Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
File: onIAVE-TpnX8jHhBhWmA44o1Kcs.mft (raw, json)
Hash identifier: s0a3EyM/d06hLUQ0tvcMQzfom/YUHlT6F5b0FrzkgUM=
Subject key identifier: BF:2C:C6:AB:55:8D:58:49:30:41:CA:03:24:70:29:F4:BA:F9:DA:EC
Authority key identifier: A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
Certificate issuer: /CN=a27200544f93a675fc8c7841856980e38a3529cb
Certificate serial: 019E1EA379D920A4FF837B07F48A4635B2DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
Manifest number: 13A2
Signing time: Wed 13 May 2026 00:01:30 +0000
Manifest this update: Wed 13 May 2026 00:01:30 +0000
Manifest next update: Thu 14 May 2026 00:01:30 +0000
Files and hashes: 1: Z2uEQbE7L2pDV1J90F-WHp-FeRc.roa (hash: gG4qjMeD/GD4iye01V4m4U9isqUINl3gT+i69LWAi7I=)
2: onIAVE-TpnX8jHhBhWmA44o1Kcs.crl (hash: W7+Yam3acwqeB/lv2HCOr+0/83kb2AQ4lE3I0LOd9fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:79:d9:20:a4:ff:83:7b:07:f4:8a:46:35:b2:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a27200544f93a675fc8c7841856980e38a3529cb
Validity
Not Before: May 13 00:01:30 2026 GMT
Not After : May 14 00:01:30 2026 GMT
Subject: CN=bf2cc6ab558d58493041ca03247029f4baf9daec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ef:b1:a1:e5:a7:5c:c6:56:22:cd:9d:4b:9d:
95:0b:4e:f3:4e:fe:08:be:5a:26:a7:48:34:62:14:
c6:66:39:0c:38:1d:83:78:d2:7c:9e:12:9c:99:20:
8d:c6:c3:d6:68:52:01:08:8c:60:44:a1:15:f6:a1:
ed:9f:ce:01:dd:53:0a:fa:c4:a8:b5:d7:f8:df:e7:
ce:cd:db:88:3c:92:b6:b2:a9:af:f4:14:4f:d5:d3:
42:0c:8d:36:94:27:74:aa:a4:f5:1d:10:67:a3:3d:
31:56:37:50:5d:be:50:b4:1a:9e:f3:25:06:4b:6e:
91:1f:5d:b7:5b:46:95:d5:e4:1f:f6:65:06:79:31:
75:f7:2b:6f:61:68:71:84:55:7a:76:9c:fb:da:6c:
fd:ee:6d:59:4e:7d:be:9c:e4:0d:58:c0:79:9d:ee:
9c:2d:f0:e4:42:01:31:e4:2c:d9:64:a8:32:db:e5:
87:3c:1f:0d:9f:a7:9a:25:da:16:97:9e:fc:1b:ba:
85:5f:e4:ad:b1:3a:6b:bb:4c:93:d5:11:04:83:47:
c2:92:69:31:d6:fc:94:5e:8d:e3:1f:c3:c9:80:a5:
15:c4:6e:7f:40:ca:9d:4c:2e:e9:c2:05:ef:fd:8f:
1d:32:b2:2c:bf:d8:b4:0d:66:88:c3:2d:dd:4f:8b:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:2C:C6:AB:55:8D:58:49:30:41:CA:03:24:70:29:F4:BA:F9:DA:EC
X509v3 Authority Key Identifier:
keyid:A2:72:00:54:4F:93:A6:75:FC:8C:78:41:85:69:80:E3:8A:35:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/onIAVE-TpnX8jHhBhWmA44o1Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/bc1c74-1e0a-4055-80b8-efa7f89bd0b9/1/onIAVE-TpnX8jHhBhWmA44o1Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c3:65:30:ce:19:4e:49:d3:f6:b8:11:ff:42:12:8d:f3:22:e4:
07:6f:f5:0e:c2:6d:12:01:99:cc:ca:5d:2b:16:d3:1b:df:e4:
25:d6:22:20:cd:49:d4:24:8a:56:ab:af:ff:7f:1d:73:14:be:
43:f2:c4:9b:2c:d2:dd:dd:00:6e:43:57:d1:a3:9e:ab:30:24:
66:af:51:fd:96:18:7f:3f:ac:e2:a5:93:d0:bf:f5:75:0f:1c:
67:e4:7f:4c:88:96:29:95:ac:6f:7c:7b:35:9c:fc:b4:be:b1:
1c:4b:6c:36:4a:0f:46:32:e5:52:fd:b3:a3:4d:46:17:60:f0:
bb:25:3b:5b:4b:ff:b4:19:9e:76:2e:b7:d7:44:cf:91:1f:d7:
f2:ca:4b:4e:79:bb:47:69:d2:e9:38:d4:03:38:6f:fb:8b:27:
83:f6:b5:26:fd:aa:83:c3:c2:ee:98:43:14:6d:81:27:f9:f7:
99:c9:5d:9b:05:0b:4e:4a:15:0d:5a:1d:30:72:05:01:c9:76:
c8:47:ae:6e:a8:71:cd:9f:7d:9b:9a:9c:86:dc:00:5d:9d:e9:
9f:af:f8:08:e3:f7:c3:3d:76:3c:50:8b:8d:28:db:c9:f4:d4:
a0:9c:1b:c2:75:1f:c1:b3:dc:8b:b7:85:5a:ed:25:1b:ee:dd:
32:a6:30:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:19:13 2026 by rpki-client