Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
File: leooNjXLO9FSOoXdycr1MFaNL4E.mft (raw, json)
Hash identifier: 7ajexUxJNp5Gt1U9YqKVVK3t+Zjc/6QjurYFiSHTEf4=
Subject key identifier: F6:36:CA:F6:73:26:9F:3C:02:EB:E7:95:DF:AE:BB:FB:EE:5D:25:05
Authority key identifier: 95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
Certificate issuer: /CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Certificate serial: 019D389C4A21A4C53F57415602DD7F4C27A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
Manifest number: 0C9E
Signing time: Sun 29 Mar 2026 08:00:59 +0000
Manifest this update: Sun 29 Mar 2026 08:00:59 +0000
Manifest next update: Mon 30 Mar 2026 08:00:59 +0000
Files and hashes: 1: leooNjXLO9FSOoXdycr1MFaNL4E.crl (hash: xd+yCB1sVQUjBLo87GVKd+aB4gFQ4lVPOxHqVZ3DuIA=)
2: y8oZ66nLHzO58eQvPIRpmWAPl7c.roa (hash: L/V2Ozu3PD9MBYyFc1nynxKrWqd8IdYQzQ81hC8pp8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:4a:21:a4:c5:3f:57:41:56:02:dd:7f:4c:27:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ea283635cb3bd1523a85ddc9caf530568d2f81
Validity
Not Before: Mar 29 08:00:59 2026 GMT
Not After : Mar 30 08:00:59 2026 GMT
Subject: CN=f636caf673269f3c02ebe795dfaebbfbee5d2505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:98:be:29:8c:26:fc:ab:e3:cd:a1:06:7d:81:
20:de:4e:03:37:d4:2c:d1:f0:af:0b:aa:bf:8e:fc:
f2:ee:e9:d5:f9:e4:01:0a:cc:3e:b9:ab:9b:93:2b:
aa:b9:61:27:d2:26:d5:95:24:81:69:cc:86:be:ad:
96:91:d1:eb:00:3e:8c:c1:ac:2c:e2:70:d6:6d:1d:
9b:40:d6:e8:54:e0:00:c4:78:fd:64:d9:fe:a5:b9:
58:25:97:e2:9f:9d:b7:a3:d8:23:45:bd:99:1f:5d:
52:24:de:92:a8:c3:98:40:79:c2:25:df:93:0c:2d:
64:1e:ff:e7:46:21:7d:4c:65:47:46:1c:d5:b9:3e:
66:39:27:1a:de:ec:5d:e2:1d:f1:19:d5:2e:b5:de:
22:a9:67:11:38:87:06:b8:c2:0b:83:02:5e:e9:d8:
08:ca:b2:a1:19:bb:89:69:0c:76:a6:86:ca:44:e7:
b3:21:6a:86:67:e4:41:42:6f:9b:cf:8b:41:bb:28:
2a:fe:f2:04:9c:1d:a4:03:3a:b0:dc:55:ea:93:5a:
42:b5:06:a7:40:eb:8e:98:6d:26:84:f6:59:bd:8f:
07:5d:cf:4b:f3:aa:42:c9:c0:c7:55:27:d0:d9:17:
4f:99:88:ec:65:6f:61:df:37:5a:68:c4:b7:e2:a7:
88:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:36:CA:F6:73:26:9F:3C:02:EB:E7:95:DF:AE:BB:FB:EE:5D:25:05
X509v3 Authority Key Identifier:
keyid:95:EA:28:36:35:CB:3B:D1:52:3A:85:DD:C9:CA:F5:30:56:8D:2F:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leooNjXLO9FSOoXdycr1MFaNL4E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/5b46bb-0af4-47d6-a4b8-7ba2686ea518/1/leooNjXLO9FSOoXdycr1MFaNL4E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:69:3f:1a:c7:7b:1c:ea:25:06:0f:a4:e9:56:93:5d:85:25:
