Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
File: HoGZCoqMzX6KT0i7do810mmbeLI.mft (raw, json)
Hash identifier: hs9FWHAY9dGUBvxaVxO2kYzXO2jFHwPEk2+4TgxM72U=
Subject key identifier: 7E:D1:CB:55:4F:F6:BF:A4:05:18:65:16:78:DC:61:CB:C1:FF:1C:A3
Authority key identifier: 1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
Certificate issuer: /CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Certificate serial: 019A7225960FAE7AC6E3EA2F5A35B2D1A565
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
Manifest number: 0DB1
Signing time: Tue 11 Nov 2025 09:00:56 +0000
Manifest this update: Tue 11 Nov 2025 09:00:56 +0000
Manifest next update: Wed 12 Nov 2025 09:00:56 +0000
Files and hashes: 1: 3_7ZjcR7qXcUgzrUv_gjLsdFhdA.roa (hash: NJmABczjuAOTLl0h6DBnrPjIGOR8/qxj1OB7hIhj4j0=)
2: HoGZCoqMzX6KT0i7do810mmbeLI.crl (hash: +h8l8aytSApaFQQUS3FsI8hi5n8CNTnjt9RR8SDQ5RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:72:25:96:0f:ae:7a:c6:e3:ea:2f:5a:35:b2:d1:a5:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e81990a8a8ccd7e8a4f48bb768f35d2699b78b2
Validity
Not Before: Nov 11 09:00:56 2025 GMT
Not After : Nov 12 09:00:56 2025 GMT
Subject: CN=7ed1cb554ff6bfa40518651678dc61cbc1ff1ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fe:9b:d2:86:38:21:4f:18:b4:b2:cb:ed:9f:
d6:2a:d6:69:0c:05:06:16:02:6d:61:a1:78:30:3a:
73:7e:9c:92:b0:19:3d:73:3d:70:a4:99:54:a2:4e:
9e:3d:ed:c2:b6:13:f8:8d:4e:c8:c3:d9:17:db:de:
80:e0:39:61:f7:f5:05:d5:92:48:5b:54:8b:20:ad:
b7:3d:c2:82:db:a9:38:00:a8:10:27:9a:9f:61:da:
47:0e:0a:8f:86:c0:38:cf:cc:66:00:72:1d:e6:fc:
38:e8:9c:e9:f4:f5:c1:19:6c:89:e0:d8:cf:0b:cc:
f6:88:a5:b9:e8:61:b9:a1:41:f1:c6:b5:43:0c:49:
7c:f8:31:e2:45:41:cc:f2:59:15:49:66:70:a7:7f:
2e:83:db:46:b7:c5:94:e7:66:d1:15:f3:70:8d:a4:
17:3b:78:98:91:ab:99:72:85:27:60:e7:a6:54:ee:
25:3b:86:15:2a:15:ac:2c:51:6c:1f:04:ad:82:dd:
1b:e3:7d:67:35:90:3b:80:4d:3e:60:c1:38:63:c0:
a2:d1:93:58:4c:c0:5b:77:1b:d9:7f:79:86:40:fb:
6c:43:f2:08:89:c4:78:c1:2e:19:7f:ae:ed:17:cd:
72:8a:68:de:e0:be:af:12:f9:df:10:7b:24:97:c8:
15:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D1:CB:55:4F:F6:BF:A4:05:18:65:16:78:DC:61:CB:C1:FF:1C:A3
X509v3 Authority Key Identifier:
keyid:1E:81:99:0A:8A:8C:CD:7E:8A:4F:48:BB:76:8F:35:D2:69:9B:78:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HoGZCoqMzX6KT0i7do810mmbeLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/288bcc-3603-4fc0-810a-6f15a6ead3cc/1/HoGZCoqMzX6KT0i7do810mmbeLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:cb:c7:65:5e:9b:4e:58:4d:23:c8:dc:a2:12:e4:91:18:b8:
be:37:cc:91:bf:43:d9:75:98:f1:28:04:e0:d1:e2:e7:39:b8:
5e:1d:b8:96:b0:c0:4e:5d:16:76:59:09:e4:cd:d5:e0:4e:9c:
20:0c:41:34:2a:86:04:41:7f:a0:00:68:a7:eb:36:8f:2b:3b:
7f:5b:17:da:ce:34:84:ed:9a:46:8e:90:f8:99:34:63:ec:01:
5d:2c:2c:1d:c0:ca:ca:d4:e8:32:30:eb:f7:14:7b:8c:c6:39:
76:c9:ab:04:86:9a:f5:5a:03:78:2b:fb:00:cf:70:c1:44:96:
95:c2:0c:61:4e:54:ad:31:f2:ee:36:0a:5f:ad:f8:a4:61:ac:
6d:28:cd:59:c1:9a:5e:5f:41:e5:c2:d6:21:03:e6:d9:79:7e:
3a:1d:51:03:c2:d3:db:77:7e:69:12:b1:4c:7a:84:14:ca:5b:
b3:75:d8:93:25:fc:ee:4a:0c:9d:0e:93:bc:3e:57:4f:fe:07:
fe:67:a7:ff:6c:c6:ca:a8:52:2b:e7:01:fa:c2:c4:72:f9:06:
b4:60:8c:47:12:29:21:6e:70:1f:de:c2:d0:70:cc:81:e5:d0:
69:34:67:fd:29:c9:eb:cb:1c:5d:7d:02:86:9b:11:7b:57:b3:
10:77:f9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:45:48 2025 by rpki-client