Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
File: HoGZCoqMzX6KT0i7do810mmbeLI.mft (raw, json)
Hash identifier: 6yQ2kJCrZ252JtIrWAZUyfhiBIQLHyI3xnd0urExYEQ=
Subject key identifier: 53:38:71:1B:F4:30:A8:88:BC:F3:54:4A:8B:45:04:D2:E3:B5:B1:98
Authority key identifier: 1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
Certificate issuer: /CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Certificate serial: 019D38D3344C9DEA1ECF1EC4F231E3F83895
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
Manifest number: 0F22
Signing time: Sun 29 Mar 2026 09:00:58 +0000
Manifest this update: Sun 29 Mar 2026 09:00:58 +0000
Manifest next update: Mon 30 Mar 2026 09:00:58 +0000
Files and hashes: 1: Aj338RhXkgr6UJwL54dYD6EL_uA.roa (hash: L6u8GmvhlsMn8ZhoCBvozLBVpXfmfa9tx+tUqGdETYw=)
2: HoGZCoqMzX6KT0i7do810mmbeLI.crl (hash: r9MVJt+iyJs4PgKYlRPbH1mqK8jL/WgeXiVmiPZGuKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:34:4c:9d:ea:1e:cf:1e:c4:f2:31:e3:f8:38:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Validity
Not Before: Mar 29 09:00:58 2026 GMT
Not After : Mar 30 09:00:58 2026 GMT
Subject: CN=5338711bf430a888bcf3544a8b4504d2e3b5b198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:20:79:4c:11:6f:94:fc:a3:0a:af:27:2d:3d:
51:76:63:21:db:82:4f:b6:01:e8:d6:b2:a2:81:e7:
c4:44:81:4a:7a:46:69:84:0f:0c:c4:cc:59:12:1a:
4c:9c:33:4a:61:bf:0c:d8:42:53:54:4e:d2:fc:21:
98:7f:f3:9f:18:c2:eb:d6:8f:f4:a2:4b:bc:e0:ea:
79:c3:ed:3a:07:15:47:50:62:af:a0:0e:09:3d:02:
b3:31:6c:54:6c:56:7d:b3:b0:5a:ea:34:38:94:63:
10:f4:82:b6:d8:54:07:81:23:51:5d:5f:89:aa:e3:
7e:c8:15:07:40:dd:b8:55:99:9c:76:82:a3:6c:53:
ac:8f:0e:5b:3f:ca:dd:ab:78:8f:97:c4:ee:09:e0:
dd:63:7c:01:f2:6d:03:6e:30:63:a7:ca:7b:e2:d2:
df:26:46:6d:af:c6:e5:53:86:35:f8:1f:8e:38:fb:
8d:3b:b2:e0:60:c5:bc:57:ff:ab:dd:38:1a:38:61:
41:f6:6c:b6:d7:ef:34:a2:ab:4c:81:14:cb:e8:b9:
e3:32:e1:fa:9b:d8:33:63:d5:bf:10:e5:71:8d:1f:
3a:09:4a:3d:f1:2a:8d:c2:cf:43:3d:30:3a:23:14:
cc:d2:aa:b4:b3:95:a1:1e:5b:53:ef:dc:b4:89:1b:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:38:71:1B:F4:30:A8:88:BC:F3:54:4A:8B:45:04:D2:E3:B5:B1:98
X509v3 Authority Key Identifier:
keyid:1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:f3:e6:80:aa:9c:0b:1b:8c:e6:4a:c9:15:da:9d:4d:f8:78:
2b:a5:4b:38:50:1e:97:44:73:87:d7:41:06:40:c8:9a:3b:1f:
