Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
File: HoGZCoqMzX6KT0i7do810mmbeLI.mft (raw, json)
Hash identifier: V5rjXkpWgmVhJ79iLin8cz26bOnDJTMAKZjz+mHgvRk=
Subject key identifier: 30:76:A2:A8:0E:9C:17:D0:55:FB:E0:E4:C3:AD:3A:7B:DD:0D:84:70
Authority key identifier: 1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
Certificate issuer: /CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Certificate serial: 019653B6CE09C3BA681CAAEC691103050F63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
Manifest number: 0B8F
Signing time: Sun 20 Apr 2025 15:00:11 +0000
Manifest this update: Sun 20 Apr 2025 15:00:11 +0000
Manifest next update: Mon 21 Apr 2025 15:00:11 +0000
Files and hashes: 1: 3_7ZjcR7qXcUgzrUv_gjLsdFhdA.roa (hash: NJmABczjuAOTLl0h6DBnrPjIGOR8/qxj1OB7hIhj4j0=)
2: HoGZCoqMzX6KT0i7do810mmbeLI.crl (hash: SPtq00FsRSlp4dBXMxzweVCkB4eMBLsBzXzWptxujtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b6:ce:09:c3:ba:68:1c:aa:ec:69:11:03:05:0f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Validity
Not Before: Apr 20 15:00:11 2025 GMT
Not After : Apr 21 15:00:11 2025 GMT
Subject: CN=3076a2a80e9c17d055fbe0e4c3ad3a7bdd0d8470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4a:5d:67:ca:e1:2d:68:63:3c:21:41:55:49:
10:2c:f7:5d:18:4a:cc:b4:0d:99:ed:01:fe:b4:ce:
ba:ea:9a:74:dc:1c:78:df:87:46:65:58:e4:14:6a:
39:f8:a8:f4:34:64:91:07:33:63:98:14:28:d2:25:
99:6c:4c:a1:9a:d6:81:2b:92:da:46:04:bf:43:cc:
68:70:5c:15:eb:c7:77:49:46:91:74:d8:6e:76:41:
3c:2e:cd:5a:b2:e8:8d:9f:36:a0:d4:4c:f2:22:3e:
78:53:bf:6c:7f:9e:58:f6:6c:fe:d2:9e:58:84:7b:
1b:c6:a1:08:7e:54:6e:ba:10:7e:53:cb:0b:83:ce:
9f:ed:a9:36:b3:72:1b:e3:6c:d9:20:6f:1e:c2:fe:
ff:38:d9:10:95:67:75:06:b1:44:85:06:64:81:b4:
55:b6:d5:38:4e:c0:91:5b:6c:fd:64:f1:c2:f8:98:
28:0c:9d:c2:a5:bf:c5:bb:e4:07:3d:2c:36:be:a9:
bf:02:36:04:2b:05:99:0f:aa:cb:05:d6:b7:c4:7a:
24:29:c3:d1:70:e0:70:23:cf:0e:c6:42:5b:6f:3d:
e3:56:97:48:db:c3:38:c8:5a:de:20:ab:2e:fb:84:
79:1b:80:1a:3d:02:89:43:7b:f5:9f:9d:dd:5d:21:
ef:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:76:A2:A8:0E:9C:17:D0:55:FB:E0:E4:C3:AD:3A:7B:DD:0D:84:70
X509v3 Authority Key Identifier:
keyid:1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ce:f8:77:4a:88:ac:87:5c:93:09:3e:43:0b:51:0b:f3:86:
73:f2:4b:85:44:cf:09:1b:e8:ca:aa:14:16:ad:1f:ff:bc:b9:
a7:29:d2:37:f1:9d:20:46:0d:b4:8a:e6:fb:2c:05:c5:84:c2:
0e:05:81:dd:eb:11:c9:58:2e:e1:98:b6:8e:45:6e:96:c9:e4:
4b:81:b1:25:bc:6e:f9:14:46:9c:24:1b:35:01:5a:cc:db:8b:
f4:ac:a5:ce:6e:8b:00:ec:62:1d:d2:3a:a4:6e:60:49:6a:8e:
2d:45:02:94:07:db:b3:99:c8:4b:6f:00:05:41:7c:82:3a:7b:
bd:5b:2e:de:89:7c:3c:e9:3c:5f:15:67:25:0f:fe:ec:0e:ec:
0a:02:f4:e2:11:73:cc:69:5a:48:8d:b3:60:22:06:6e:20:a2:
ef:42:42:56:60:a0:fa:db:52:b4:00:13:b4:42:da:aa:71:f7:
62:e8:ec:8f:e2:d1:05:a4:b0:e5:03:70:b2:71:c8:b2:63:b2:
79:3a:42:9d:32:5a:25:59:a5:a9:28:7e:80:51:02:21:07:e4:
46:15:f2:99:62:de:60:1f:fa:78:04:43:61:62:54:1a:9c:8d:
e0:45:f4:26:20:11:f6:86:2e:2c:2a:ee:28:7f:b1:be:e1:de:
25:89:cd:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:38:59 2025 by rpki-client