Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: no6twWr8s31f4LR2IFTWDxOkrF6xj+IIWppWQFe1N6U=
Subject key identifier: 69:6E:D8:5F:54:7A:58:2A:A8:4E:12:CA:37:AC:8A:C3:41:47:BA:47
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 019ED34F916C832396BCFD36C8F077AAF362
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 0669
Signing time: Wed 17 Jun 2026 02:01:07 +0000
Manifest this update: Wed 17 Jun 2026 02:01:07 +0000
Manifest next update: Thu 18 Jun 2026 02:01:07 +0000
Files and hashes: 1: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: +9NwP2g7RmM9501Chc7yV8wtdS2sb+NgqMZl3RF7/u8=)
2: pSL3Mi5XEdAchUtMULvCKuIdKaM.roa (hash: PIsMvcROTvHOYMP/WBLkPzqoyaR6+wBcYymEnJhYyE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 02:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:4f:91:6c:83:23:96:bc:fd:36:c8:f0:77:aa:f3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Jun 17 02:01:07 2026 GMT
Not After : Jun 18 02:01:07 2026 GMT
Subject: CN=696ed85f547a582aa84e12ca37ac8ac34147ba47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1b:44:ea:ab:06:7c:61:38:72:c6:1a:96:80:
a0:a4:b8:31:88:e6:16:11:89:cf:d6:0a:04:5b:1e:
da:7e:8b:6c:32:79:c0:f7:21:ee:ac:9f:6c:a4:7b:
c7:09:5f:1c:2f:96:b7:4e:bc:5f:f3:b3:6c:f9:d9:
45:b3:c6:f4:f4:ef:34:68:c4:07:a4:1d:44:ed:21:
78:a7:e6:da:2d:e1:2b:3c:56:85:56:94:0c:1c:25:
4b:11:9b:7e:69:fb:93:70:f1:20:cc:a3:49:de:fa:
2a:dd:f6:82:06:c3:53:1f:40:61:4f:a9:a9:2f:e0:
4e:1b:ab:05:64:5a:2d:3e:a5:30:6d:02:26:a4:b9:
86:7c:fa:e8:4f:4b:c1:05:15:b1:74:e8:f9:b9:55:
f2:f2:80:60:ee:16:79:7a:9c:af:6b:5a:dd:c7:c7:
66:67:5b:2b:45:a5:2e:3b:96:f2:2b:8e:b2:0d:3d:
b4:ce:37:a3:0d:bf:fa:d9:0d:03:b1:2d:18:44:85:
88:cf:65:0a:4d:2e:28:2a:73:e3:c8:45:7c:0c:31:
c0:6c:5a:88:0f:f6:04:71:e6:c8:be:d1:14:65:5a:
90:ad:1d:4a:f8:3c:c8:f6:7c:92:55:a2:2f:6b:ed:
83:0c:e4:dd:31:21:83:44:45:64:41:be:95:c1:e1:
f8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6E:D8:5F:54:7A:58:2A:A8:4E:12:CA:37:AC:8A:C3:41:47:BA:47
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a6:f8:bb:8a:7b:6c:0d:2c:7c:72:bf:3f:4d:56:a1:5e:6e:
58:a7:14:93:5b:dd:71:0a:74:aa:03:5c:3f:db:b8:2b:13:fc:
10:8e:f9:2c:4c:6e:2a:b8:b8:4c:66:6a:b7:8c:ee:29:a3:1b:
f6:e5:68:27:8d:e7:09:6b:8e:2f:e3:25:cf:6c:ac:a6:f1:64:
e7:47:f4:75:58:60:90:db:9e:66:92:27:b2:ba:b7:e5:fc:54:
48:83:04:06:e4:4a:bc:de:11:7e:3b:62:ee:9a:f1:95:ba:dd:
2e:7a:b1:97:a6:6c:f4:4d:f1:ec:41:41:fe:c0:8f:a1:9f:1e:
4d:a5:03:b0:46:eb:f8:ee:1e:e5:8b:df:b0:f3:f6:8c:d3:65:
4e:8d:cf:75:f7:aa:78:2e:37:27:42:d8:2c:dc:74:85:2f:ad:
75:e8:b9:29:d3:9d:d8:68:2f:af:1c:4d:07:f7:71:a0:6d:94:
8c:f9:12:69:78:64:a6:d7:45:f1:b8:36:c9:11:be:fc:2b:c3:
45:78:2d:36:8a:1d:c5:75:c3:0f:2c:09:66:13:5f:38:e5:a8:
92:09:a3:ab:ac:a0:28:4b:ee:90:dd:ef:0b:7f:11:c0:e0:33:
1c:5b:7d:d8:b7:99:c0:8a:1c:05:42:c5:c3:8b:9e:13:ba:82:
6e:87:92:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 12:49:02 2026 by rpki-client