Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: jiIjzaI63dRa4TRTGEvJI/gcJ+KMK4QVTDXMGYyMAZA=
Subject key identifier: DA:0F:46:54:D3:D2:4B:ED:D0:29:65:AC:8E:E8:A9:32:B0:B3:03:4F
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 019856453FB830B5F8D9D946D7B272C1BC3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 0A16
Signing time: Tue 29 Jul 2025 13:00:35 +0000
Manifest this update: Tue 29 Jul 2025 13:00:35 +0000
Manifest next update: Wed 30 Jul 2025 13:00:35 +0000
Files and hashes: 1: MCsIROpcTR7JKSRfmFoIKjJ_nz4.roa (hash: R67ARze8qlkUfDP9bKevHmAROQGEYMGNSr3mOqKWMMQ=)
2: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: OvOsqZQLQ91kN/CqrzBcVWva0D0ZCUKMYT2B2PgWBWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Jul 2025 08:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:56:45:3f:b8:30:b5:f8:d9:d9:46:d7:b2:72:c1:bc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Jul 29 13:00:35 2025 GMT
Not After : Jul 30 13:00:35 2025 GMT
Subject: CN=da0f4654d3d24bedd02965ac8ee8a932b0b3034f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:90:13:7e:4c:64:3d:71:12:ea:d2:c5:c7:f4:
83:af:cb:86:25:19:e0:df:aa:89:f6:66:f6:a7:a7:
c0:a3:e3:d5:4a:42:0d:13:1c:0a:1f:ac:40:e2:80:
f1:96:fa:6c:3c:c0:b4:ff:9d:26:3d:9e:14:0f:4e:
b7:34:f9:10:64:9d:08:4e:56:05:68:09:54:7b:38:
1d:e9:a6:bf:31:c5:99:1c:53:69:f8:99:96:b9:4d:
d6:3e:e0:10:41:1d:4f:bc:01:4c:fb:55:c8:e5:5d:
64:fa:83:08:d4:0a:7e:3c:34:8b:57:18:ab:53:9e:
da:b1:6d:8d:70:19:33:9c:c6:e2:1d:75:e8:ad:9a:
22:1a:ef:cd:7f:da:c0:07:f2:ae:ef:28:34:e4:49:
be:72:9a:ee:6b:4c:f1:77:14:fa:e9:0c:c4:7f:1e:
f5:bf:e4:e1:66:a4:a4:47:71:9a:6c:93:9e:18:86:
0b:47:31:fd:c9:63:30:1d:64:dd:1d:d0:a0:88:37:
a0:5e:5b:19:3f:86:16:87:93:8e:cf:75:41:d8:3e:
24:e5:db:97:e9:a2:15:bd:9e:32:46:75:dd:74:d2:
df:33:8f:d9:f4:b2:ed:c0:11:cb:66:12:46:f8:24:
a6:bf:a5:52:43:1a:56:e6:48:27:42:86:82:a9:e5:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0F:46:54:D3:D2:4B:ED:D0:29:65:AC:8E:E8:A9:32:B0:B3:03:4F
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:8f:a2:55:6d:5f:55:49:4b:7c:59:43:cf:d3:b4:5a:8d:1f:
5f:b0:d4:60:44:e8:52:87:ab:aa:a2:d9:1b:82:f9:25:c9:c4:
14:8e:63:ee:8f:ea:86:c6:0f:a8:e4:55:b6:f2:db:53:4b:e9:
36:20:d6:2a:d6:78:88:0c:1d:92:c9:a1:7e:fa:96:21:66:f9:
93:c7:a9:67:98:87:09:5f:e7:ca:47:b5:f1:8f:c6:63:ed:94:
89:24:83:23:fd:65:e6:1a:e1:a3:dc:e2:85:1e:f3:d8:fb:a2:
14:59:24:f1:04:a3:94:4f:9d:d7:87:db:7f:19:e3:2d:60:af:
ab:78:df:87:b1:7c:3f:54:43:2a:a6:e7:5c:86:fd:2c:f5:79:
2d:29:8f:c7:07:dd:22:82:90:13:c3:dd:83:61:c4:7a:07:16:
ea:0e:8d:a9:89:47:a2:1d:a4:64:25:fe:48:25:81:af:4f:07:
b4:6e:86:9c:5e:db:55:32:7f:64:f2:7e:3f:04:d2:ae:41:f9:
7b:f4:06:14:ab:60:5d:a7:f1:cc:f2:3e:79:e4:f0:10:f0:a2:
24:f9:e3:bc:43:bc:3c:dd:03:47:93:02:75:86:3e:ba:d7:95:
8c:b0:29:d3:dd:6f:cd:8e:58:a3:bd:51:46:c1:e5:cf:7b:69:
d0:5f:24:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 14:40:44 2025 by rpki-client