Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: TlXKMMq1B7BYoxE9y1IeODkLOL+IuBL5R1VoO9Kv/vc=
Subject key identifier: D6:50:D7:65:BD:FE:C5:E4:6D:F8:C8:E8:3A:94:99:F6:26:C9:97:B8
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 01983FBDBEBCEF34943A8012B26CA26E5FA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 1097
Signing time: Fri 25 Jul 2025 04:00:56 +0000
Manifest this update: Fri 25 Jul 2025 04:00:56 +0000
Manifest next update: Sat 26 Jul 2025 04:00:56 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: VVt4RhnyptLORjpWdBUj02C9D7sUb6TwIkRj7Sst4Gc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 26 Jul 2025 04:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:3f:bd:be:bc:ef:34:94:3a:80:12:b2:6c:a2:6e:5f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Jul 25 04:00:56 2025 GMT
Not After : Jul 26 04:00:56 2025 GMT
Subject: CN=d650d765bdfec5e46df8c8e83a9499f626c997b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2b:73:e5:6a:2c:f8:e2:8f:fd:c6:f9:2c:68:
de:07:01:96:aa:ed:3c:87:16:dc:39:2a:a9:5e:bc:
82:77:92:74:f3:86:3a:68:c1:7d:02:65:df:08:48:
d3:a2:c1:18:89:5a:f8:56:77:eb:99:ca:07:d4:4a:
df:3c:d5:01:38:28:23:0b:6b:23:80:78:72:8b:e2:
91:54:a6:d9:6a:9a:09:da:48:55:07:69:d9:49:f0:
e2:17:5e:64:89:91:57:90:99:39:93:8a:33:7f:8e:
74:b4:04:b2:66:ec:da:ec:39:e2:34:e5:ce:21:c1:
ac:10:64:04:f3:5a:38:1f:3b:72:7e:ca:c0:e6:05:
ae:25:ec:d7:29:32:d7:22:38:8c:a1:b7:24:cc:69:
c2:f3:55:a5:bc:0d:53:81:4b:79:71:d6:5e:cc:a2:
14:93:e0:1f:09:a3:a5:ab:df:44:a0:07:1b:ea:f8:
79:c2:92:56:a8:af:35:5b:d6:0c:da:94:c2:55:25:
49:c3:e4:88:d4:9b:d9:3c:ab:22:72:93:56:6a:5f:
46:47:77:26:82:14:4e:20:2b:4d:cd:7c:e9:1a:91:
1e:6f:10:a8:bc:f0:03:5d:e0:ca:4d:77:36:2f:f7:
22:76:e6:82:b3:50:5d:7b:be:a2:3c:fb:ee:48:c0:
e1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:50:D7:65:BD:FE:C5:E4:6D:F8:C8:E8:3A:94:99:F6:26:C9:97:B8
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:9a:52:e6:03:4b:7c:c2:3c:58:07:b5:d4:7d:ed:f0:da:bf:
d5:a0:4b:fc:7f:ec:ac:4a:4e:e7:ba:9e:b5:62:ae:0f:50:b5:
69:8d:82:1f:b2:52:d9:b0:a1:98:7b:7d:1a:8a:0b:aa:c3:b9:
f3:a8:2c:48:c0:44:4a:20:24:14:cb:f2:02:8b:1a:4c:e2:b2:
92:f1:d9:7d:46:a9:2f:29:53:14:de:37:6a:21:08:7e:66:96:
c8:7a:df:f3:d5:03:67:2e:32:c0:d4:99:04:62:c0:1e:8b:ce:
a3:40:47:03:0e:31:b1:05:0e:14:9d:59:30:f1:66:2a:24:0b:
c3:43:be:86:a5:35:1e:3d:a4:1c:7a:69:65:3f:67:85:65:35:
ec:e9:e1:8f:93:4e:69:1e:12:4c:1f:aa:93:96:61:60:76:71:
7f:63:6a:60:76:23:47:b1:87:c5:e0:db:ad:cd:27:3c:23:48:
bb:cc:52:14:e5:3f:52:c5:c3:07:c9:a2:be:65:8a:63:c8:bb:
6d:b0:84:81:1c:57:d8:e6:ba:a8:cd:d1:38:a2:67:27:a3:0a:
c6:b0:07:b9:6f:fc:3a:a9:e7:d7:be:cc:47:a1:7c:c3:e5:61:
9c:dd:c2:cc:e4:a5:c4:c1:ea:96:87:c8:f4:ee:18:c4:6b:68:
2e:c7:de:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 25 12:59:56 2025 by rpki-client