c2:14:52:69:99:c2:fc:7f:70:55:cf:eb:4e:ed:8a:3b:27:d4:
9c:08:1d:c8:3e:b2:67:3d:9f:76:a8:43:c9:36:e6:e0:4e:4f:
92:46:06:ed:2d:74:f6:76:33:85:1c:92:aa:c0:7c:0b:25:9a:
08:f4:c8:9a:45:b2:55:4d:9c:2c:1f:fc:00:cb:d8:8f:4d:52:
a7:10:d0:96:39:07:5f:f3:d3:dc:3e:30:88:0a:fd:53:81:a8:
fc:e2:b3:76:75:e7:9e:a2:59:09:bb:c4:61:3c:e4:03:16:91:
cc:90:92:3b:83:23:2e:f7:38:c2:fc:fe:86:0e:5e:f6:62:07:
8a:25:4b:46:f2:06:1d:b7:be:19:97:ea:ad:83:74:bb:7f:34:
b4:16:37:4a:dc:ee:94:b7:84:68:e9:73:1b:cb:66:28:60:4a:
d6:81:c8:ff:a6:51:4b:7d:5d:69:cf:fb:d0:65:77:41:43:e4:
15:ca:32:85:3e:20:ff:6e:0d:6a:0b:ff:27:6a:ab:7e:6b:90:
b0:a9:a7:f8:23:b2:ba:66:fe:66:49:22:e1:ea:2f:a0:c1:9c:
90:ee:e0:30:f6:d4:e2:85:e2:39:16:3d:c9:d8:32:72:d5:21:
83:0d:be:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nEohpMU/V0FWAt1/TCegMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZWEyODM2MzVjYjNiZDE1MjNhODVkZGM5Y2FmNTMwNTY4
ZDJmODEwHhcNMjYwMzI5MDgwMDU5WhcNMjYwMzMwMDgwMDU5WjAzMTEwLwYDVQQD
EyhmNjM2Y2FmNjczMjY5ZjNjMDJlYmU3OTVkZmFlYmJmYmVlNWQyNTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5i+KYwm/KvjzaEGfYEg3k4DN9Qs
0fCvC6q/jvzy7unV+eQBCsw+uaubkyuquWEn0ibVlSSBacyGvq2WkdHrAD6Mwaws
4nDWbR2bQNboVOAAxHj9ZNn+pblYJZfin523o9gjRb2ZH11SJN6SqMOYQHnCJd+T
DC1kHv/nRiF9TGVHRhzVuT5mOSca3uxd4h3xGdUutd4iqWcROIcGuMILgwJe6dgI
yrKhGbuJaQx2pobKROezIWqGZ+RBQm+bz4tBuygq/vIEnB2kAzqw3FXqk1pCtQan
QOuOmG0mhPZZvY8HXc9L86pCycDHVSfQ2RdPmYjsZW9h3zdaaMS34qeI/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPY2yvZzJp88Auvnld+uu/vuXSUFMB8GA1UdIwQY
MBaAFJXqKDY1yzvRUjqF3cnK9TBWjS+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0Yjgt
N2JhMjY4NmVhNTE4LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi81YjQ2YmItMGFmNC00N2Q2LWE0YjgtN2JhMjY4NmVhNTE4
LzEvbGVvb05qWExPOUZTT29YZHljcjFNRmFOTDRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaGk/Gsd7
HOolBg+k6VaTXYUlwhRSaZnC/H9wVc/rTu2KOyfUnAgdyD6yZz2fdqhDyTbm4E5P
kkYG7S109nYzhRySqsB8CyWaCPTImkWyVU2cLB/8AMvYj01SpxDQljkHX/PT3D4w
iAr9U4Go/OKzdnXnnqJZCbvEYTzkAxaRzJCSO4MjLvc4wvz+hg5e9mIHiiVLRvIG
Hbe+GZfqrYN0u380tBY3StzulLeEaOlzG8tmKGBK1oHI/6ZRS31dac/70GV3QUPk
FcoyhT4g/24Nagv/J2qrfmuQsKmn+COyumb+Zkki4eovoMGckO7gMPbU4oXiORY9
ydgyctUhgw2+Yw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:36 2026 by rpki-client