Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: 6++cO3EmV0o/6qWP3iO9BR0K+KrreXAhz8SreZtjYik=
Subject key identifier: AD:7F:49:D5:8E:62:D5:FF:90:2F:FA:F6:EE:11:23:A8:B0:C4:89:27
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 0196586FDE5DEB9586AC70FE6A8594F14F21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 090E
Signing time: Mon 21 Apr 2025 13:00:48 +0000
Manifest this update: Mon 21 Apr 2025 13:00:48 +0000
Manifest next update: Tue 22 Apr 2025 13:00:48 +0000
Files and hashes: 1: MCsIROpcTR7JKSRfmFoIKjJ_nz4.roa (hash: R67ARze8qlkUfDP9bKevHmAROQGEYMGNSr3mOqKWMMQ=)
2: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: 3BNSVJgqyNZAaRSH0zhP9/hpk82kD+GJR1jL3bvMnDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:de:5d:eb:95:86:ac:70:fe:6a:85:94:f1:4f:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Apr 21 13:00:48 2025 GMT
Not After : Apr 22 13:00:48 2025 GMT
Subject: CN=ad7f49d58e62d5ff902ffaf6ee1123a8b0c48927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6f:e3:58:c6:6d:bc:df:2e:2f:6a:67:e8:9a:
99:83:76:ab:6e:61:64:ab:51:bb:12:98:d4:54:bd:
33:16:eb:81:e3:c7:cc:9e:ea:95:86:87:b8:3b:d5:
f0:f0:7e:a2:52:6c:e3:2d:ec:d5:f7:07:8d:65:86:
5d:76:cb:b7:5a:da:20:5d:b2:78:9d:e7:c7:32:fc:
97:b5:0e:0d:78:29:09:c1:5a:1f:6e:b2:df:f7:04:
15:0a:07:40:87:7f:f4:18:bc:3b:13:fb:fc:84:1e:
1c:a5:32:f4:22:c8:d7:4b:74:84:12:af:54:59:7c:
d8:84:bf:1c:51:eb:b5:03:89:f9:19:f8:1d:e0:da:
fe:74:1e:19:d0:ac:ae:c1:a1:00:80:67:2b:4a:fb:
9b:01:e5:c2:ee:99:42:cc:d9:89:3f:31:db:aa:8d:
48:9d:64:56:74:c0:1f:83:c2:72:13:68:b8:37:9a:
75:58:ea:a3:0b:83:30:32:d3:02:4a:d8:90:be:30:
2e:23:94:7c:6d:15:6d:8c:b8:5d:b0:2b:78:9c:76:
34:36:17:b0:22:fe:85:a1:81:ba:75:90:86:a5:5e:
7f:33:01:d0:68:d1:73:89:9d:72:16:9b:ed:2f:e3:
70:69:d1:b7:b3:b0:01:04:e7:35:cd:3f:12:13:df:
1b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:7F:49:D5:8E:62:D5:FF:90:2F:FA:F6:EE:11:23:A8:B0:C4:89:27
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:ad:f4:44:f0:e9:46:70:a9:ca:8d:46:98:58:c7:bd:8f:5b:
dc:bc:bd:f2:a2:04:33:9d:a4:ee:ec:79:4a:12:50:3d:98:23:
ba:1b:5d:e1:68:5b:2d:cd:6b:86:84:fe:e9:21:33:34:cb:6e:
bd:31:f7:8e:9f:55:91:49:ed:ba:4e:54:41:d3:39:26:f6:17:
5b:87:07:6d:5b:81:78:fc:3f:df:0f:a5:2c:99:40:ba:24:77:
80:a6:78:da:8e:99:43:8d:18:05:6e:ce:85:b5:8e:1c:75:a8:
b4:67:88:af:e5:63:5b:d2:89:f2:87:09:e0:eb:a5:6b:04:6c:
68:a7:13:87:81:73:de:d1:0e:b6:16:76:a2:2f:d7:5d:4e:39:
26:1b:ac:0d:a8:8c:b5:59:65:56:15:a4:19:35:c7:0e:c9:f7:
7e:9a:b3:5c:56:7e:88:42:33:d5:ea:30:c8:a5:59:4b:6a:f1:
98:b2:a3:60:74:24:4d:8c:1d:d0:f4:fc:21:96:5c:47:8a:a6:
a2:a9:bb:2a:b8:cf:4a:6a:01:0a:68:c7:a5:15:19:d7:25:02:
37:90:4b:c1:fd:bf:fe:c8:b7:95:2d:47:72:33:5e:2d:38:24:
0e:6e:09:58:0a:2f:60:4c:45:68:cc:75:00:df:cd:6a:9d:fd:
9a:d7:25:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:05:16 2025 by rpki-client