Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: 9klVtgug085QuMaK/8rz526EvhWCkcrfVGX08uNbX7w=
Subject key identifier: 77:81:AE:26:88:40:97:F2:F8:75:56:AB:23:67:BA:00:EC:5F:5A:28
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 01976EBE3D4EA5AC362BBBEB3363BE587B21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 08ED
Signing time: Sat 14 Jun 2025 14:00:50 +0000
Manifest this update: Sat 14 Jun 2025 14:00:50 +0000
Manifest next update: Sun 15 Jun 2025 14:00:50 +0000
Files and hashes: 1: D5eci654E86WgV4QeWe0mVBSIQA.roa (hash: 9EDx7nuNfSAVu4VJ7kFsnukQOFsHdN+PaVjNZkLYUS0=)
2: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: Fi0wHkPXG/1cfdt78UNb3yzS7i4tqwM89W1gX0NMaBA=)
3: yvO64MJqKXwU9zQx1VNZmF0vwiQ.roa (hash: suqTW5OcdpqYPj7vinRk1PIGqjKi/55px0F96ecmjEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 10:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:be:3d:4e:a5:ac:36:2b:bb:eb:33:63:be:58:7b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Jun 14 14:00:50 2025 GMT
Not After : Jun 15 14:00:50 2025 GMT
Subject: CN=7781ae26884097f2f87556ab2367ba00ec5f5a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:50:63:47:7e:a2:7d:a3:0a:4c:09:58:32:5e:
82:03:8e:ac:80:89:2c:1e:ea:90:f7:24:9a:e3:b8:
1e:bc:72:0d:4a:7b:58:06:ee:11:4a:56:f5:41:b7:
8f:92:83:00:5b:3c:87:70:ce:c3:7b:8e:9e:c2:61:
00:7c:9a:95:eb:97:84:ca:a7:67:63:c6:59:dd:2a:
f6:45:4b:b8:a9:a2:a6:ca:8f:7f:ca:7f:54:de:f4:
08:ac:1a:fe:9e:d7:7a:be:fc:89:cd:9d:01:49:f2:
32:d3:f8:80:59:e7:2e:9d:12:25:7a:e0:10:83:e5:
78:37:48:3f:2f:d2:e7:d2:5f:f5:bc:89:8c:0a:ba:
13:0c:8d:5c:69:13:02:89:ea:4a:be:36:a7:1c:d4:
93:7c:db:47:ae:b2:ce:13:03:c1:68:8b:2f:0c:85:
18:3c:de:ff:06:9c:eb:a5:f7:36:ca:61:38:df:80:
0a:fe:25:bc:d5:9b:2e:f1:fd:a6:5b:4b:39:0e:b8:
cf:35:8a:2f:05:5e:cb:11:b0:9f:2a:71:41:23:49:
0c:32:0b:cb:29:67:e8:62:a7:11:db:f9:6c:d1:67:
5b:3b:ff:3d:df:fa:e8:e6:0f:c2:68:fe:6a:48:9a:
bc:3e:a1:7a:2f:62:7b:24:3a:7f:7c:25:89:02:af:
9f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:81:AE:26:88:40:97:F2:F8:75:56:AB:23:67:BA:00:EC:5F:5A:28
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:46:17:17:63:0d:27:a9:70:2d:24:e8:f3:51:50:0d:9a:7f:
ab:ff:0c:b2:a7:d5:a4:24:5f:54:15:1b:5a:78:84:d1:66:55:
28:7c:bd:8e:b9:37:ae:2c:0b:b2:e3:67:00:36:45:40:01:57:
9a:55:64:53:49:1b:1b:4d:ac:42:cd:ee:d7:24:c7:08:ad:69:
e7:1d:68:53:7b:9a:d1:b6:80:2f:79:a5:cf:24:82:e0:c2:a3:
5d:81:cd:f3:8a:25:72:08:db:ee:d9:37:a8:62:ac:47:ee:f0:
d4:b7:01:a5:1b:64:2c:94:26:d0:9c:e9:0f:c3:ed:1e:de:0d:
d1:8d:94:a1:35:1e:0f:76:8f:dc:30:c1:59:7c:4e:2e:df:e1:
d8:af:60:c7:96:bd:c2:f5:de:9a:e4:8b:37:32:76:ec:3f:26:
1f:b6:b6:ef:c4:18:2f:f3:38:2a:48:da:dc:1f:3e:26:f9:01:
e8:1f:10:df:7b:67:16:58:f9:a4:f6:06:7c:bf:a7:8a:da:27:
4d:9b:72:b9:f8:86:b0:88:7b:bb:32:59:3f:40:74:06:36:23:
0c:1b:db:21:be:6e:ae:5e:8c:e8:67:7b:c3:b3:92:98:d7:59:
fd:f0:a9:5c:6e:32:bd:c4:4e:6e:f6:42:d6:b7:56:3e:04:39:
f4:e8:45:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 20:26:16 2025 by rpki-client