Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: dSXyWLsbAbB92SngYTW/JHOD67v6b27UCoTtAzjCCCI=
Subject key identifier: EB:D7:64:66:73:7B:76:C0:38:63:DE:64:88:F0:EA:26:F3:5C:78:E6
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 019A7301B7BCAA99C69A4C0B8FF24BBD12CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 0B2E
Signing time: Tue 11 Nov 2025 13:01:23 +0000
Manifest this update: Tue 11 Nov 2025 13:01:23 +0000
Manifest next update: Wed 12 Nov 2025 13:01:23 +0000
Files and hashes: 1: MCsIROpcTR7JKSRfmFoIKjJ_nz4.roa (hash: R67ARze8qlkUfDP9bKevHmAROQGEYMGNSr3mOqKWMMQ=)
2: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: ETe7+FuCE5a94/SIVX6MqEO+hVU7uV/bv+eAZ1bGupU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 09:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:73:01:b7:bc:aa:99:c6:9a:4c:0b:8f:f2:4b:bd:12:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Nov 11 13:01:23 2025 GMT
Not After : Nov 12 13:01:23 2025 GMT
Subject: CN=ebd76466737b76c03863de6488f0ea26f35c78e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:d6:27:79:0d:10:36:87:49:51:ae:5c:04:
b9:67:ab:43:75:af:20:db:a4:d2:b6:52:9d:8f:c1:
32:17:d1:65:b0:08:6e:89:46:8f:0a:cb:1e:ed:86:
64:18:de:d4:fd:d1:35:88:33:57:e4:38:84:ac:89:
6f:d7:6f:34:39:a2:1f:90:8b:ca:f2:b0:1a:86:93:
a5:e5:f1:65:08:05:21:63:05:93:57:b0:72:60:67:
68:f6:76:74:aa:9f:28:e8:df:5e:77:6a:1e:ea:14:
e9:8b:77:b7:cd:cd:7f:0b:96:60:09:65:4f:a8:29:
d8:e3:57:61:42:fd:f7:7b:52:03:12:02:ba:37:e4:
ac:6e:6d:b6:14:b2:98:f0:d3:b6:f4:d9:9f:7e:11:
8f:d6:dd:6d:7e:88:5f:78:40:30:9a:87:8e:11:77:
b5:c6:03:71:a7:c9:f7:f4:37:ed:74:d7:61:99:20:
cc:5b:43:b7:ae:c2:01:7c:06:2e:27:a3:7f:e5:d3:
4e:bc:52:2a:1a:48:fd:83:08:d9:d9:16:3e:63:ee:
ea:90:d8:be:e4:1d:56:77:6f:42:06:34:26:ae:62:
e9:fd:20:1b:57:d3:d7:40:a9:05:ee:b5:87:20:c1:
e2:60:7b:ef:a6:aa:b1:6a:48:f1:6f:a4:e4:71:32:
fc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D7:64:66:73:7B:76:C0:38:63:DE:64:88:F0:EA:26:F3:5C:78:E6
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9c:c4:36:38:c7:0d:fb:82:6d:24:53:d4:fc:0d:f0:07:ea:
4d:4c:04:3a:4e:90:1d:c9:c0:d3:d1:98:29:6b:b4:7c:00:64:
91:e0:7a:41:6b:5b:c6:c2:e9:f5:fa:df:ba:13:2d:f5:cd:a4:
95:c9:95:48:d1:9f:65:c3:d5:18:f2:32:a6:00:67:d4:74:17:
0d:54:18:e8:9f:67:cd:33:4d:eb:84:73:4c:d0:6a:5f:f0:78:
ea:12:03:d6:6e:57:3c:66:3a:07:4a:8f:8a:7c:6c:fa:14:04:
19:e2:36:29:c4:51:69:7b:e8:5f:43:08:7d:8c:ea:35:4e:15:
8f:c9:eb:24:a2:18:12:be:d7:56:c1:11:f4:09:12:4a:2f:7c:
f0:2d:af:2b:97:73:11:f3:3f:13:af:cd:73:22:76:c4:7f:f5:
3c:43:1d:4c:59:76:d4:21:72:e0:aa:bd:8e:29:60:10:9c:b3:
74:cb:0b:69:cd:e1:a3:bd:b9:5f:d1:17:a1:a4:a2:b7:43:08:
e9:fd:b6:6f:5b:e8:da:70:fe:19:bf:21:a4:7a:39:df:78:8b:
6c:f0:00:f4:8e:23:28:99:e5:50:c7:cb:08:49:e2:d9:f0:41:
62:2a:f2:b8:07:67:19:27:74:ea:0c:83:9d:1c:c8:01:16:a5:
34:0d:c4:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpzAbe8qpnGmkwLj/JLvRLNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZWEyODM2MzVjYjNiZDE1MjNhODVkZGM5Y2FmNTMwNTY4
ZDJmODEwHhcNMjUxMTExMTMwMTIzWhcNMjUxMTEyMTMwMTIzWjAzMTEwLwYDVQQD
EyhlYmQ3NjQ2NjczN2I3NmMwMzg2M2RlNjQ4OGYwZWEyNmYzNWM3OGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+XWJ3kNEDaHSVGuXAS5Z6tDda8g
26TStlKdj8EyF9FlsAhuiUaPCsse7YZkGN7U/dE1iDNX5DiErIlv1280OaIfkIvK
8rAahpOl5fFlCAUhYwWTV7ByYGdo9nZ0qp8o6N9ed2oe6hTpi3e3zc1/C5ZgCWVP
qCnY41dhQv33e1IDEgK6N+Ssbm22FLKY8NO29NmffhGP1t1tfohfeEAwmoeOEXe1
xgNxp8n39DftdNdhmSDMW0O3rsIBfAYuJ6N/5dNOvFIqGkj9gwjZ2RY+Y+7qkNi+
5B1Wd29CBjQmrmLp/SAbV9PXQKkF7rWHIMHiYHvvpqqxakjxb6TkcTL8TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOvXZGZze3bAOGPeZIjw6ibzXHjmMB8GA1UdIwQY
MBaAFJXqKDY1yzvRUjqF3cnK9TBWjS+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0Yjgt
N2JhMjY4NmVhNTE4LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0YjgtN2JhMjY4NmVhNTE4
LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI5zENjjH
DfuCbSRT1PwN8AfqTUwEOk6QHcnA09GYKWu0fABkkeB6QWtbxsLp9frfuhMt9c2k
lcmVSNGfZcPVGPIypgBn1HQXDVQY6J9nzTNN64RzTNBqX/B46hID1m5XPGY6B0qP
inxs+hQEGeI2KcRRaXvoX0MIfYzqNU4Vj8nrJKIYEr7XVsER9AkSSi988C2vK5dz
EfM/E6/NcyJ2xH/1PEMdTFl21CFy4Kq9jilgEJyzdMsLac3ho725X9EXoaSit0MI
6f22b1vo2nD+Gb8hpHo533iLbPAA9I4jKJnlUMfLCEni2fBBYiryuAdnGSd06gyD
nRzIARalNA3Euw==
-----END CERTIFICATE-----
Generated at Tue Nov 11 14:10:58 2025 by rpki-client