Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
File: ONBDirVthCFxMbwG_jNeTHhD63k.mft (raw, json)
Hash identifier: BmsHKuH6eJJ5qZFRpziiKk3B4AJUADlwgTQjN5aQ+Dc=
Subject key identifier: D3:99:44:EC:B7:35:57:B8:F3:73:28:05:F3:81:B7:02:DB:C9:12:43
Authority key identifier: 38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
Certificate issuer: /CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Certificate serial: 01936A0F5AF67535B60B5C77AE9483210EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
Manifest number: 80
Signing time: Tue 26 Nov 2024 20:00:11 +0000
Manifest this update: Tue 26 Nov 2024 20:00:11 +0000
Manifest next update: Wed 27 Nov 2024 20:00:11 +0000
Files and hashes: 1: FFEFwVRHWxZ-gnlHbEEIROqSgHY.roa (hash: KT2xc8fimoOSY4sXutXIPmmdSk8HxI5onhJKWM8iVIk=)
2: ONBDirVthCFxMbwG_jNeTHhD63k.crl (hash: hV08CdhqfW19nEwSPuE4pO8Y1WlKykY2mZJ4dEvqfX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6a:0f:5a:f6:75:35:b6:0b:5c:77:ae:94:83:21:0e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38d0438ab56d84217131bc06fe335e4c7843eb79
Validity
Not Before: Nov 26 20:00:11 2024 GMT
Not After : Nov 27 20:00:11 2024 GMT
Subject: CN=d39944ecb73557b8f3732805f381b702dbc91243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:df:28:10:b1:39:6f:5b:71:af:e7:a4:d8:
ee:59:a1:e6:0e:17:d2:3b:37:59:e6:19:5c:0b:d5:
f9:8e:25:fb:05:94:40:2d:15:e9:8e:36:99:2c:4a:
58:99:ae:fc:b9:fd:f3:eb:6e:fa:63:73:8a:e0:c5:
1f:03:98:26:a3:71:49:f0:4d:2e:e0:7c:91:ab:e1:
bc:ae:44:67:50:05:cf:14:9e:61:9a:d8:1b:cd:2c:
55:c2:33:b9:42:19:1a:71:31:6f:c4:63:da:3c:86:
e8:a9:ba:a7:f8:1b:e6:32:94:92:cc:5b:84:b5:fb:
eb:3a:6a:6e:31:6a:39:78:c6:21:4f:28:6e:af:8b:
b9:f1:a9:ff:df:a3:11:58:aa:06:f5:fe:b7:6f:93:
a7:77:55:d0:50:33:3b:df:7f:53:ac:03:9b:22:c8:
bf:fd:a8:26:17:d4:62:91:86:b0:0b:48:cb:0a:06:
8d:ad:f7:f2:13:95:eb:c3:ff:9e:db:c5:31:2e:d0:
b1:8f:c6:f3:d9:7a:d6:b5:c8:f9:ef:0f:3e:2d:40:
da:f8:c3:ae:bf:d2:41:d4:1c:b9:89:5e:3f:4d:17:
70:64:50:d8:b8:9c:2c:c4:71:07:b1:8b:c7:8c:19:
aa:29:3e:68:fd:07:f5:c7:44:ec:f6:20:38:6d:51:
09:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:99:44:EC:B7:35:57:B8:F3:73:28:05:F3:81:B7:02:DB:C9:12:43
X509v3 Authority Key Identifier:
keyid:38:D0:43:8A:B5:6D:84:21:71:31:BC:06:FE:33:5E:4C:78:43:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ONBDirVthCFxMbwG_jNeTHhD63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/fe1a8c-9585-4291-9df1-d9e6c5f0d288/1/ONBDirVthCFxMbwG_jNeTHhD63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:cb:91:dc:60:c5:cc:58:00:d4:3d:db:d2:e5:6c:ac:42:60:
