Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: HdAErLF8O3Dn/2/OwU2yBetv0yAc8AxX9PQ7hJ7Qgmo=
Subject key identifier: 8E:3D:66:2B:41:6C:46:29:9D:3B:87:A9:7A:B9:6F:51:8C:FB:98:C1
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 01976F2BBA1FE2EC0FF7B4CDBBD6BD0100E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 0295
Signing time: Sat 14 Jun 2025 16:00:26 +0000
Manifest this update: Sat 14 Jun 2025 16:00:26 +0000
Manifest next update: Sun 15 Jun 2025 16:00:26 +0000
Files and hashes: 1: BFrr-Y0U-5iptN2idzPFsrYv6zw.roa (hash: SItZsNwfN8g7OyWNk2li9IKpDbpjiOGNcOTycVK0WwU=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: AhfA1QRGE6HjueXR4uH4xkbIu12hSCANb9GZQWxawqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 16:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:2b:ba:1f:e2:ec:0f:f7:b4:cd:bb:d6:bd:01:00:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Jun 14 16:00:26 2025 GMT
Not After : Jun 15 16:00:26 2025 GMT
Subject: CN=8e3d662b416c46299d3b87a97ab96f518cfb98c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7e:dc:ce:47:f0:4e:82:0e:e0:7a:2b:e6:9b:
df:f5:db:9e:77:58:0d:0c:71:ad:67:91:5f:3a:07:
97:76:14:c0:d3:e1:19:2d:96:ca:b8:09:26:3c:a6:
97:f6:30:70:f2:c9:30:6b:3f:85:b8:00:b2:a7:27:
a5:e9:ce:59:8e:8b:b2:74:e9:b1:1e:e0:9b:db:3f:
96:0a:93:db:b9:6b:c4:45:89:88:8e:12:14:40:1f:
86:c2:40:ca:ee:9f:9e:0d:de:a2:ad:ca:0c:22:1e:
3a:de:7e:68:56:80:0c:58:03:c4:ad:f0:4d:e6:fd:
23:c4:e1:b9:e8:79:11:fe:70:94:ab:3a:93:32:d0:
fe:8e:2e:22:11:3f:3d:e1:c3:e9:21:23:85:75:43:
f2:4a:87:9c:84:36:72:e1:93:54:21:a7:f1:b4:c7:
4f:b2:0b:c0:d6:2f:03:43:05:df:d3:76:3a:43:32:
ba:b2:0e:8e:51:44:05:4b:aa:7f:a2:f7:63:36:c4:
9c:80:8e:9d:d9:22:59:fa:df:88:ad:61:d0:b6:9a:
0a:a4:93:46:37:82:93:cf:b5:8f:93:4e:33:66:1c:
ed:c6:4a:ff:21:92:4a:b1:4b:1e:e2:a5:54:f7:38:
4a:c5:58:12:df:09:8f:d3:ae:a3:f6:71:6a:39:e5:
57:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3D:66:2B:41:6C:46:29:9D:3B:87:A9:7A:B9:6F:51:8C:FB:98:C1
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:82:72:b5:cd:80:42:0f:62:ec:f7:89:7a:f2:b7:e4:01:00:
f2:c2:d1:03:76:c0:77:0c:39:6e:f5:21:e8:2a:53:b0:be:18:
52:40:76:ad:f5:6d:7b:28:1b:a2:d0:dc:cf:64:f9:44:2e:b6:
b6:5b:2a:5e:b0:d6:7f:98:80:44:28:90:42:b2:49:ff:cc:c6:
bb:67:fb:7e:77:81:86:9c:80:d2:cb:59:b1:d2:4d:76:4f:d9:
01:d7:fc:34:9c:ab:05:48:49:cc:e7:17:2c:e6:64:b8:82:ce:
61:91:f3:aa:50:0d:3a:72:b8:d1:0b:38:3c:e2:00:7d:49:e3:
42:4f:b3:11:cf:9e:73:16:ad:24:4b:56:61:73:91:43:e0:0c:
5d:aa:e1:80:34:3c:c6:2f:69:c0:a6:89:68:e6:d4:dc:c3:f9:
6a:ad:d9:8b:5f:1d:ac:8e:50:d9:78:74:fd:46:19:e7:bb:a1:
1b:6b:9e:d2:cd:0f:16:ac:c9:e1:53:1c:11:46:6f:fe:ec:30:
5f:9b:ff:59:38:f3:dc:cc:bf:bb:d6:a8:ed:4c:15:41:eb:d8:
39:6e:93:f5:47:1d:05:d7:0d:08:bb:ce:dd:a7:a1:3b:b0:81:
7e:85:97:68:f1:ae:a8:4e:1c:4a:56:55:92:2e:bf:46:96:83:
b9:16:be:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:54:02 2025 by rpki-client