Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: zICYhEVyOYVVeqb2kMA9CjFt5sU+x2811PXDvhy+GD8=
Subject key identifier: AA:B2:68:3D:CA:35:40:5F:D7:82:98:25:86:A7:CF:1E:C6:72:6A:4A
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 019EC0DB91988E3B0087BD253591D5285B37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 13F6
Signing time: Sat 13 Jun 2026 12:01:15 +0000
Manifest this update: Sat 13 Jun 2026 12:01:15 +0000
Manifest next update: Sun 14 Jun 2026 12:01:15 +0000
Files and hashes: 1: Z2uEQbE7L2pDV1J90F-WHp-FeRc.roa (hash: gG4qjMeD/GD4iye01V4m4U9isqUINl3gT+i69LWAi7I=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: +2ADLCqPU5jiwqRSv42ZrOCOur9Pxy6UO06T8P/+cVs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:91:98:8e:3b:00:87:bd:25:35:91:d5:28:5b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Jun 13 12:01:15 2026 GMT
Not After : Jun 14 12:01:15 2026 GMT
Subject: CN=aab2683dca35405fd782982586a7cf1ec6726a4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a8:8f:b9:91:30:71:17:27:36:ae:ac:1d:80:
1d:b9:33:72:be:ad:95:c5:4d:e2:b5:3c:42:84:ad:
7e:0a:b2:1d:c5:d9:cb:47:bd:04:29:a6:19:20:3f:
4b:c8:21:51:d4:81:60:bc:8a:8b:58:96:60:1f:05:
54:9a:1a:3f:e9:89:f1:72:9a:2d:3f:3f:9c:63:0f:
c4:d2:cf:43:97:66:7b:86:de:f9:94:7b:ac:ee:ff:
07:1b:bd:63:2d:76:72:b0:78:a6:0a:f0:6b:ba:8f:
70:04:16:b7:06:55:c5:40:1d:1d:18:5a:07:4f:3d:
db:f2:f7:4f:33:3e:90:04:4a:6a:29:d2:6c:5d:b0:
e6:b0:e6:22:bb:e7:e0:bb:64:1c:c1:3b:a7:a0:dc:
22:a8:2d:60:53:00:22:2d:a9:8a:2d:38:48:33:46:
fb:50:13:64:08:ed:5f:e5:b8:6c:e0:35:c1:27:6a:
1d:17:51:80:a0:69:6e:bc:05:e8:9e:dd:28:ab:2e:
4b:40:2d:83:a6:97:5d:5c:87:94:fd:3c:e3:71:89:
68:d9:6d:1f:60:13:d8:24:bc:ea:16:6b:94:2c:83:
0e:b5:e8:33:61:21:ce:17:4a:8c:08:e0:bb:ec:dd:
0d:3b:cc:1c:64:d4:b4:37:fe:c1:ac:02:f6:29:55:
03:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:B2:68:3D:CA:35:40:5F:D7:82:98:25:86:A7:CF:1E:C6:72:6A:4A
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:b4:fa:66:1c:59:f2:a7:39:9c:d8:32:b0:00:15:68:80:e8:
97:95:b6:62:fc:ca:45:b6:f9:9c:10:90:81:a1:93:8c:a5:7f:
26:c0:e9:0a:a7:8a:cb:16:23:28:08:67:b4:a3:91:d9:42:7e:
e9:d2:33:1e:ec:95:41:b9:97:a3:82:a2:57:0a:9b:8d:bb:44:
da:09:43:04:9e:1f:f6:d7:e7:a7:c6:09:ee:af:c6:c4:85:a7:
c6:05:08:e7:93:e9:f4:20:24:d5:1e:63:19:1a:2a:6c:bc:38:
21:ea:7b:24:17:93:d3:00:43:39:9c:d9:25:ec:8b:6a:e0:a5:
71:a0:2a:d6:91:0e:08:6a:dc:28:de:5f:27:71:a7:b4:d6:a1:
5b:3d:ce:91:36:cf:21:96:e0:5a:04:4f:fd:84:f5:da:d3:87:
36:7b:72:2f:8d:4d:e8:91:c3:1a:c0:3c:c6:e9:3b:3e:78:2e:
55:6c:3e:a4:44:cb:a3:ac:e3:1b:45:bf:9f:df:6c:69:cc:69:
9e:cd:88:74:19:7e:a1:6b:87:cb:d6:40:5c:91:fa:57:ea:f2:
8d:03:aa:22:71:e5:45:19:8c:32:4f:c7:c6:f7:24:15:e1:f7:
d2:3d:4d:d8:52:56:a1:54:8c:f1:df:0b:bf:a4:2c:77:a7:f4:
06:49:dc:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:32:58 2026 by rpki-client