Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: A1ql5v3qvKDTwnT1NrA+KohOr9VWK+E21wrSv3xaKPU=
Subject key identifier: 5B:7A:3E:38:D2:47:7C:87:B3:EA:44:3F:0A:D0:6C:5A:E1:A0:D1:0E
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 0196A9F9627DE560CFB77134BB0A95D159BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 0FC5
Signing time: Wed 07 May 2025 09:00:15 +0000
Manifest this update: Wed 07 May 2025 09:00:15 +0000
Manifest next update: Thu 08 May 2025 09:00:15 +0000
Files and hashes: 1: WsJxTcqQMdNcfxDwYxL96RxQkLE.roa (hash: AzUS2a/hUE19ESDc/skGDA/ldB6bGDxX9L5RO7/taEk=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: kN2vi1pkP5lL4wGRGrVHj/NOmoIOsEYN3EqOYOE7wEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:f9:62:7d:e5:60:cf:b7:71:34:bb:0a:95:d1:59:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: May 7 09:00:15 2025 GMT
Not After : May 8 09:00:15 2025 GMT
Subject: CN=5b7a3e38d2477c87b3ea443f0ad06c5ae1a0d10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bc:18:12:ce:c5:de:c4:85:ec:a2:b6:bb:23:
1a:52:c5:6d:78:18:31:f0:4f:df:83:a9:92:f5:c5:
16:6e:82:d2:9e:72:76:f3:25:ea:ee:a4:28:c2:f5:
bc:50:68:5b:ab:2a:08:3b:97:e9:cd:09:00:5d:d6:
ab:45:44:72:e9:46:37:3d:fc:9b:bc:d7:40:b7:4e:
5d:1a:3f:bd:65:3d:5e:c8:71:3b:1a:4f:95:2a:da:
ca:72:bf:87:70:1d:a4:a1:81:0a:0d:e5:c2:86:2f:
38:70:23:eb:22:4a:a6:d2:20:40:00:fe:00:7c:0b:
65:30:2f:8d:14:1f:0b:f1:f8:5e:18:d7:74:e9:ae:
6a:2d:57:95:57:79:17:7e:ba:c4:d5:99:36:7e:76:
b4:26:96:a4:72:b8:1c:8e:70:06:3a:11:91:ad:8a:
b5:2a:8d:0c:19:85:4f:12:61:6c:10:19:35:f7:49:
b8:d2:90:7a:58:3c:22:c7:d8:fc:a2:7e:e4:70:b1:
d4:bb:c6:87:91:36:44:97:99:8f:cf:6d:59:8a:8c:
ec:ca:8f:4f:6f:1f:ec:53:e4:44:d6:1c:22:6e:03:
4a:7c:a1:b5:af:2d:57:0f:25:78:22:28:7e:ea:2f:
3d:70:d3:34:83:31:82:a7:98:71:cc:25:24:ed:8b:
bf:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7A:3E:38:D2:47:7C:87:B3:EA:44:3F:0A:D0:6C:5A:E1:A0:D1:0E
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:bd:ac:5c:27:e0:5e:2c:4d:be:bd:8a:6c:19:42:98:f6:40:
24:c5:6a:a5:64:28:bc:58:21:99:53:7e:fd:91:98:42:c5:89:
7c:e6:e7:24:06:82:2f:fd:53:76:e5:64:a5:5c:8f:7d:58:c0:
26:89:60:d8:ff:9b:ac:1d:49:08:f9:84:9b:68:2d:f5:bc:ac:
8b:98:2b:7f:97:a0:c2:d5:fe:e9:4a:c3:30:56:36:e3:35:df:
d2:ce:49:6b:26:04:d9:78:cd:1d:94:52:fb:f2:f1:77:fe:0d:
d0:9e:a8:f5:25:ad:f3:b7:ca:59:2c:49:6c:53:f1:d9:86:cd:
7b:e8:0b:f1:af:75:00:19:06:11:4b:07:e8:45:19:ea:10:8a:
46:0b:7e:84:ab:36:23:0f:9e:71:6b:07:61:be:58:9e:06:dc:
94:b3:c9:e1:1e:28:8f:f9:39:35:c1:b0:03:b3:90:e3:97:46:
01:7f:65:10:95:a7:85:0e:96:88:39:9b:6e:b3:5c:04:13:57:
97:60:3d:13:da:b8:b0:c2:dd:e1:b8:44:ba:13:35:52:92:08:
33:40:fe:8e:99:71:d5:1f:9e:19:28:86:91:1e:27:19:9e:47:
12:66:36:85:cd:c3:33:6e:ab:81:36:f4:54:a5:83:28:04:43:
76:3a:84:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 11:22:15 2025 by rpki-client