Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: 0Qboc6yVfhsM7nZHjJtGrZWPbseLnEI8LS4/nBAaKmE=
Subject key identifier: 14:DF:84:51:CB:29:1D:B2:5A:E1:B9:30:5B:97:09:B1:B7:31:60:47
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 019EDCF7F71A7744504011A7FB99EEF85FE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 066E
Signing time: Thu 18 Jun 2026 23:01:38 +0000
Manifest this update: Thu 18 Jun 2026 23:01:38 +0000
Manifest next update: Fri 19 Jun 2026 23:01:38 +0000
Files and hashes: 1: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: Gz+M7U1uSu5Hyyhb8NTFjiX8pCJ9FZ2P94eapVAPj/g=)
2: pSL3Mi5XEdAchUtMULvCKuIdKaM.roa (hash: PIsMvcROTvHOYMP/WBLkPzqoyaR6+wBcYymEnJhYyE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 23:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dc:f7:f7:1a:77:44:50:40:11:a7:fb:99:ee:f8:5f:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Jun 18 23:01:38 2026 GMT
Not After : Jun 19 23:01:38 2026 GMT
Subject: CN=14df8451cb291db25ae1b9305b9709b1b7316047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b6:f2:96:be:12:80:dc:dc:1d:2b:47:95:08:
5d:35:ff:ae:90:e4:26:d4:14:6d:96:40:45:0e:5c:
02:b0:37:0d:55:35:b8:ce:c0:7b:56:53:e6:73:f0:
00:49:39:6a:75:bb:a0:d6:b3:be:2c:b7:17:02:bb:
f5:71:52:72:0c:5a:5a:55:ca:64:34:4a:81:d2:f2:
cb:34:e5:a9:83:aa:45:2a:c2:05:3d:ca:49:e9:3c:
76:da:e7:9a:35:13:d3:db:c7:61:2b:e8:1d:80:da:
c2:65:bb:e4:d6:d4:60:64:3d:9e:0e:0c:ee:13:f8:
58:e1:03:c1:41:7a:5c:ad:46:07:0e:b7:50:65:a9:
eb:56:75:49:35:21:43:36:b2:83:61:06:bd:cd:5b:
48:aa:c3:f2:fb:02:a6:96:cf:65:d8:51:7c:ad:5a:
d3:4f:20:48:c0:41:33:64:23:3c:7a:4c:12:30:18:
29:30:1d:7e:a1:f6:b3:77:08:62:ea:66:e9:06:0d:
1c:88:bd:86:f6:57:c3:00:cf:bd:42:51:82:25:d8:
8f:f3:12:88:b6:ae:6f:78:bb:b6:47:e5:2b:bd:80:
ac:d7:b6:40:d7:94:e4:eb:56:9f:99:46:80:44:6b:
dc:66:33:de:0d:f9:d1:0c:2a:4e:62:be:f7:0d:c2:
bd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DF:84:51:CB:29:1D:B2:5A:E1:B9:30:5B:97:09:B1:B7:31:60:47
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:83:ba:bf:07:75:0a:f3:84:e0:c1:f6:88:0d:57:00:82:c0:
75:5c:4c:95:52:2e:30:eb:29:05:2e:70:69:65:f4:5c:66:ba:
3d:e0:30:53:90:6c:14:12:29:f9:0e:f1:9c:22:d5:29:74:70:
25:f5:02:aa:f7:bc:a3:59:68:98:d5:e6:b5:9b:c3:78:ef:f0:
4f:23:88:8a:49:04:ce:48:bf:b0:96:7a:57:11:65:ee:18:01:
a7:bd:49:f1:12:51:f9:fe:94:1a:f8:11:4b:a8:40:ed:c4:e0:
2b:84:a3:d5:55:e1:0d:18:48:b7:3e:2c:2b:46:90:ce:d3:60:
19:90:12:03:4f:c7:f9:52:61:21:60:fd:58:2e:0b:d6:b0:c9:
b1:12:93:3c:17:c9:df:46:b3:a9:f5:07:02:6d:59:f3:e2:6d:
85:50:2f:ee:2a:38:d4:25:2e:b4:8c:a4:69:0b:51:99:61:4a:
5b:7f:fb:31:10:2a:59:f3:67:3e:6d:4f:c6:08:da:88:3f:0e:
02:17:e2:5c:d3:83:95:98:72:36:f1:d0:3b:96:e4:9f:4d:44:
28:a8:38:4f:a8:c9:de:14:cb:11:dc:3f:40:3c:55:82:38:bd:
8c:b5:1d:34:fc:85:e4:76:59:bd:78:18:0a:ab:5a:d8:fe:dd:
3e:03:bc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 19 08:20:24 2026 by rpki-client