22:d6:6c:72:ef:13:ab:6c:75:c8:c9:1e:e3:58:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Validity
Not Before: Apr 29 20:00:20 2025 GMT
Not After : Apr 30 20:00:20 2025 GMT
Subject: CN=c4d0d93902461e9a00902043b6bda58ecf32f8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b5:59:39:dc:d4:d6:62:75:f9:36:3b:d3:d8:
cf:6e:0e:60:71:a4:7d:c8:b9:49:e5:82:5e:d7:50:
cd:bd:77:91:e1:ce:de:d7:e2:0a:01:bb:25:17:f3:
76:f3:cf:78:ca:c8:a9:93:33:bd:6c:61:ba:f5:9f:
45:f3:55:87:f0:74:7a:ad:d1:d0:d4:59:9e:c5:bb:
80:8a:dc:25:55:08:7f:bb:f4:9e:55:f7:9c:ee:ff:
1b:ea:a7:00:64:90:27:a3:48:78:be:9f:13:79:07:
11:ae:59:f3:b1:92:f3:4b:d7:67:8f:ed:05:5f:80:
29:c8:2a:8d:f7:3c:b7:6c:60:b5:43:26:c9:d3:41:
9a:49:31:1d:69:e4:4c:66:3b:1c:66:5c:ed:ba:83:
c9:ad:40:d0:84:8b:e0:1d:d1:0f:fd:5b:04:1c:8a:
cf:6a:53:af:64:1f:f9:0e:51:39:c1:84:4f:91:84:
f3:92:24:84:91:51:58:71:ab:40:db:b0:23:03:ce:
b6:8c:69:46:d7:7f:f1:ba:1e:e5:2f:1e:f0:fe:7e:
7f:1e:82:f1:31:04:c6:0e:a4:83:40:a1:bf:4a:ee:
26:12:26:e4:35:9d:96:c9:1b:7e:f3:3c:ac:54:6c:
61:b4:db:a3:8b:2d:17:50:4b:b0:a8:c1:82:ca:d8:
c7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:D0:D9:39:02:46:1E:9A:00:90:20:43:B6:BD:A5:8E:CF:32:F8:E0
X509v3 Authority Key Identifier:
keyid:08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:dd:80:10:35:06:c9:b2:44:fc:c9:7d:13:7b:83:3c:e7:d7:
3f:3b:53:5d:98:52:0e:d7:d5:c0:5d:52:28:3a:ab:96:f6:e2:
2c:7d:c3:29:d6:b1:fe:b2:78:b5:f4:eb:b2:5a:3b:65:60:bb:
12:b0:c4:3b:8c:52:0c:92:d3:8c:1c:e8:4d:63:6b:ea:90:9e:
af:fb:f5:ce:0c:7f:4f:9a:45:a8:01:77:e8:cc:37:f0:44:b8:
1b:b5:ab:ac:55:dc:75:da:38:11:0f:9a:33:cc:f8:a4:aa:3d:
36:ea:fb:ab:b5:ff:e3:d7:8a:35:1c:3d:6f:c0:69:e7:b3:9b:
44:74:40:ff:72:7a:02:a5:c6:2a:cc:db:83:8d:d3:d5:9f:b0:
22:0c:b0:af:ef:53:fe:e4:48:22:ca:0c:05:ee:fa:98:bb:06:
03:cb:48:fc:d1:b6:d1:6d:86:12:2f:b9:f0:09:c9:7b:41:05:
c4:26:f0:c6:19:9b:73:24:eb:a5:ce:01:13:8e:b4:30:49:cc:
b1:48:33:f0:cb:dc:c5:76:11:ad:40:7d:7b:c9:87:dd:f1:3e:
ae:07:c1:f4:f0:ce:10:cd:e2:98:69:83:d4:c1:0a:80:e5:d1:
e6:14:ac:26:bf:6f:93:64:28:dd:ee:2d:f1:25:14:8e:20:65:
42:a8:b9:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaDItZscu8Tq2x1yMke41joMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4YjE0N2QzOWU0M2JiNzVmOWY3YWZmNDVlN2JmMmI4MzUz
MGY4NzQwHhcNMjUwNDI5MjAwMDIwWhcNMjUwNDMwMjAwMDIwWjAzMTEwLwYDVQQD
EyhjNGQwZDkzOTAyNDYxZTlhMDA5MDIwNDNiNmJkYTU4ZWNmMzJmOGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47VZOdzU1mJ1+TY709jPbg5gcaR9
yLlJ5YJe11DNvXeR4c7e1+IKAbslF/N28894ysipkzO9bGG69Z9F81WH8HR6rdHQ
1FmexbuAitwlVQh/u/SeVfec7v8b6qcAZJAno0h4vp8TeQcRrlnzsZLzS9dnj+0F
X4ApyCqN9zy3bGC1QybJ00GaSTEdaeRMZjscZlztuoPJrUDQhIvgHdEP/VsEHIrP
alOvZB/5DlE5wYRPkYTzkiSEkVFYcatA27AjA862jGlG13/xuh7lLx7w/n5/HoLx
MQTGDqSDQKG/Su4mEibkNZ2WyRt+8zysVGxhtNujiy0XUEuwqMGCytjH1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMTQ2TkCRh6aAJAgQ7a9pY7PMvjgMB8GA1UdIwQY
MBaAFAixR9OeQ7t1+fev9F578rg1MPh0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82YWM3M2EtNmI1Zi00MjMyLTliOGMt
MzA1ZTMzZWY4YjI5LzEvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82YWM3M2EtNmI1Zi00MjMyLTliOGMtMzA1ZTMzZWY4YjI5
LzEvQ0xGSDA1NUR1M1g1OTZfMFhudnl1RFV3LUhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh92AEDUG
ybJE/Ml9E3uDPOfXPztTXZhSDtfVwF1SKDqrlvbiLH3DKdax/rJ4tfTrslo7ZWC7
ErDEO4xSDJLTjBzoTWNr6pCer/v1zgx/T5pFqAF36Mw38ES4G7WrrFXcddo4EQ+a
M8z4pKo9Nur7q7X/49eKNRw9b8Bp57ObRHRA/3J6AqXGKszbg43T1Z+wIgywr+9T
/uRIIsoMBe76mLsGA8tI/NG20W2GEi+58AnJe0EFxCbwxhmbcyTrpc4BE460MEnM
sUgz8MvcxXYRrUB9e8mH3fE+rgfB9PDOEM3imGmD1MEKgOXR5hSsJr9vk2Qo3e4t
8SUUjiBlQqi5/Q==
-----END CERTIFICATE-----
Generated at Wed Apr 30 05:31:45 2025 by rpki-client