Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: XZJKgyM/u5DxWJ2pk2n0d111sWXmwAgZpL1DIp0+v4w=
Subject key identifier: 4D:04:74:9D:6D:F2:19:27:FC:40:0C:A8:FD:3B:5C:38:90:49:82:B3
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 0198D472FB4F278BD12B2D5EEF19BD38942A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 10E4
Signing time: Sat 23 Aug 2025 01:02:41 +0000
Manifest this update: Sat 23 Aug 2025 01:02:41 +0000
Manifest next update: Sun 24 Aug 2025 01:02:41 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: oDr30jmH2Htake+TOxVCK3VzN85M6bepMz6rlKWt0yI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:fb:4f:27:8b:d1:2b:2d:5e:ef:19:bd:38:94:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: Aug 23 01:02:41 2025 GMT
Not After : Aug 24 01:02:41 2025 GMT
Subject: CN=4d04749d6df21927fc400ca8fd3b5c38904982b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:24:21:df:c6:e3:e3:b9:81:c7:2b:2c:bf:
0a:84:45:e4:58:e7:04:49:c8:2d:d7:4b:38:b1:af:
2d:21:70:17:b1:b6:b2:58:81:27:bb:70:68:bf:ea:
1d:74:a2:78:68:4a:10:93:fa:24:58:b6:5c:90:ac:
5d:be:62:90:7d:3f:ea:82:9e:3c:37:24:2a:dd:89:
ff:ed:c8:a0:43:33:c9:ff:05:9c:67:45:56:10:f1:
75:f9:b7:f0:58:94:78:9b:52:29:33:bf:ed:62:72:
42:bc:ac:16:7f:8b:84:c7:84:9a:7c:e8:c3:16:76:
dd:4c:fe:8a:14:0a:06:e0:b1:39:a3:18:3e:b4:13:
e2:d7:e9:e3:8c:87:84:19:4f:0f:1a:d4:4c:f1:58:
d6:96:42:03:dd:7a:26:b3:39:3e:be:7f:1e:0b:ae:
09:3b:65:e5:55:bf:2e:4a:0e:57:54:5c:14:6b:ae:
71:6e:ec:01:b9:d4:f3:c6:d2:47:5b:03:db:f2:79:
49:0f:72:7a:95:38:6c:2f:6b:37:04:1e:b4:3c:c0:
28:42:17:5a:ca:dd:8d:a2:fb:78:a0:47:ae:ad:ca:
d3:46:0e:d8:60:a8:c4:2b:fd:d1:e7:d8:54:95:4b:
de:9d:86:e2:40:92:22:b4:d9:00:23:b6:88:8b:54:
a2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:04:74:9D:6D:F2:19:27:FC:40:0C:A8:FD:3B:5C:38:90:49:82:B3
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:9d:8f:1f:ed:94:fd:50:e6:54:e5:b0:b1:14:f2:61:74:01:
af:bd:7a:e9:c5:0e:13:78:b9:6a:e8:ab:b3:85:5f:78:f3:ca:
78:b3:fe:bb:a3:91:b3:fc:87:39:19:a5:17:c1:69:5c:ce:8f:
49:aa:38:c8:24:e5:89:5f:9d:03:8a:e6:7d:c4:01:b3:fa:55:
b5:37:f1:78:ef:10:f5:e0:80:27:b8:ca:cc:23:fd:cb:4f:9e:
0e:64:04:02:c0:0b:5b:07:b7:41:bb:0f:f6:e8:e7:65:16:9a:
fa:66:ff:75:38:15:e9:a6:00:78:a6:5a:08:47:e6:c8:05:e4:
2f:75:1d:a7:4e:b1:4a:5d:6c:91:50:bb:50:4d:00:22:58:65:
81:b6:33:77:bd:89:a1:41:75:0d:a6:bf:31:52:05:ac:ed:33:
d1:a1:f5:0c:c3:c8:06:3a:17:93:9e:7d:8b:fc:bc:3c:36:b7:
bf:e2:de:42:e6:26:9b:5b:df:22:b4:95:71:58:1d:49:4f:c3:
e3:11:f5:06:53:c4:69:6f:2b:16:b0:7c:70:85:d4:56:ab:f9:
a2:a7:87:9e:b6:57:e0:cb:72:e7:f9:4a:18:66:1b:f6:a9:94:
12:e1:54:1b:11:ed:58:79:5d:c0:87:4c:d9:79:32:cf:ce:44:
a7:46:dc:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:41:30 2025 by rpki-client