Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: RjybGFpZkDO3DqzjvBMMkoRkzwDeiQ6kFTKmabghYAY=
Subject key identifier: 0B:2F:54:07:84:9C:D3:7F:94:09:92:AC:C0:67:6C:CA:9E:D1:63:95
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 019EC148891F99A5208D6FD71CBE2BED61A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 0CB8
Signing time: Sat 13 Jun 2026 14:00:16 +0000
Manifest this update: Sat 13 Jun 2026 14:00:16 +0000
Manifest next update: Sun 14 Jun 2026 14:00:16 +0000
Files and hashes: 1: A_5M0CfXYUUC_BjsX_wFA_AapkY.roa (hash: UxtCMoKmpdBbD3cNYjI3Iakd8mHfIDVh+Sc1KrYzV8A=)
2: QTj2rWtF102-zkq4FB91dVQDunM.roa (hash: 1lI8W4TaqEFSyMRF8rItgY5NGvTzSeJ9vEchB5jfowo=)
3: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: 8VULAzd1Br005G5Au2Q3mZXG07nEvSO2cz6H+/3Giuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:89:1f:99:a5:20:8d:6f:d7:1c:be:2b:ed:61:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Jun 13 14:00:16 2026 GMT
Not After : Jun 14 14:00:16 2026 GMT
Subject: CN=0b2f5407849cd37f940992acc0676cca9ed16395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dd:e7:be:d1:a3:02:ee:8f:fa:77:e1:85:ab:
41:06:a4:27:70:8e:d6:11:7f:44:22:a3:2b:96:48:
a4:aa:bf:2d:c0:30:04:a2:92:74:e9:f7:5a:15:5b:
31:b7:22:80:19:76:fb:88:78:ba:20:f7:fb:7b:7e:
6d:b5:47:ee:f9:18:c9:80:d9:77:8b:a9:32:34:a3:
06:3b:51:fe:07:e9:c6:3e:5a:a6:d5:16:f1:d5:5c:
78:be:86:0c:3b:d7:be:6a:a6:83:31:39:e4:7e:fd:
77:91:01:e4:7c:99:db:4c:4b:05:bf:37:ef:17:ba:
b4:d0:a2:38:6c:e5:1a:6b:bf:c4:b7:ac:9c:fb:63:
6b:ea:a8:ae:35:87:f1:35:d2:b1:7a:ad:30:96:b7:
dd:a9:33:e6:96:6e:47:08:27:b3:55:27:e3:40:07:
55:dd:59:47:9c:dc:ab:10:fc:e7:f6:4a:29:12:e4:
d8:d0:68:74:65:a3:b9:0e:2d:8d:1a:d1:88:d4:e0:
85:bd:3d:08:f7:a5:c4:26:1d:58:f2:60:dd:2b:7c:
c5:42:91:c7:af:96:0b:90:94:f9:19:e4:9a:01:d8:
44:51:45:77:1d:78:c1:47:c9:26:1c:f9:29:11:c2:
1d:5d:f6:e0:d4:2f:e6:12:d1:37:51:7c:00:d6:1e:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:2F:54:07:84:9C:D3:7F:94:09:92:AC:C0:67:6C:CA:9E:D1:63:95
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:91:63:0e:e9:5c:89:d6:71:95:d2:30:43:d4:bc:ae:d5:cb:
7f:73:55:ca:e2:65:b0:db:0d:46:b4:ef:9d:a2:2c:bb:05:3b:
ac:6a:64:f1:ef:75:a9:0b:e3:03:83:22:f3:d2:c1:e0:3e:9d:
0e:37:c3:0b:ba:95:e8:75:65:49:26:31:f9:1c:bc:3b:27:6f:
16:40:5d:c3:45:79:40:c1:f0:ba:cb:0c:6b:e3:91:ed:c5:7b:
79:95:21:46:53:fb:e8:06:85:93:7a:c2:97:01:3d:18:18:9a:
68:6c:30:ee:d8:a2:a3:09:59:ab:4a:fb:60:75:90:8f:e5:e9:
a5:ad:90:87:61:26:e6:18:95:93:81:b5:ca:4c:b7:68:38:d6:
41:56:2e:b3:05:4c:ba:06:06:5a:d1:90:38:61:4e:ab:87:2a:
c3:8d:3b:25:79:43:77:a8:4d:75:2e:22:82:18:73:f3:74:8b:
73:7c:8b:6b:c9:06:68:ec:e0:a7:37:38:bf:a7:39:25:5b:26:
c7:88:0e:fc:e2:ab:c6:db:54:5e:c6:89:d9:3e:a1:19:e7:c2:
aa:33:7a:d0:83:a8:29:ec:6b:22:0b:22:61:35:2b:fc:a2:28:
13:5c:ed:4b:d2:34:8d:2d:56:68:eb:33:3d:0c:7e:c6:1f:36:
0f:7a:64:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:47:24 2026 by rpki-client