Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: NSMzCIbWECfncUx99lcJiXE50D9N0bThX8aD49AT1Vc=
Subject key identifier: CC:4C:EC:D3:54:6F:6B:15:F0:67:84:8F:1F:13:7A:6C:4E:24:CE:C7
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 019653129BE036E69E5640EDB199CCE56E86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 0F98
Signing time: Sun 20 Apr 2025 12:00:50 +0000
Manifest this update: Sun 20 Apr 2025 12:00:50 +0000
Manifest next update: Mon 21 Apr 2025 12:00:50 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: QiqI92Bmk/VmFsnkWu8zCnzlXJ+mwk0DjMYFxvdsQDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 12:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:12:9b:e0:36:e6:9e:56:40:ed:b1:99:cc:e5:6e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Apr 20 12:00:50 2025 GMT
Not After : Apr 21 12:00:50 2025 GMT
Subject: CN=cc4cecd3546f6b15f067848f1f137a6c4e24cec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:04:1a:98:8b:73:4b:e6:41:68:34:2b:8a:d0:
25:4a:b8:32:20:54:09:a9:b3:34:e8:53:bc:1d:c2:
ad:6d:3c:7f:74:9b:98:46:6d:7f:73:2f:3f:9d:f8:
79:2e:c7:0a:40:e9:e1:6e:6a:a8:09:c1:32:b2:3b:
0a:1e:21:7a:55:32:6b:09:bc:21:3e:16:2f:bb:e1:
fb:fd:dc:6a:02:3d:77:25:0e:66:64:8a:92:8b:4f:
a4:f8:9c:40:4c:99:d1:ed:16:39:d6:9d:56:b5:0d:
eb:16:b3:64:e6:2c:30:02:9c:cb:9c:a0:6e:59:32:
b4:80:f5:b3:b3:5d:68:28:99:01:88:fe:f8:b1:35:
be:b4:6c:7a:ec:8a:bb:19:bd:36:d4:32:0c:0d:bc:
2d:1c:f2:59:5c:76:d9:ad:99:3c:d5:f3:9f:5e:57:
7e:56:b3:f4:3c:b7:31:aa:36:17:71:ed:48:d8:ed:
ca:79:f1:c9:f7:71:d8:a7:22:1c:1f:c0:79:7f:c9:
81:48:3d:5b:3d:48:12:84:fc:d7:2f:6b:fb:7b:2f:
5e:de:60:86:eb:1a:05:ae:87:6d:f4:22:83:98:ef:
4a:27:f1:4a:2d:e8:8c:3e:f6:7a:a0:ec:12:ba:8b:
e0:e9:55:f7:22:6d:67:b8:18:fd:35:1f:2b:6e:a4:
50:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:4C:EC:D3:54:6F:6B:15:F0:67:84:8F:1F:13:7A:6C:4E:24:CE:C7
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:b3:cf:0e:ed:30:17:d4:7c:36:a9:80:6a:2e:16:59:a0:72:
73:9b:fd:4e:1e:d5:8b:ef:03:39:9b:a2:26:b5:cb:5a:58:11:
7f:73:9d:f4:71:1b:f7:c2:2a:a1:be:4d:a7:aa:2c:de:eb:10:
6c:68:d3:0c:a7:de:75:3b:7c:1f:41:c6:c7:7f:b4:89:1d:f0:
c3:bb:ef:7c:67:7b:c2:53:e8:08:83:20:a7:ca:77:fc:16:9c:
72:9d:cd:d7:47:c5:5b:ac:6d:b2:f3:2e:98:ef:e9:43:0d:fd:
23:07:38:93:55:7f:de:e3:df:aa:ae:d7:66:dd:cf:e6:00:9b:
12:30:e6:55:39:76:16:94:42:68:d0:44:1c:3e:a0:7f:b9:62:
99:ad:cc:90:2a:f8:70:4d:b7:1a:c4:db:e9:e5:f6:7a:fa:c4:
6d:16:f6:39:95:59:fc:f6:39:22:8b:4c:ca:8b:b8:1a:00:68:
a0:08:4c:e8:3f:82:b1:3b:5a:5d:9d:32:c6:e0:e2:2f:1e:73:
ad:e2:74:90:14:24:f4:80:d5:90:2d:d0:58:d8:40:03:30:e2:
21:21:44:09:af:e7:df:56:79:d9:04:d6:a7:7a:57:2f:c8:9d:
8a:b6:0e:17:4a:eb:cf:58:2b:80:e1:bc:2f:67:2b:55:44:50:
a7:28:69:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:41:48 2025 by rpki-client