Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: h2tkETXZLzi8yX1IVzCGG20Gcx+zv8MREHhPJXbOi0M=
Subject key identifier: 79:F3:49:90:A0:23:E8:87:FD:77:B6:24:8C:11:A3:A1:02:C1:45:95
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 01974BC442999F9EA7D0ACB090EBAEE24E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 098C
Signing time: Sat 07 Jun 2025 19:00:42 +0000
Manifest this update: Sat 07 Jun 2025 19:00:42 +0000
Manifest next update: Sun 08 Jun 2025 19:00:42 +0000
Files and hashes: 1: MCsIROpcTR7JKSRfmFoIKjJ_nz4.roa (hash: R67ARze8qlkUfDP9bKevHmAROQGEYMGNSr3mOqKWMMQ=)
2: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: fGk69+5Imv6rgswIJBRqQ8j8dpeMvxd3A+QDjjX4E8k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:c4:42:99:9f:9e:a7:d0:ac:b0:90:eb:ae:e2:4e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Jun 7 19:00:42 2025 GMT
Not After : Jun 8 19:00:42 2025 GMT
Subject: CN=79f34990a023e887fd77b6248c11a3a102c14595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:18:d0:1b:80:2e:55:cd:be:14:4e:36:09:37:
9b:b4:ff:8d:9c:06:4c:8a:93:61:80:1a:aa:d4:9d:
a0:5c:3d:fc:7b:22:66:ac:77:70:6b:1b:3e:a3:3a:
b1:7e:84:dc:31:67:7f:ec:78:89:bf:38:72:64:9c:
3c:d2:eb:df:c4:15:20:e9:fa:a0:ac:14:34:41:de:
79:4e:1e:74:21:be:b5:3b:7b:e5:9b:95:df:c2:fc:
f7:e4:e8:44:31:c3:39:c2:29:8b:0a:87:af:75:e4:
e5:74:1a:3f:59:ed:58:bf:87:b1:0c:e7:82:b2:79:
8e:c1:d7:3e:dc:96:b5:52:5c:b1:d9:b3:5b:b2:3e:
47:26:52:74:94:94:24:1e:cb:81:65:c9:1f:3d:4e:
18:4c:34:b8:bf:d8:ab:e0:f3:4c:71:98:b1:7a:62:
3d:71:89:6e:9d:22:e6:fc:28:a6:46:27:eb:14:91:
fa:27:a4:b0:03:18:59:4c:d7:93:9e:f8:04:56:08:
0f:49:32:f1:07:c8:14:a7:3b:df:80:80:9b:7e:36:
da:fc:8f:14:c6:cc:27:18:41:29:1d:24:3f:f2:c5:
35:5b:9a:a8:ad:7f:fd:e0:cf:ca:4d:97:51:92:b9:
86:d7:09:34:6d:7e:76:18:01:0a:6c:05:bd:58:42:
ef:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F3:49:90:A0:23:E8:87:FD:77:B6:24:8C:11:A3:A1:02:C1:45:95
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:6e:7c:f7:ee:2c:4b:a9:0c:a1:00:8b:22:ff:5f:3a:e1:24:
95:04:c0:60:16:f8:af:b0:4f:12:58:4d:de:19:76:da:4e:8f:
0a:02:42:b4:24:75:4a:e1:11:d0:e9:f7:5a:a0:27:37:00:38:
a7:af:78:b4:3f:0c:55:41:83:88:ac:18:98:d9:5a:60:2e:33:
6c:7e:4a:00:79:d0:d2:d1:2a:4e:fe:3a:fc:a9:fa:ce:00:78:
91:67:4e:5b:ff:e3:36:61:7b:f3:d2:17:36:64:e4:39:b6:31:
d2:9a:5c:88:e0:fc:fc:25:1b:f8:bf:13:5f:c5:67:dd:5c:62:
c2:71:1b:d5:06:f8:90:d3:d7:24:d6:a1:ab:13:8c:da:d5:61:
8d:c8:79:4b:24:b9:44:d7:48:1d:a3:c7:05:b8:a5:ee:1f:5f:
df:12:d0:3b:39:6b:0d:9e:36:69:a8:0c:b6:dc:eb:b0:f7:aa:
14:65:07:09:f8:ed:3e:0f:27:78:ee:cf:00:f8:4a:10:38:b1:
22:75:5d:01:80:1f:29:4e:7b:c7:1f:82:52:c2:5d:cd:af:ba:
e7:c1:11:fd:53:79:51:5d:0d:22:b3:08:eb:65:bd:46:3b:0e:
60:cf:71:ec:1e:ae:d0:58:fa:0a:1a:09:e9:43:af:22:2c:2f:
81:ce:19:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLxEKZn56n0KywkOuu4k57MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZWEyODM2MzVjYjNiZDE1MjNhODVkZGM5Y2FmNTMwNTY4
ZDJmODEwHhcNMjUwNjA3MTkwMDQyWhcNMjUwNjA4MTkwMDQyWjAzMTEwLwYDVQQD
Eyg3OWYzNDk5MGEwMjNlODg3ZmQ3N2I2MjQ4YzExYTNhMTAyYzE0NTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRjQG4AuVc2+FE42CTebtP+NnAZM
ipNhgBqq1J2gXD38eyJmrHdwaxs+ozqxfoTcMWd/7HiJvzhyZJw80uvfxBUg6fqg
rBQ0Qd55Th50Ib61O3vlm5Xfwvz35OhEMcM5wimLCoevdeTldBo/We1Yv4exDOeC
snmOwdc+3Ja1Ulyx2bNbsj5HJlJ0lJQkHsuBZckfPU4YTDS4v9ir4PNMcZixemI9
cYlunSLm/CimRifrFJH6J6SwAxhZTNeTnvgEVggPSTLxB8gUpzvfgICbfjba/I8U
xswnGEEpHSQ/8sU1W5qorX/94M/KTZdRkrmG1wk0bX52GAEKbAW9WELvBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHnzSZCgI+iH/Xe2JIwRo6ECwUWVMB8GA1UdIwQY
MBaAFJXqKDY1yzvRUjqF3cnK9TBWjS+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0Yjgt
N2JhMjY4NmVhNTE4LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0YjgtN2JhMjY4NmVhNTE4
LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQW589+4s
S6kMoQCLIv9fOuEklQTAYBb4r7BPElhN3hl22k6PCgJCtCR1SuER0On3WqAnNwA4
p694tD8MVUGDiKwYmNlaYC4zbH5KAHnQ0tEqTv46/Kn6zgB4kWdOW//jNmF789IX
NmTkObYx0ppciOD8/CUb+L8TX8Vn3VxiwnEb1Qb4kNPXJNahqxOM2tVhjch5SyS5
RNdIHaPHBbil7h9f3xLQOzlrDZ42aagMttzrsPeqFGUHCfjtPg8neO7PAPhKEDix
InVdAYAfKU57xx+CUsJdza+658ER/VN5UV0NIrMI62W9RjsOYM9x7B6u0Fj6ChoJ
6UOvIiwvgc4Zqw==
-----END CERTIFICATE-----
Generated at Sun Jun 8 03:00:45 2025 by rpki-client