Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: BAu37mABq2qSDJKkm38UJ7r3Jo40jY72rU6SN2iGObA=
Subject key identifier: C3:37:FC:74:7A:97:C0:53:ED:51:85:73:DA:E7:5C:37:DD:1D:B8:B1
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 0197B6A1C86209A918B100975C9710351F8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 02BA
Signing time: Sat 28 Jun 2025 13:02:25 +0000
Manifest this update: Sat 28 Jun 2025 13:02:25 +0000
Manifest next update: Sun 29 Jun 2025 13:02:25 +0000
Files and hashes: 1: BFrr-Y0U-5iptN2idzPFsrYv6zw.roa (hash: SItZsNwfN8g7OyWNk2li9IKpDbpjiOGNcOTycVK0WwU=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: Ig3K4meHHXhjTpZb4m6GVdO/GCPQUDm7cOBlEvqUjRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c8:62:09:a9:18:b1:00:97:5c:97:10:35:1f:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Jun 28 13:02:25 2025 GMT
Not After : Jun 29 13:02:25 2025 GMT
Subject: CN=c337fc747a97c053ed518573dae75c37dd1db8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:e9:63:65:d3:72:4d:10:b7:ed:87:f2:44:
d2:04:02:65:12:3e:37:b1:e8:07:7c:96:08:7c:ea:
24:aa:aa:a5:83:01:15:a1:c2:ab:03:d6:bb:bd:f0:
29:82:83:0c:a3:ba:67:20:f5:8e:42:09:cb:30:60:
2a:9b:92:04:45:48:e4:d4:f6:6d:8b:19:85:60:92:
49:c8:17:e9:97:c9:5b:32:de:4f:78:cf:d4:ff:df:
70:fb:38:f0:ff:cf:e2:6e:96:4c:12:18:0c:75:2f:
2e:eb:02:dc:16:31:47:59:b5:b1:8a:b4:3d:0a:75:
a1:d0:e7:3e:d5:81:fa:c9:3f:f8:0e:69:6e:a0:3f:
8c:2c:6a:c3:72:8c:c4:96:a9:39:10:10:04:a5:6f:
d1:28:e8:e8:c2:ae:24:ff:6e:c7:1b:59:73:63:96:
b8:6a:35:23:98:f9:f5:22:02:f7:09:dc:fb:56:28:
4f:0f:96:25:28:64:42:b3:c1:c5:3a:e5:99:a6:22:
bc:87:e5:65:8e:f2:38:a8:36:4b:24:14:b8:eb:93:
0e:e8:e1:01:0f:af:00:e0:14:76:e4:bf:5b:63:0c:
bd:9b:a1:d2:d8:84:89:4e:b5:eb:6f:93:67:55:1c:
05:ce:81:12:e0:02:74:75:30:84:13:96:ca:0c:19:
ad:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:37:FC:74:7A:97:C0:53:ED:51:85:73:DA:E7:5C:37:DD:1D:B8:B1
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:67:8b:62:f8:0e:eb:d4:aa:7f:8f:1a:da:aa:ab:f6:9f:09:
7e:52:b0:af:20:29:7c:57:45:c4:fe:3d:a8:81:c4:cf:aa:76:
41:5b:52:a6:a5:c0:98:53:76:56:19:1a:68:b4:7a:ba:25:a2:
32:d7:7e:5f:e3:53:88:6d:ed:08:6f:2b:61:f6:3c:70:f6:de:
ba:4c:30:f4:07:05:17:e7:10:c4:61:20:d3:86:f6:07:dc:2f:
10:9d:e3:87:b7:b6:53:66:70:3f:ff:ea:2e:ac:0d:35:ca:d6:
fe:53:0a:62:07:84:0c:54:d7:24:c8:a8:f0:92:33:12:07:a2:
22:3d:6a:ef:a0:1b:3a:4e:b9:12:43:c7:a3:7f:c8:9a:ad:5f:
6e:52:26:b7:12:80:e4:96:d2:48:e6:93:4c:e3:10:ed:de:ff:
c7:95:9a:62:0a:55:25:23:d8:1c:46:3a:b7:88:61:98:12:18:
14:e8:ef:2e:91:a3:df:32:1e:c6:ee:67:e7:ba:dc:4e:d0:2c:
99:bf:20:e4:6d:89:43:c3:84:76:5b:d2:1c:07:11:c3:bf:f3:
a1:c1:ae:96:da:cb:c3:ca:a6:e6:5b:ed:d1:aa:8c:db:20:bd:
a3:1e:26:06:0c:c2:c9:4a:59:40:b9:4a:01:44:97:3c:c1:55:
01:07:64:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:19:30 2025 by rpki-client