Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: PAkHwJ/VF1qnvpU4sMKiLCsp5tTF8YlCtIhdaS8RNjE=
Subject key identifier: 93:A4:84:16:51:09:19:49:EF:9F:86:D3:E3:99:EE:44:63:95:01:38
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 0198D6606ACC89724E319C251F32450AB961
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 034F
Signing time: Sat 23 Aug 2025 10:01:39 +0000
Manifest this update: Sat 23 Aug 2025 10:01:39 +0000
Manifest next update: Sun 24 Aug 2025 10:01:39 +0000
Files and hashes: 1: BFrr-Y0U-5iptN2idzPFsrYv6zw.roa (hash: SItZsNwfN8g7OyWNk2li9IKpDbpjiOGNcOTycVK0WwU=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: LKCbbNaAjc9ijTPvam6XFav/AXjA4JDbgqr2dmQx9f4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:6a:cc:89:72:4e:31:9c:25:1f:32:45:0a:b9:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Aug 23 10:01:39 2025 GMT
Not After : Aug 24 10:01:39 2025 GMT
Subject: CN=93a4841651091949ef9f86d3e399ee4463950138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:14:d2:8a:09:dd:79:0e:6f:7a:48:63:c4:a4:
e1:40:53:b7:d7:3b:47:ea:4f:eb:ed:e1:e1:86:be:
fd:87:11:37:52:37:55:8f:f8:2d:51:96:e0:b5:9e:
fd:a4:a8:5d:b0:f7:96:c6:6c:35:32:ae:d8:28:96:
65:b5:e0:e0:3a:5a:9e:8d:0d:45:59:06:92:d8:9a:
19:2e:55:d7:eb:77:a5:7c:2f:74:02:60:10:61:1a:
19:be:ed:88:88:94:0a:e9:9e:d2:38:52:92:69:f4:
4c:3e:73:0e:a4:41:91:25:c9:5a:4a:dd:d5:35:55:
b0:8a:68:a6:33:13:4b:24:a9:1b:ea:08:6d:41:8b:
a2:86:ee:e2:82:68:68:e0:2e:a2:a1:8a:02:1b:3f:
0e:52:d0:28:05:64:5b:e5:f4:09:9f:4f:69:cb:61:
1e:23:89:3c:66:bd:64:d6:fc:26:cb:d9:7d:68:e6:
0e:91:5f:57:35:02:90:27:c0:9d:a9:2e:e1:e1:69:
3b:78:53:36:a1:f0:73:8d:74:7d:86:c1:43:f3:8a:
c8:0a:57:93:e8:f5:6f:9b:1d:4c:b5:56:0e:1c:14:
fe:8e:86:b3:d7:02:5e:ef:14:01:cd:31:03:2c:47:
2d:4d:15:97:a0:a8:88:fd:ba:6a:21:ec:65:b2:d7:
7a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:A4:84:16:51:09:19:49:EF:9F:86:D3:E3:99:EE:44:63:95:01:38
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:54:db:71:76:93:28:49:bd:53:48:3e:cc:9c:0a:5d:0f:91:
16:af:58:97:bf:6b:72:2b:c8:3f:38:ea:b2:a1:27:2f:de:39:
3f:68:ba:a5:81:a9:53:d3:7a:28:29:41:a1:02:18:c9:46:5d:
7b:22:1b:de:81:5b:09:c7:b2:52:82:83:e4:10:be:cb:65:20:
2e:80:d7:98:7f:34:24:49:e6:8b:ec:d5:3c:93:43:8a:b5:b9:
4b:87:aa:8e:53:fc:75:d3:b5:36:e9:f4:b6:41:df:21:1b:ba:
ec:20:a4:bc:fb:2e:eb:d9:cc:9b:c1:05:78:dd:a2:f6:49:4b:
37:46:01:22:db:1b:86:06:26:7a:ea:90:b1:5c:d9:9f:1d:b4:
96:b9:0d:2b:95:6c:06:8a:96:19:08:52:42:c5:6b:28:fc:36:
75:36:0d:cc:f9:03:f5:7a:71:df:ca:46:c6:b8:99:b2:9d:7a:
a0:4b:8d:7f:e9:6d:26:36:36:32:c5:12:6c:f8:da:62:ef:fe:
11:41:4f:09:67:15:85:6c:b2:8a:c4:f3:f5:d0:53:fe:10:8a:
11:0c:e3:87:0a:44:67:d3:dd:6f:2c:5d:5f:6b:be:e1:6d:99:
c1:88:42:aa:4b:92:79:15:e0:73:73:e2:39:35:e6:87:01:30:
20:cf:18:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYGrMiXJOMZwlHzJFCrlhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZDA0MzhhYjU2ZDg0MjE3MTMxYmMwNmZlMzM1ZTRjNzg0
M2ViNzkwHhcNMjUwODIzMTAwMTM5WhcNMjUwODI0MTAwMTM5WjAzMTEwLwYDVQQD
Eyg5M2E0ODQxNjUxMDkxOTQ5ZWY5Zjg2ZDNlMzk5ZWU0NDYzOTUwMTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0BTSigndeQ5vekhjxKThQFO31ztH
6k/r7eHhhr79hxE3UjdVj/gtUZbgtZ79pKhdsPeWxmw1Mq7YKJZlteDgOlqejQ1F
WQaS2JoZLlXX63elfC90AmAQYRoZvu2IiJQK6Z7SOFKSafRMPnMOpEGRJclaSt3V
NVWwimimMxNLJKkb6ghtQYuihu7igmho4C6ioYoCGz8OUtAoBWRb5fQJn09py2Ee
I4k8Zr1k1vwmy9l9aOYOkV9XNQKQJ8CdqS7h4Wk7eFM2ofBzjXR9hsFD84rICleT
6PVvmx1MtVYOHBT+joaz1wJe7xQBzTEDLEctTRWXoKiI/bpqIexlstd6XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJOkhBZRCRlJ75+G0+OZ7kRjlQE4MB8GA1UdIwQY
MBaAFDjQQ4q1bYQhcTG8Bv4zXkx4Q+t5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9mZTFhOGMtOTU4NS00MjkxLTlkZjEt
ZDllNmM1ZjBkMjg4LzEvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9mZTFhOGMtOTU4NS00MjkxLTlkZjEtZDllNmM1ZjBkMjg4
LzEvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZVTbcXaT
KEm9U0g+zJwKXQ+RFq9Yl79rcivIPzjqsqEnL945P2i6pYGpU9N6KClBoQIYyUZd
eyIb3oFbCceyUoKD5BC+y2UgLoDXmH80JEnmi+zVPJNDirW5S4eqjlP8ddO1Nun0
tkHfIRu67CCkvPsu69nMm8EFeN2i9klLN0YBItsbhgYmeuqQsVzZnx20lrkNK5Vs
BoqWGQhSQsVrKPw2dTYNzPkD9Xpx38pGxriZsp16oEuNf+ltJjY2MsUSbPjaYu/+
EUFPCWcVhWyyisTz9dBT/hCKEQzjhwpEZ9PdbyxdX2u+4W2ZwYhCqkuSeRXgc3Pi
OTXmhwEwIM8YMw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:28:42 2025 by rpki-client