Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: +32kLI9uV2dZ/v5kEVfegnq8xBDXNq4JhECLA3tZENA=
Subject key identifier: C8:D2:03:22:A9:B1:57:B8:BF:E9:BD:92:DF:E9:94:4E:68:01:20:26
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 01974A7B2EB079E1D46E120C9A220919A195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 0282
Signing time: Sat 07 Jun 2025 13:01:16 +0000
Manifest this update: Sat 07 Jun 2025 13:01:16 +0000
Manifest next update: Sun 08 Jun 2025 13:01:16 +0000
Files and hashes: 1: BFrr-Y0U-5iptN2idzPFsrYv6zw.roa (hash: SItZsNwfN8g7OyWNk2li9IKpDbpjiOGNcOTycVK0WwU=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: pgitQoP+T1mLZTexY8kYWCNeg+v2j4WzRiiuczwbpxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:2e:b0:79:e1:d4:6e:12:0c:9a:22:09:19:a1:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Jun 7 13:01:16 2025 GMT
Not After : Jun 8 13:01:16 2025 GMT
Subject: CN=c8d20322a9b157b8bfe9bd92dfe9944e68012026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e2:d0:f1:25:da:88:c6:2b:89:d5:63:5b:3a:
16:2c:63:ed:79:ef:91:b5:b4:02:00:65:7b:76:e1:
9a:29:9f:9d:c0:4a:48:bd:16:99:76:92:d9:d9:78:
43:8d:7f:e7:59:9a:5a:a0:1a:85:0d:2c:1d:24:d9:
79:0c:a2:dc:33:c2:71:d0:50:cd:de:f6:f5:dc:a9:
b4:38:a1:58:9b:58:69:59:23:03:32:55:55:3b:67:
3f:e3:eb:37:6c:44:8d:b1:51:2f:4b:6c:c4:60:93:
2d:5c:bf:0e:58:37:7f:55:6c:ec:b3:f1:4b:8b:dc:
bf:c4:72:b0:f6:8e:c2:89:f6:e6:0e:4a:67:7d:6d:
1d:10:8b:c7:ba:3e:19:3b:92:c8:45:5c:80:57:59:
c6:30:ec:3d:f0:24:1c:99:9c:32:ac:b0:80:3c:b5:
df:c2:f7:f2:2a:40:71:94:e0:96:75:f1:63:8d:0e:
4e:8f:62:b5:3d:9c:d8:9f:61:aa:bb:ce:67:ab:cc:
5b:22:f9:28:f6:be:51:97:ae:42:16:f0:01:25:c5:
bb:b5:11:89:ae:f2:1a:dd:93:6b:de:c6:a1:ff:8c:
aa:7e:dc:e8:5e:58:78:18:e9:b7:79:35:42:3e:9a:
8b:67:4d:0c:aa:53:49:65:ea:8d:69:e3:65:2b:7e:
46:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D2:03:22:A9:B1:57:B8:BF:E9:BD:92:DF:E9:94:4E:68:01:20:26
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:02:f0:64:82:f1:5f:72:75:62:74:b1:57:c1:9c:08:8e:58:
74:d1:5f:d5:21:84:32:c2:57:fa:59:7f:6a:22:58:30:05:83:
02:8b:57:41:72:de:f1:a8:96:a7:0a:8b:74:84:07:e8:52:6d:
43:31:2c:67:f9:64:df:ae:a1:10:f9:19:d7:6a:e7:1e:64:47:
fd:94:c4:7f:2e:8c:59:64:74:3e:29:56:c4:34:29:cf:0d:e8:
72:b0:bf:ee:8d:47:fc:a4:1d:eb:e4:ff:07:4a:44:15:67:f6:
7e:00:bd:d6:b7:e1:b2:d5:f1:e2:d2:82:b7:25:24:f8:c1:67:
0a:b3:49:20:7a:85:b6:e4:bb:78:69:3f:69:43:c1:70:bb:37:
a6:65:75:a5:e4:b1:e5:9b:0d:9c:6d:52:c5:91:4a:d9:8b:fd:
3d:38:f1:87:62:a2:9f:02:12:06:fa:e1:55:8a:05:60:80:12:
b3:80:e2:6c:52:6b:72:5a:39:e0:c5:a0:e7:91:12:66:2b:bd:
07:80:22:fe:33:75:a6:b7:ea:a1:14:f8:e5:d2:62:8d:07:01:
c6:f1:f8:97:61:b7:19:f6:c1:8c:31:7b:c4:21:45:39:46:34:
83:d3:8d:c0:19:08:d7:4c:e7:55:5f:32:47:d9:e0:fc:2a:e9:
92:32:99:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 22:26:36 2025 by rpki-client