Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
File: HoGZCoqMzX6KT0i7do810mmbeLI.mft (raw, json)
Hash identifier: S6pc03EnVr0r+0tfHvg4CnB5zcMrzt/5eZrn9Zf6ScY=
Subject key identifier: FB:B1:25:E8:4B:3A:02:26:AC:17:C6:2F:22:00:AB:69:3F:C0:1D:E0
Authority key identifier: 1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
Certificate issuer: /CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Certificate serial: 0199221F4C5A52694AC620A15513EC40E0F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
Manifest number: 0D03
Signing time: Sun 07 Sep 2025 03:01:40 +0000
Manifest this update: Sun 07 Sep 2025 03:01:40 +0000
Manifest next update: Mon 08 Sep 2025 03:01:40 +0000
Files and hashes: 1: 3_7ZjcR7qXcUgzrUv_gjLsdFhdA.roa (hash: NJmABczjuAOTLl0h6DBnrPjIGOR8/qxj1OB7hIhj4j0=)
2: HoGZCoqMzX6KT0i7do810mmbeLI.crl (hash: 25g844xpVQe6UWlO+qjWzKkhzKFEKT7y2oHFGLrYxw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:4c:5a:52:69:4a:c6:20:a1:55:13:ec:40:e0:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Validity
Not Before: Sep 7 03:01:40 2025 GMT
Not After : Sep 8 03:01:40 2025 GMT
Subject: CN=fbb125e84b3a0226ac17c62f2200ab693fc01de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:88:51:2c:e3:48:01:b3:7a:f9:4e:9b:70:
59:53:dc:82:4e:96:ee:93:06:1f:87:2c:ee:57:e7:
a1:28:65:ca:0a:c5:6b:1e:a2:7c:72:54:94:50:33:
cb:3c:ad:3f:0f:66:ef:22:f9:e7:0c:2c:84:fd:fa:
b5:58:84:1e:60:83:e8:0c:43:1f:86:0b:04:5e:9d:
d3:dd:dc:51:bf:7d:a7:7e:4d:de:71:61:92:14:e9:
43:60:4a:2d:4d:ea:00:87:5c:05:6d:f8:d9:05:71:
a9:9b:3e:02:d1:54:41:50:51:2f:35:14:4e:07:1c:
11:9a:5a:fa:4c:52:fd:cc:a9:6b:df:f5:be:9f:9d:
ee:ed:51:30:7d:a9:86:71:7d:da:23:ab:ba:6e:ec:
9c:d8:d2:7b:18:cc:40:ad:d9:9d:a8:a9:39:28:84:
36:ee:31:b6:95:5a:17:11:0c:7e:41:76:aa:fc:62:
b0:6b:b4:6b:c5:04:fa:35:c7:39:01:cd:47:41:f6:
c0:75:5f:f2:b6:f4:cd:41:92:72:45:be:2e:36:3e:
0e:b7:2a:82:3d:7d:f1:62:7a:d7:1e:d1:7f:b1:21:
db:17:b8:81:de:d1:45:05:bb:77:ee:57:a1:c4:f8:
2f:2e:2a:58:4d:96:f1:0d:ac:fe:01:70:51:bc:f1:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B1:25:E8:4B:3A:02:26:AC:17:C6:2F:22:00:AB:69:3F:C0:1D:E0
X509v3 Authority Key Identifier:
keyid:1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:47:f1:68:f2:bb:f0:67:a1:14:5f:fd:21:6a:fd:a8:ba:5d:
fe:f9:4a:e7:16:34:b7:40:88:83:4d:b7:4f:a7:51:88:8d:b3:
4c:d3:71:fd:9c:da:07:36:43:eb:a3:2e:24:c6:51:80:97:f1:
67:30:41:62:20:a1:c8:f8:0d:59:af:55:1a:51:3b:da:59:f6:
f9:52:f1:25:5f:27:97:6f:96:93:6a:31:d2:3d:c1:39:18:e8:
08:7d:4c:97:be:c8:60:6a:cc:5f:e2:7b:0a:90:00:7c:70:4e:
0f:62:97:7d:6b:d8:32:6c:a7:61:8d:67:e6:ff:5e:7f:07:c6:
3e:44:c3:8f:1c:0d:c1:9e:87:2a:f9:52:61:26:85:be:c6:27:
be:06:c4:bd:51:75:3b:06:a9:fc:85:52:74:09:fd:06:c2:79:
14:c3:e2:8d:92:cb:a0:0a:47:a5:06:d9:8c:05:a1:bd:e7:fa:
5d:5b:a6:b7:bc:3e:e3:e5:b6:2d:22:a5:b9:23:6a:7c:02:e0:
b0:b6:3d:1c:69:a2:6b:82:0d:ce:ad:9d:94:c7:2b:2c:e1:ee:
f1:fa:df:52:21:85:5d:25:1c:c4:ce:15:4a:09:0a:58:d8:84:
f2:95:d9:6a:37:32:6f:15:4b:dd:5f:c7:3d:a8:0d:ee:6d:8f:
32:97:b5:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:05 2025 by rpki-client