Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
File: CLFH055Du3X596_0XnvyuDUw-HQ.mft (raw, json)
Hash identifier: rxbYO1bsnleybjsSKdZEoiufLMAXVowXPTxeHfFlspc=
Subject key identifier: 70:AA:FA:16:C6:59:3B:0C:E3:78:68:BA:95:A4:F8:CA:5C:BB:E2:95
Authority key identifier: 08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
Certificate issuer: /CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Certificate serial: 01977677C61E0DBF8FB67B1728E77E9E031A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
Manifest number: 02F9
Signing time: Mon 16 Jun 2025 02:00:50 +0000
Manifest this update: Mon 16 Jun 2025 02:00:50 +0000
Manifest next update: Tue 17 Jun 2025 02:00:50 +0000
Files and hashes: 1: 7SbxWOq-MRP5ULWQ2099XB6fnsw.roa (hash: 5+GTdZJjZ/hGlJyiza+hMgn0Xvc9DgVXyOpbY9SRSSQ=)
2: CLFH055Du3X596_0XnvyuDUw-HQ.crl (hash: t+lwcfbSQ0olWWEzTrq7PqG+aAYWzJfkvRBa4QQ12K8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 20:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:76:77:c6:1e:0d:bf:8f:b6:7b:17:28:e7:7e:9e:03:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Validity
Not Before: Jun 16 02:00:50 2025 GMT
Not After : Jun 17 02:00:50 2025 GMT
Subject: CN=70aafa16c6593b0ce37868ba95a4f8ca5cbbe295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:68:ed:00:6b:a4:92:60:b7:eb:96:b7:44:6d:
a0:b2:59:9b:f5:eb:f3:b5:af:46:34:97:66:32:a4:
05:a0:8a:61:cb:dd:f6:cc:5c:89:27:40:f7:53:8a:
df:08:32:5b:8d:17:f9:a0:4d:a7:a4:ea:c6:c7:03:
a8:cd:a0:9b:88:b3:2e:5f:e2:23:63:34:28:e8:1e:
e8:5e:60:2d:82:54:1a:08:80:4c:cb:cb:a5:3f:45:
e2:51:cd:93:b3:a1:76:6b:58:b5:b3:9a:7b:48:3b:
5c:87:cf:fe:fb:96:c0:8e:f2:9a:69:22:29:1e:00:
6d:a2:e3:00:62:73:6a:99:05:32:a8:42:97:ea:e0:
d4:8d:1e:18:30:d8:04:46:9c:aa:d8:b2:b8:ad:f8:
a6:17:d9:8d:b9:09:a4:43:91:28:7a:cf:55:6c:20:
75:ae:38:28:9d:9b:fd:e3:5d:fa:3b:89:2a:87:d2:
bd:cb:6d:9d:3e:97:26:70:b7:fb:00:98:d8:62:89:
12:20:9b:96:74:09:77:1b:08:1f:7c:58:02:3e:5e:
9a:9b:5b:94:64:a5:7c:cf:0a:30:1f:92:ee:f3:42:
68:c0:f2:78:0f:c8:33:e3:24:b6:2e:b2:9f:39:09:
21:99:c6:46:2b:10:0d:09:3c:8a:dd:ab:da:07:48:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AA:FA:16:C6:59:3B:0C:E3:78:68:BA:95:A4:F8:CA:5C:BB:E2:95
X509v3 Authority Key Identifier:
keyid:08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:35:e5:6b:e5:ff:63:97:38:ee:39:dc:e9:ba:b7:00:10:62:
f1:07:9a:28:68:33:2f:fe:07:dc:ee:e5:a6:b4:fc:ce:71:ff:
b3:57:81:1b:c8:f8:75:af:53:67:d9:a1:bc:68:60:09:e8:04:
1b:74:8c:dc:fa:af:4f:38:86:e7:af:40:7e:26:f1:75:9c:f9:
01:5f:b0:74:af:8a:5e:56:b8:6c:6f:f6:fa:c4:87:79:4b:17:
07:74:9c:c6:49:6e:ba:e7:01:46:1e:34:bc:91:e3:54:24:24:
82:fb:f3:cd:44:9f:58:51:d4:63:72:83:eb:00:ee:18:c4:b3:
ca:85:ce:1d:d3:a8:cd:fa:3b:c6:4d:37:b2:15:6a:36:b4:ce:
91:0e:aa:14:83:70:f6:d8:3a:f7:93:73:a2:41:97:21:99:bd:
01:f3:2a:da:a8:54:d1:12:43:91:1c:12:8c:e0:cb:87:4a:64:
0b:27:b0:8c:48:3f:f0:6f:51:e9:a5:55:d5:67:61:09:4a:b4:
e3:31:91:1a:b4:e1:43:b2:36:07:e6:5c:8b:f7:20:65:d8:17:
35:6f:bd:22:66:3a:64:8f:b2:9c:79:f5:57:4b:df:20:b2:2d:
60:e1:85:cc:6d:21:4a:28:47:fd:10:64:f5:8b:06:79:e6:b6:
ae:8a:86:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 06:17:40 2025 by rpki-client