Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: PdZy+EWfyJk4ohdYlR29BmmhJx614l9zChz2Xoy4mec=
Subject key identifier: B9:60:6E:4E:04:7A:8B:8C:73:5D:DE:F0:79:D2:07:1F:A5:36:D6:55
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 019873E1CD31CC7512A702AA8DB421954C08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 031C
Signing time: Mon 04 Aug 2025 07:00:34 +0000
Manifest this update: Mon 04 Aug 2025 07:00:34 +0000
Manifest next update: Tue 05 Aug 2025 07:00:34 +0000
Files and hashes: 1: BFrr-Y0U-5iptN2idzPFsrYv6zw.roa (hash: SItZsNwfN8g7OyWNk2li9IKpDbpjiOGNcOTycVK0WwU=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: dxp8sJpvWkR/WpmAIJ0xaY2DAItvzl7YUdbuvUxeVHs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e1:cd:31:cc:75:12:a7:02:aa:8d:b4:21:95:4c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Aug 4 07:00:34 2025 GMT
Not After : Aug 5 07:00:34 2025 GMT
Subject: CN=b9606e4e047a8b8c735ddef079d2071fa536d655
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:37:97:d8:c7:15:7e:c0:af:e9:b8:6a:f9:51:
96:34:ea:1a:0e:02:5c:df:d9:a5:c2:b2:6c:68:a9:
9e:23:f2:50:6e:7a:e6:3c:d6:6b:b9:32:4b:a1:b7:
67:c2:98:44:3b:2b:d9:15:a4:07:b7:b4:0d:84:7d:
ef:9b:a2:be:e5:09:3a:9b:20:b4:a3:6c:9d:54:76:
47:88:eb:fd:48:a7:10:de:4f:ca:47:5f:97:a8:cd:
6f:dc:0e:b6:56:29:40:6f:fd:53:a6:3b:56:ae:4d:
df:44:2b:77:1a:63:ba:2e:5a:9c:12:24:6f:1a:5b:
fc:7b:72:4f:bb:de:d1:8f:19:98:c1:27:da:ac:c2:
65:e1:4a:b9:a2:0d:9c:97:e5:01:ad:74:be:76:7e:
1c:ad:19:b2:94:75:c0:f9:f1:f8:6a:21:12:35:b4:
56:7c:b9:85:ab:36:59:bc:41:11:1e:a3:6f:f8:fc:
cb:c8:d0:8a:b3:cc:50:57:11:f0:77:48:85:4c:25:
cb:0c:35:77:bf:7b:cc:4e:51:c0:70:d8:39:67:64:
19:22:26:ee:91:ec:cf:01:34:38:25:98:db:7c:da:
75:ae:0a:a1:38:00:8c:6c:a4:a7:e3:e0:ee:0d:90:
63:ee:b8:12:d1:e7:1e:13:41:ac:5a:3d:a7:bd:71:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:60:6E:4E:04:7A:8B:8C:73:5D:DE:F0:79:D2:07:1F:A5:36:D6:55
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:77:e0:4c:1a:c3:52:43:a4:0a:9b:ca:26:39:6e:00:d5:80:
d1:45:42:28:ba:3d:03:23:40:01:13:3a:a7:74:50:4c:f4:62:
cf:2c:53:34:12:1b:b3:0f:e6:f7:7f:92:fb:4b:e7:09:31:e1:
13:2b:37:4c:3e:94:2d:7f:4a:a2:28:2e:83:00:7f:29:11:0a:
1b:94:69:65:03:ef:c7:82:a2:8d:aa:be:19:96:a5:70:d9:2b:
c1:1d:74:8f:85:64:f4:24:3c:47:92:60:07:2f:9c:5e:b6:c5:
42:8a:61:a8:f2:f5:16:17:6c:a9:d4:f7:1d:b7:33:1f:c3:d9:
80:c1:41:cc:ed:b6:1c:89:8f:c7:29:56:ec:e9:1b:03:60:be:
45:c8:e1:9a:8b:9f:89:da:42:8d:e8:69:1d:c1:0b:36:33:a0:
9d:f0:03:ae:bd:a4:4c:e8:16:c9:fc:91:28:87:4a:8a:55:33:
f2:be:68:a3:6b:7f:f0:6d:93:df:f1:82:91:6d:8a:04:69:39:
dd:fb:30:41:26:c0:7a:4a:8f:ae:b2:c4:7b:13:b0:3f:a7:3b:
bc:03:10:7c:79:0f:a9:e6:75:bb:3b:cf:8d:a4:4a:34:71:39:
12:8e:2c:25:c5:32:23:a9:8a:05:d5:c2:cd:c8:6f:5a:a0:b7:
db:1b:21:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:07:10 2025 by rpki-client