Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
File: CLFH055Du3X596_0XnvyuDUw-HQ.mft (raw, json)
Hash identifier: pdW6hr13ZLrrOoieNGLgV2b//wSCrk5rqvx9tbtVP4Y=
Subject key identifier: BC:CF:0C:88:DD:1A:2E:36:44:B2:E6:85:BA:E4:42:0C:42:08:3E:2C
Authority key identifier: 08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
Certificate issuer: /CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Certificate serial: 019DA2D2E62CECF2B2954731CBEE9B154C1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
Manifest number: 062C
Signing time: Sat 18 Apr 2026 23:00:23 +0000
Manifest this update: Sat 18 Apr 2026 23:00:23 +0000
Manifest next update: Sun 19 Apr 2026 23:00:23 +0000
Files and hashes: 1: CLFH055Du3X596_0XnvyuDUw-HQ.crl (hash: hBxwAPYbrYFRAJz2FZ4O1rOxjIpPWbAnyvuSv2oVnoE=)
2: xhzE5qx5c_vKPAy0deGs6eofNZ0.roa (hash: jXZvydAfDIyrWuRlwsg2DPksah0YrS3WxzlZdKuIQXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:d2:e6:2c:ec:f2:b2:95:47:31:cb:ee:9b:15:4c:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08b147d39e43bb75f9f7aff45e7bf2b83530f874
Validity
Not Before: Apr 18 23:00:23 2026 GMT
Not After : Apr 19 23:00:23 2026 GMT
Subject: CN=bccf0c88dd1a2e3644b2e685bae4420c42083e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:42:77:82:2a:89:a7:3d:60:69:3d:a9:00:
9b:1c:83:d8:d4:c5:09:9c:11:4f:30:9c:6e:fd:1c:
1c:86:f5:59:94:d6:92:2e:64:94:34:aa:a6:66:af:
a0:34:21:22:0c:c2:12:17:98:02:58:20:96:e1:07:
84:f8:13:61:fa:8e:37:cf:3d:77:3e:45:ca:1c:2c:
fb:d8:b4:f7:73:ca:e9:d6:29:2f:aa:6e:4e:a3:fc:
5d:8f:a7:86:83:87:18:a1:43:12:83:7c:29:d9:8e:
c0:37:e9:36:e0:4f:e4:40:9a:e0:a7:82:27:49:42:
67:cd:0b:00:bb:81:4d:00:89:d5:4e:8e:b1:92:ab:
1d:91:49:36:32:39:41:5b:b5:99:bd:13:13:6a:3e:
3a:65:d1:ce:c8:c2:7c:48:a0:0e:ae:dc:b9:3f:2e:
1d:9a:05:72:c6:71:84:d5:7a:c3:35:36:88:28:94:
aa:83:2d:ad:68:46:70:1f:82:6b:f9:36:4e:09:a0:
40:a7:09:4c:27:e9:20:ed:92:c8:6a:2c:86:3e:56:
f1:b7:9d:47:d3:c7:40:5e:87:f5:63:5c:c7:ac:92:
60:98:d1:62:69:12:26:89:70:4f:f1:49:58:e2:dd:
de:b5:c8:ab:1f:8f:03:67:70:36:f1:60:49:4a:9d:
af:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CF:0C:88:DD:1A:2E:36:44:B2:E6:85:BA:E4:42:0C:42:08:3E:2C
X509v3 Authority Key Identifier:
keyid:08:B1:47:D3:9E:43:BB:75:F9:F7:AF:F4:5E:7B:F2:B8:35:30:F8:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CLFH055Du3X596_0XnvyuDUw-HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6ac73a-6b5f-4232-9b8c-305e33ef8b29/1/CLFH055Du3X596_0XnvyuDUw-HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:2a:32:53:88:59:95:97:f3:fe:e1:8e:a5:42:98:4e:94:fd:
b4:e0:9b:d9:55:e2:bc:f1:37:c0:9e:c4:c7:9f:e5:e9:e0:41:
91:ba:c7:6d:f5:e2:1e:e2:30:7a:b2:48:07:55:16:9b:41:f2:
74:14:64:1a:fd:24:4e:3c:78:e1:00:19:30:19:82:5a:4f:32:
a2:46:7d:ab:cd:3a:ae:85:e1:71:a2:09:54:57:35:dd:e9:d9:
61:8c:70:6d:e9:4e:d6:52:df:04:62:da:1a:84:30:61:60:fc:
01:31:33:70:29:c3:4c:53:c4:90:b6:b1:48:a4:15:88:0c:19:
6a:34:37:3e:01:ed:0d:32:fa:2d:cd:68:d7:a7:dd:02:24:3c:
12:8d:50:9c:ff:17:22:c6:60:07:f6:7b:45:a8:21:2a:6c:6e:
27:11:cc:87:ef:16:4b:af:1a:e6:65:89:ac:5e:e7:4e:e0:28:
6e:e8:fe:11:56:55:7d:b8:65:69:63:47:2b:89:c2:9d:56:1c:
4d:3a:35:47:f1:ee:45:cc:cb:45:ca:be:ca:df:9a:7e:11:5c:
18:98:4b:97:c6:25:bb:ef:a7:f8:23:8c:8b:1b:26:1f:b8:4e:
b0:28:e3:87:bb:e0:d5:e5:15:e7:e6:ab:6a:5d:72:49:a7:29:
71:7c:44:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:52:57 2026 by rpki-client