4d:56:18:16:cc:22:a0:06:e4:64:1a:f2:af:7d:05:b0:c8:69:
19:29:5a:20:c0:09:3f:cb:d1:6e:6f:3c:81:ab:0b:2d:fc:f4:
e1:e0:02:4d:32:94:d4:03:9d:05:06:28:06:81:94:e7:05:35:
8b:fe:22:34:54:19:a9:bd:ef:13:81:0e:14:6c:f4:de:a2:b9:
62:cb:9b:99:c0:81:68:65:b2:55:15:90:49:7f:f2:6b:d0:b8:
c6:d9:ea:36:11:77:c4:4d:c5:42:e8:6c:c4:d8:cf:c1:e9:cf:
89:6c:4a:c8:09:77:82:bc:b1:7d:f7:b7:1f:94:c5:76:3d:82:
93:d7:fb:38:3b:a7:ed:b1:3f:03:ad:42:a6:18:2c:41:3a:92:
bb:26:f3:9a:75:91:e8:2b:12:ef:a9:8e:db:d9:81:aa:9f:b1:
38:1a:42:5c:47:f8:e1:52:f6:ed:8f:98:77:21:cb:3d:19:e9:
9b:dc:0b:d5:e1:5c:ff:0c:47:7f:4f:15:6e:63:62:c5:04:c0:
b6:57:1f:97:2b:99:5d:6e:74:65:bb:24:f7:53:97:93:41:e6:
28:e4:4b:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040zRMneoezx7E8jHj+DiVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlODE5OTBhOGE4Y2NkN2U4YTRmNDhiYjc2OGYzNWQyNjk5
Yjc4YjIwHhcNMjYwMzI5MDkwMDU4WhcNMjYwMzMwMDkwMDU4WjAzMTEwLwYDVQQD
Eyg1MzM4NzExYmY0MzBhODg4YmNmMzU0NGE4YjQ1MDRkMmUzYjViMTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CB5TBFvlPyjCq8nLT1RdmMh24JP
tgHo1rKigefERIFKekZphA8MxMxZEhpMnDNKYb8M2EJTVE7S/CGYf/OfGMLr1o/0
oku84Op5w+06BxVHUGKvoA4JPQKzMWxUbFZ9s7Ba6jQ4lGMQ9IK22FQHgSNRXV+J
quN+yBUHQN24VZmcdoKjbFOsjw5bP8rdq3iPl8TuCeDdY3wB8m0DbjBjp8p74tLf
JkZtr8blU4Y1+B+OOPuNO7LgYMW8V/+r3TgaOGFB9my21+80oqtMgRTL6LnjMuH6
m9gzY9W/EOVxjR86CUo98SqNws9DPTA6IxTM0qq0s5WhHltT79y0iRsk5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFM4cRv0MKiIvPNUSotFBNLjtbGYMB8GA1UdIwQY
MBaAFB6BmQqKjM1+ik9Iu3aPNdJpm3iyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG9HWkNvcU16WDZLVDBpN2RvODEwbW1iZUxJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy8yODhiY2MtMzYwMy00ZmMwLTgxMGEt
NmYxNWE2ZWFkM2NjLzEvSG9HWkNvcU16WDZLVDBpN2RvODEwbW1iZUxJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy8yODhiY2MtMzYwMy00ZmMwLTgxMGEtNmYxNWE2ZWFkM2Nj
LzEvSG9HWkNvcU16WDZLVDBpN2RvODEwbW1iZUxJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhfPmgKqc
CxuM5krJFdqdTfh4K6VLOFAel0Rzh9dBBkDImjsfTVYYFswioAbkZBryr30FsMhp
GSlaIMAJP8vRbm88gasLLfz04eACTTKU1AOdBQYoBoGU5wU1i/4iNFQZqb3vE4EO
FGz03qK5YsubmcCBaGWyVRWQSX/ya9C4xtnqNhF3xE3FQuhsxNjPwenPiWxKyAl3
gryxffe3H5TFdj2Ck9f7ODun7bE/A61CphgsQTqSuybzmnWR6CsS76mO29mBqp+x
OBpCXEf44VL27Y+YdyHLPRnpm9wL1eFc/wxHf08VbmNixQTAtlcflyuZXW50Zbsk
91OXk0HmKORLtQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:57 2026 by rpki-client