Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: J8bq373UEm9Pt4tnIPpdos7V62VPDu2V/LeNmx1e7mw=
Subject key identifier: E1:6B:F0:68:6E:8B:64:92:DA:66:57:D9:FF:34:07:9C:0E:C8:DA:29
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 01976EF54D226034392BCF8DF30FFBFA52EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 102B
Signing time: Sat 14 Jun 2025 15:00:59 +0000
Manifest this update: Sat 14 Jun 2025 15:00:59 +0000
Manifest next update: Sun 15 Jun 2025 15:00:59 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: LZAx8Dtt9ihEGYfNLQvmpoGu8CgrF0kGUg6/c1cZvXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:4d:22:60:34:39:2b:cf:8d:f3:0f:fb:fa:52:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Jun 14 15:00:59 2025 GMT
Not After : Jun 15 15:00:59 2025 GMT
Subject: CN=e16bf0686e8b6492da6657d9ff34079c0ec8da29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:da:fc:95:98:bc:6f:4d:7e:a1:19:df:ee:1e:
20:46:7c:a1:83:06:73:51:0d:87:f9:50:14:60:54:
18:d5:ac:17:17:7e:6e:9e:5f:9f:88:ad:15:b9:27:
a7:d2:60:d6:b4:6d:cd:c2:8f:89:dc:98:4c:74:f7:
84:d3:a6:ad:61:54:0e:3d:1c:c1:31:91:42:68:d1:
62:1f:bb:75:c7:df:14:68:14:e1:b7:f4:bd:78:30:
1f:21:f9:c4:41:5e:37:86:45:70:29:40:3a:1f:d4:
7d:18:a5:27:94:ed:72:1f:eb:c7:c7:b7:7a:a7:ff:
37:07:16:75:59:98:d8:a8:75:a5:14:bf:e3:21:a9:
24:95:e1:de:f3:0f:60:61:f8:89:93:4b:06:1a:25:
d3:8c:bb:4e:d9:1c:a2:8b:29:ce:c7:33:0f:16:b8:
13:c2:5f:09:2e:98:b9:10:de:33:58:25:11:b8:c2:
23:a0:c6:ab:01:ad:29:b2:e6:6d:d6:23:a5:53:4e:
69:c1:61:01:40:ea:0e:bf:eb:03:e8:c6:25:e0:5c:
1f:9d:30:9f:28:d9:38:be:61:83:f4:68:36:49:aa:
27:2d:41:cc:60:83:d7:e0:3d:e5:e7:50:1a:4a:fa:
0c:7d:39:5d:09:26:0e:1f:fc:78:2f:d9:07:3f:0d:
99:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:6B:F0:68:6E:8B:64:92:DA:66:57:D9:FF:34:07:9C:0E:C8:DA:29
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:22:d0:a2:53:8d:41:69:cb:b4:f7:c7:dd:46:6f:9a:b2:4d:
fb:fc:f5:3a:dd:56:e9:74:93:56:b6:4c:03:fe:6f:a6:2c:d0:
04:54:30:ff:ff:5c:3a:82:49:55:86:d6:a7:f6:15:24:57:92:
1a:96:b6:1e:20:d6:32:a5:62:31:f3:1e:30:ab:f8:4a:94:7f:
cc:98:1c:df:dd:2f:33:66:af:23:84:87:49:29:d3:d1:69:15:
18:83:85:54:9d:3d:2f:11:0d:7d:30:06:44:16:64:0d:a6:7f:
e5:5b:ef:fb:52:42:8b:74:a3:62:e0:fc:8d:34:2e:61:eb:2e:
28:66:b1:f6:db:90:7d:52:34:17:26:8a:5c:13:17:85:3d:44:
25:fb:3f:76:19:d8:b5:f9:54:98:6f:a1:21:da:65:48:13:34:
d1:61:64:81:43:14:77:70:00:b1:bb:59:2b:17:b0:f3:c7:71:
3b:13:60:ae:6c:c7:76:b9:f9:0a:93:e7:9f:f2:4e:b4:6f:49:
28:1e:92:b8:f8:26:96:2c:46:8f:76:97:28:ec:52:9e:e6:b8:
90:ac:e4:72:7a:74:d4:fa:df:3d:18:23:ca:9b:24:ac:9e:bf:
97:8c:cc:29:3e:95:5e:19:05:46:8b:d5:1c:28:7e:33:b8:37:
63:40:fb:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdu9U0iYDQ5K8+N8w/7+lLvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNzIwMDU0NGY5M2E2NzVmYzhjNzg0MTg1Njk4MGUzOGEz
NTI5Y2IwHhcNMjUwNjE0MTUwMDU5WhcNMjUwNjE1MTUwMDU5WjAzMTEwLwYDVQQD
EyhlMTZiZjA2ODZlOGI2NDkyZGE2NjU3ZDlmZjM0MDc5YzBlYzhkYTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNr8lZi8b01+oRnf7h4gRnyhgwZz
UQ2H+VAUYFQY1awXF35unl+fiK0VuSen0mDWtG3Nwo+J3JhMdPeE06atYVQOPRzB
MZFCaNFiH7t1x98UaBTht/S9eDAfIfnEQV43hkVwKUA6H9R9GKUnlO1yH+vHx7d6
p/83BxZ1WZjYqHWlFL/jIakkleHe8w9gYfiJk0sGGiXTjLtO2RyiiynOxzMPFrgT
wl8JLpi5EN4zWCURuMIjoMarAa0psuZt1iOlU05pwWEBQOoOv+sD6MYl4FwfnTCf
KNk4vmGD9Gg2SaonLUHMYIPX4D3l51AaSvoMfTldCSYOH/x4L9kHPw2Z+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFr8Ghui2SS2mZX2f80B5wOyNopMB8GA1UdIwQY
MBaAFKJyAFRPk6Z1/Ix4QYVpgOOKNSnLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb25JQVZFLVRwblg4akhoQmhXbUE0NG8xS2NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iYzFjNzQtMWUwYS00MDU1LTgwYjgt
ZWZhN2Y4OWJkMGI5LzEvb25JQVZFLVRwblg4akhoQmhXbUE0NG8xS2NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9iYzFjNzQtMWUwYS00MDU1LTgwYjgtZWZhN2Y4OWJkMGI5
LzEvb25JQVZFLVRwblg4akhoQmhXbUE0NG8xS2NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfyLQolON
QWnLtPfH3UZvmrJN+/z1Ot1W6XSTVrZMA/5vpizQBFQw//9cOoJJVYbWp/YVJFeS
Gpa2HiDWMqViMfMeMKv4SpR/zJgc390vM2avI4SHSSnT0WkVGIOFVJ09LxENfTAG
RBZkDaZ/5Vvv+1JCi3SjYuD8jTQuYesuKGax9tuQfVI0FyaKXBMXhT1EJfs/dhnY
tflUmG+hIdplSBM00WFkgUMUd3AAsbtZKxew88dxOxNgrmzHdrn5CpPnn/JOtG9J
KB6SuPgmlixGj3aXKOxSnua4kKzkcnp01PrfPRgjypskrJ6/l4zMKT6VXhkFRovV
HCh+M7g3Y0D7Ow==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:42:34 2025 by rpki-client