Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: OokBi2o95rnRfqEu9S7Nvl/KOXLBJmedeZACYJrSG30=
Subject key identifier: C3:31:B9:8B:05:73:30:A1:CF:A4:B8:13:D6:AB:91:ED:C8:1B:9D:33
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 019D99626385CE9DDF177DD4667A90887127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 135D
Signing time: Fri 17 Apr 2026 03:00:55 +0000
Manifest this update: Fri 17 Apr 2026 03:00:55 +0000
Manifest next update: Sat 18 Apr 2026 03:00:55 +0000
Files and hashes: 1: Z2uEQbE7L2pDV1J90F-WHp-FeRc.roa (hash: gG4qjMeD/GD4iye01V4m4U9isqUINl3gT+i69LWAi7I=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: 528bPw0NdHzMS7kRSlU4sc8qR/G4k0vooWTcQmJW5Zc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:63:85:ce:9d:df:17:7d:d4:66:7a:90:88:71:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Apr 17 03:00:55 2026 GMT
Not After : Apr 18 03:00:55 2026 GMT
Subject: CN=c331b98b057330a1cfa4b813d6ab91edc81b9d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:f7:08:77:90:87:17:59:d5:9d:da:93:a8:
2f:ee:2c:f0:1a:c7:40:4a:a9:b2:dc:f6:59:44:e1:
df:d2:55:be:de:e8:88:cb:00:28:e8:73:97:d9:30:
69:fc:0d:1a:25:01:dc:f0:aa:b4:ba:b2:ac:ff:fe:
2f:13:3b:1f:88:3d:39:44:3f:96:b4:a4:8e:e0:53:
99:0b:29:05:64:55:3d:0f:2c:2c:d9:ea:78:8b:4a:
34:0a:70:0b:5a:ab:bf:d4:f7:59:4b:9b:0b:bf:6a:
6e:37:dd:90:93:c9:d0:d5:e4:08:04:a5:5b:68:be:
82:f9:18:d0:d4:d9:cb:00:8c:6b:83:d3:d9:e4:fa:
5f:80:4e:03:50:d5:1c:63:97:46:8e:f1:bb:14:8f:
fa:a3:a2:3d:26:7f:a4:1b:7a:04:db:07:c1:de:5f:
88:9b:2a:0a:81:8b:a1:81:50:9c:0c:74:43:ea:6b:
e8:9b:46:0e:b3:67:d0:7f:28:be:b5:14:f7:8d:d7:
83:bf:e9:72:2b:3c:5f:d0:99:63:60:ad:ee:88:f6:
6f:eb:67:04:f5:b6:26:13:a7:13:0c:88:46:24:9e:
d4:21:54:26:1c:ae:6f:2e:0d:99:c3:d8:45:ab:c4:
54:6a:07:7c:76:40:ba:4a:59:24:8d:8f:71:a3:08:
2c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:31:B9:8B:05:73:30:A1:CF:A4:B8:13:D6:AB:91:ED:C8:1B:9D:33
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:38:0b:e9:eb:b5:77:f1:f2:2d:29:6c:af:11:f3:00:59:bd:
c0:26:72:9a:bb:ef:fb:eb:f1:27:bf:f7:ad:76:1a:03:ce:24:
ef:03:ce:f9:ee:b2:d8:62:d1:70:43:8e:32:63:8d:09:e0:69:
9f:bf:7a:c7:d6:9f:dc:b9:22:83:f0:b6:cf:54:95:fb:a4:40:
d0:0f:d3:9a:98:ae:11:b6:0c:11:c6:d2:6d:f7:e0:07:86:d8:
ae:ad:71:02:cf:ca:a4:f0:d0:bf:03:2b:2f:33:9a:5d:90:ae:
79:39:b3:d4:0a:9d:68:9d:7b:41:6d:08:c4:2d:c6:73:73:11:
25:d2:65:5d:29:97:02:db:22:79:bf:78:11:0a:8e:de:58:58:
98:cb:f1:29:9c:2a:54:d2:18:7e:c2:e3:24:f6:f5:c4:88:0c:
6b:cf:a7:6e:de:33:05:ce:f6:50:21:2c:9a:93:89:97:73:0b:
83:34:ce:3b:11:16:a0:46:4c:ef:62:eb:12:ed:5a:b4:3d:54:
55:bf:36:33:59:d6:18:8b:7c:9b:9f:3f:ff:2e:7c:6d:d4:1a:
57:59:78:80:41:33:c4:6f:08:9f:70:74:48:29:cf:40:22:9b:
16:08:a1:b0:2a:8f:fb:0e:18:cd:a2:22:0f:18:85:64:f0:71:
bd:73:1f:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:58:40 2026 by rpki-client