Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: CvYIyvga2X/KqY5m6C7S4tz/DxVrntZtmqqavk7HpxQ=
Subject key identifier: 00:30:9A:C6:85:E6:F7:C7:52:46:81:BB:30:24:F2:7F:1B:CC:E2:6E
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 019873E2374DC1D2BA72F0AB5F6EE7321E8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 10B2
Signing time: Mon 04 Aug 2025 07:01:01 +0000
Manifest this update: Mon 04 Aug 2025 07:01:01 +0000
Manifest next update: Tue 05 Aug 2025 07:01:01 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: VyOooM1qlg3Ua14NlLRuvwIcsJF48iZ69rQAYnF12C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:37:4d:c1:d2:ba:72:f0:ab:5f:6e:e7:32:1e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Aug 4 07:01:01 2025 GMT
Not After : Aug 5 07:01:01 2025 GMT
Subject: CN=00309ac685e6f7c7524681bb3024f27f1bcce26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:8c:e5:2d:ce:02:8c:9d:ce:99:0e:e3:69:
b2:90:8f:03:27:10:9b:6f:2e:9c:d8:32:17:7e:95:
70:ef:ae:df:0c:66:23:29:1d:e8:4d:ca:1c:dc:20:
6d:3b:f4:8b:fc:d6:00:94:fc:14:2f:92:92:d7:90:
c5:60:87:07:af:a1:28:62:27:8a:94:a7:71:13:79:
20:34:a5:1b:ce:3b:fa:6a:2e:17:78:1e:29:12:46:
c3:a7:ca:5e:6e:45:50:52:06:9d:73:0b:3d:dc:42:
d3:d1:d6:4e:a9:f4:c6:48:3d:8b:f7:df:38:b1:5e:
52:e5:00:49:3b:87:73:99:1b:76:c9:19:70:08:a7:
10:3b:a8:f6:3f:ff:4c:5d:08:d5:8c:77:7d:2c:a9:
38:3e:c9:de:52:90:05:ee:a4:23:b4:5b:d1:67:59:
40:0d:b6:08:9a:0e:3b:c5:a4:5f:7a:09:9b:93:bb:
68:1e:92:5a:44:1d:0a:83:f3:ce:a5:bd:de:bc:ce:
c1:73:1f:85:ff:41:7d:a2:90:f1:02:42:31:c4:71:
c7:c4:5f:36:fd:68:bd:ff:4b:77:f9:82:87:4e:1f:
46:60:e6:21:b6:bb:4f:8f:8f:e3:76:3e:a1:4b:75:
7a:49:2a:88:da:13:84:74:0b:57:94:f4:58:64:77:
58:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:30:9A:C6:85:E6:F7:C7:52:46:81:BB:30:24:F2:7F:1B:CC:E2:6E
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ba:df:25:d6:02:1d:36:93:88:05:c4:c1:07:c9:7a:93:a0:
1a:11:b2:58:a8:ee:1f:80:35:07:1a:2c:a4:79:04:8e:51:1e:
f9:65:3d:51:fd:20:fb:36:6e:e5:10:ec:ec:74:f2:85:72:cb:
a2:d9:03:71:08:19:22:ad:85:eb:b3:cb:c8:ca:af:61:c8:9e:
bc:50:11:e8:56:0a:0c:a2:13:94:5a:f0:ff:91:74:13:ec:3a:
ad:fe:c1:d7:c3:fd:ad:32:c3:e2:58:dd:f3:c7:d6:63:f2:7e:
f6:86:19:6f:09:fc:ce:3e:84:bb:d2:55:49:22:21:b2:e2:74:
05:a3:b1:1f:26:ce:9d:40:87:44:3f:b6:01:c9:5e:85:e7:f5:
31:aa:e3:50:9b:ba:67:e7:94:5d:e2:fe:23:ff:ea:e8:f3:58:
1d:dc:e0:7a:06:37:85:81:79:17:5d:3a:a6:bf:0d:85:b9:3f:
b8:ea:7d:48:64:53:cc:4f:c5:44:7d:bf:2b:c8:2c:b6:4c:61:
4b:55:ff:8f:fb:11:86:a5:00:3c:40:30:fc:2d:0d:2f:67:1f:
29:b1:a5:e0:9e:97:b3:df:4c:30:44:9f:3f:a1:34:8e:cf:54:
ab:54:90:f7:2e:de:1e:97:b4:87:b5:e3:26:77:af:05:c6:d7:
e5:27:99:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:36:59 2025 by rpki-client