Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: 6BRyUEnzgVd+UPdujlniIWCXAvmGz1EGDkIkS9zc61Q=
Subject key identifier: 6B:B4:4C:56:EB:24:D7:FE:FB:9C:1A:15:8C:E4:44:B7:76:54:33:49
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 019E1DC72007D4858B2FB9DEFDD86BC2940C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 060B
Signing time: Tue 12 May 2026 20:00:49 +0000
Manifest this update: Tue 12 May 2026 20:00:49 +0000
Manifest next update: Wed 13 May 2026 20:00:49 +0000
Files and hashes: 1: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: 6jj+z2TxCLqT/dYEARumScwMLxiN0yhBWGB3ZUk9Ato=)
2: pSL3Mi5XEdAchUtMULvCKuIdKaM.roa (hash: PIsMvcROTvHOYMP/WBLkPzqoyaR6+wBcYymEnJhYyE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:20:07:d4:85:8b:2f:b9:de:fd:d8:6b:c2:94:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: May 12 20:00:49 2026 GMT
Not After : May 13 20:00:49 2026 GMT
Subject: CN=6bb44c56eb24d7fefb9c1a158ce444b776543349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:13:cb:49:87:8f:a9:20:cb:dd:25:4b:69:cb:
33:ed:48:39:eb:e1:5b:ca:e8:c7:47:0d:44:bb:4f:
82:48:94:5d:aa:20:2a:e8:30:52:47:e8:d9:f5:13:
21:92:ef:09:9b:a4:37:28:a5:52:9c:ff:88:5b:c7:
ea:3b:59:8c:d6:d2:fb:6f:b6:36:19:c5:ac:2d:66:
73:78:58:3e:27:d6:2c:75:af:1c:ff:77:34:d3:70:
5a:b4:9e:aa:61:65:67:c2:d4:44:e5:28:43:24:6c:
81:a9:06:4b:7a:96:53:a6:c9:61:9b:33:bc:d7:2c:
73:2d:43:b9:7f:d1:42:7a:92:4f:9a:9e:5c:ed:9a:
43:7f:c8:60:87:7b:23:59:16:7d:3c:45:b0:67:48:
b7:a6:5b:33:23:4e:88:5b:89:0d:65:e6:62:0a:f7:
f8:bf:4d:58:25:6b:f6:c7:05:91:81:9e:e4:db:70:
30:71:4c:a0:00:db:38:b6:46:71:cb:e4:2a:ec:39:
4a:b6:28:8b:34:9b:99:d7:6d:37:cf:93:1e:42:d9:
ad:2c:63:55:7c:52:a9:f9:e3:0e:7d:fa:ed:0f:1b:
e5:eb:9d:2c:bc:8d:fe:6b:d0:01:f8:f4:5c:8c:d7:
2e:be:b9:71:61:c4:b8:5b:86:87:21:e4:b8:c1:a2:
db:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:B4:4C:56:EB:24:D7:FE:FB:9C:1A:15:8C:E4:44:B7:76:54:33:49
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:8e:0b:d9:06:7c:d3:ff:ec:c0:58:21:56:a0:dc:97:49:27:
92:be:7d:39:e2:b5:a7:a5:28:c8:46:43:a6:9f:d6:b0:ad:39:
5d:6f:6a:09:0c:e8:ce:f4:55:f2:35:f5:77:99:73:4c:81:4d:
14:15:26:63:18:f8:e7:24:ba:b1:22:50:ce:8e:52:cb:40:84:
02:3b:2d:24:92:62:b3:49:9a:54:91:63:46:4b:71:d0:d1:8c:
e6:3e:96:67:be:97:b1:6e:e8:3b:10:96:2f:df:e4:6c:87:00:
0c:51:9f:b7:6a:df:27:c3:b2:33:c8:24:26:04:ba:a0:9b:af:
25:c0:a3:ac:e0:b2:a5:42:0a:36:46:07:81:25:a9:31:34:f5:
14:e7:22:e7:80:0e:5e:dc:ec:4a:69:83:56:ce:bf:60:03:d9:
c8:79:f7:ea:71:64:7c:f8:7b:fa:cd:af:64:8d:03:5a:b2:04:
34:26:6a:48:eb:9c:fa:e3:56:40:b8:1e:b5:b7:0e:18:b2:c0:
a1:49:d8:21:5f:f8:8d:84:d9:29:ff:fa:d4:20:3c:aa:d3:1b:
18:fa:f2:8a:d4:3d:29:4c:04:49:e2:ac:98:6e:a7:4d:72:cf:
b3:3e:c1:a4:f3:6b:4f:ec:67:b6:50:72:f8:bf:12:16:bd:5c:
ca:67:1b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:35:26 2026 by rpki-client