c0:46:4a:fd:14:24:15:6d:2a:58:12:2b:59:cf:00:3b:17:c9:
71:12:96:27:b3:8c:ae:1e:74:83:0a:56:d9:06:e8:3b:68:7e:
f7:8e:51:e2:78:25:00:c6:c4:c2:bb:5d:f0:e4:84:da:54:ac:
93:c2:55:b4:90:11:24:5e:6e:48:d8:18:b9:64:78:2b:dd:ef:
45:81:a8:1e:7d:8f:46:1c:da:cf:bc:27:4f:16:ac:a2:4f:64:
dd:5e:4d:cb:94:46:cf:6d:08:a3:2b:39:b9:0a:35:b4:e5:1a:
75:84:69:e6:05:62:6e:c7:1b:ba:47:b2:89:ed:94:b7:38:55:
92:6b:00:84:c5:39:df:8a:de:ec:e1:5f:d2:f6:9f:67:c3:9b:
0f:7c:af:80:5c:df:b4:2a:6c:c8:5f:8a:10:d2:93:f6:6f:a4:
23:58:c0:c1:b0:d8:a6:34:90:34:92:ad:5e:b8:31:c8:d5:48:
f9:04:f4:69:f5:42:0a:18:77:1c:be:da:52:8d:26:07:be:ad:
e2:53:b9:4f:c2:d2:28:04:af:ee:e3:13:37:5c:95:25:27:55:
55:d7:f7:0a:18:e0:e5:9e:16:44:92:67:a5:93:cf:35:82:f9:
ec:cc:ea:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNqD1r2dTW2C1x3rpSDIQ76MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4ZDA0MzhhYjU2ZDg0MjE3MTMxYmMwNmZlMzM1ZTRjNzg0
M2ViNzkwHhcNMjQxMTI2MjAwMDExWhcNMjQxMTI3MjAwMDExWjAzMTEwLwYDVQQD
EyhkMzk5NDRlY2I3MzU1N2I4ZjM3MzI4MDVmMzgxYjcwMmRiYzkxMjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus/fKBCxOW9bca/npNjuWaHmDhfS
OzdZ5hlcC9X5jiX7BZRALRXpjjaZLEpYma78uf3z6276Y3OK4MUfA5gmo3FJ8E0u
4HyRq+G8rkRnUAXPFJ5hmtgbzSxVwjO5QhkacTFvxGPaPIboqbqn+BvmMpSSzFuE
tfvrOmpuMWo5eMYhTyhur4u58an/36MRWKoG9f63b5Ond1XQUDM7339TrAObIsi/
/agmF9RikYawC0jLCgaNrffyE5Xrw/+e28UxLtCxj8bz2XrWtcj57w8+LUDa+MOu
v9JB1By5iV4/TRdwZFDYuJwsxHEHsYvHjBmqKT5o/Qf1x0Ts9iA4bVEJywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNOZROy3NVe483MoBfOBtwLbyRJDMB8GA1UdIwQY
MBaAFDjQQ4q1bYQhcTG8Bv4zXkx4Q+t5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9mZTFhOGMtOTU4NS00MjkxLTlkZjEt
ZDllNmM1ZjBkMjg4LzEvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9mZTFhOGMtOTU4NS00MjkxLTlkZjEtZDllNmM1ZjBkMjg4
LzEvT05CRGlyVnRoQ0Z4TWJ3R19qTmVUSGhENjNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgcuR3GDF
zFgA1D3b0uVsrEJgwEZK/RQkFW0qWBIrWc8AOxfJcRKWJ7OMrh50gwpW2QboO2h+
945R4nglAMbEwrtd8OSE2lSsk8JVtJARJF5uSNgYuWR4K93vRYGoHn2PRhzaz7wn
Txasok9k3V5Ny5RGz20Ioys5uQo1tOUadYRp5gVibscbukeyie2UtzhVkmsAhMU5
34re7OFf0vafZ8ObD3yvgFzftCpsyF+KENKT9m+kI1jAwbDYpjSQNJKtXrgxyNVI
+QT0afVCChh3HL7aUo0mB76t4lO5T8LSKASv7uMTN1yVJSdVVdf3Chjg5Z4WRJJn
pZPPNYL57Mzqvg==
-----END CERTIFICATE-----
Generated at Wed Nov 27 00:19:13 2024 by rpki-client on console-ams.rpki-client.org