Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: PmNq7OZEYRlKXvQvjo/aQ4+uQSsFwEzkrHUpn0bBKfw=
Subject key identifier: 0E:02:1F:BA:78:F5:C4:16:EC:C8:F2:B7:25:26:33:1D:DB:D8:BC:7F
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 019E20FF4AC8A7F5FE89EC3C057FFF2ABC1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 0C65
Signing time: Wed 13 May 2026 11:01:02 +0000
Manifest this update: Wed 13 May 2026 11:01:02 +0000
Manifest next update: Thu 14 May 2026 11:01:02 +0000
Files and hashes: 1: A_5M0CfXYUUC_BjsX_wFA_AapkY.roa (hash: UxtCMoKmpdBbD3cNYjI3Iakd8mHfIDVh+Sc1KrYzV8A=)
2: QTj2rWtF102-zkq4FB91dVQDunM.roa (hash: 1lI8W4TaqEFSyMRF8rItgY5NGvTzSeJ9vEchB5jfowo=)
3: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: mAuSbMe5/DHwp9O+4XgckLD9ovPh9yi+RqJJ1/XSheY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:4a:c8:a7:f5:fe:89:ec:3c:05:7f:ff:2a:bc:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: May 13 11:01:02 2026 GMT
Not After : May 14 11:01:02 2026 GMT
Subject: CN=0e021fba78f5c416ecc8f2b72526331ddbd8bc7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:54:f4:65:7d:ce:aa:d9:8e:75:15:94:16:7c:
1e:7e:e5:32:46:a1:3b:3f:bf:89:89:99:fe:68:06:
d2:ec:66:7b:b3:65:f3:4f:cd:d7:16:20:5b:aa:e9:
4a:f4:c0:5b:2b:fb:fd:64:7c:02:38:c3:34:47:a9:
91:77:e0:5a:c6:2a:2d:1e:a0:9c:ad:59:9a:b2:68:
b0:f3:eb:c2:f9:af:1d:9c:1b:b6:8f:b3:ce:e5:1d:
07:24:00:f9:38:4e:1a:d0:e3:83:70:e3:79:25:26:
83:cd:1d:6a:d3:8a:55:8d:f7:3c:50:e3:58:d5:16:
89:5a:0d:74:3e:23:0e:cb:2b:0e:1c:3a:b6:4a:38:
df:b7:0f:36:48:0c:61:59:2c:cb:4b:b0:24:76:e5:
e9:e9:69:eb:17:58:03:65:9a:8f:84:48:3b:f1:2b:
46:2d:3b:88:41:9e:33:12:50:6c:09:ec:02:24:7f:
c5:cf:66:09:f2:09:7d:d1:57:c0:d1:08:0e:54:8b:
e4:fa:8e:a5:de:96:24:53:0f:7e:4c:c5:52:d5:31:
37:4b:49:11:4a:c7:cc:34:09:ab:f5:b1:2a:e0:84:
3a:61:43:64:71:dc:46:70:4e:f5:42:6b:14:ca:96:
40:1b:1a:c0:72:c0:fa:70:0f:89:d8:89:8a:1f:5f:
ea:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:02:1F:BA:78:F5:C4:16:EC:C8:F2:B7:25:26:33:1D:DB:D8:BC:7F
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:07:15:fa:26:9f:3a:c4:c0:06:77:a3:42:24:dc:b4:19:24:
72:1a:9d:4c:0b:aa:75:ed:2c:96:d5:45:c4:e8:16:32:bd:95:
e1:2e:a4:32:dc:10:fe:25:de:fc:a3:02:df:49:72:54:f0:be:
2f:43:9f:64:51:64:ea:61:27:65:01:f8:2f:0e:7c:26:9e:aa:
07:ea:8f:20:94:57:03:e2:94:8e:df:c4:d2:7e:ad:97:0a:c3:
61:b4:cb:9e:e6:05:41:15:1a:3f:60:af:1f:c5:ca:8f:d6:a5:
0b:fa:5a:cf:0b:68:d2:86:2c:76:5a:47:1b:68:3d:da:c8:46:
25:75:0f:8a:32:22:a5:1a:8f:0d:e3:04:af:42:7f:c0:99:70:
f8:43:94:56:cd:35:cf:b5:de:33:3a:e3:af:c7:ae:01:15:3f:
c6:5c:b8:3a:80:32:db:f2:57:bd:1a:35:ae:81:f1:bc:d1:33:
ff:c3:f3:b0:b9:7c:2e:fe:c9:a9:f9:2d:39:c5:7a:f5:c2:1d:
27:95:ad:8e:99:c5:44:ad:85:c6:69:65:24:f4:2f:92:93:30:
b7:9f:21:75:aa:28:b1:5d:12:75:2f:9d:bc:4e:0a:4b:b2:d8:
09:8b:2a:1b:c9:a7:43:3c:e1:aa:ba:0a:90:cd:d6:80:0c:f6:
a1:15:0d:63
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4g/0rIp/X+iew8BX//KrwbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YTk3NTIzOWZkZDQ0M2I3ZDNkODJlMzkyYTllNGFlMzky
MThlZjYwHhcNMjYwNTEzMTEwMTAyWhcNMjYwNTE0MTEwMTAyWjAzMTEwLwYDVQQD
EygwZTAyMWZiYTc4ZjVjNDE2ZWNjOGYyYjcyNTI2MzMxZGRiZDhiYzdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA91T0ZX3OqtmOdRWUFnwefuUyRqE7
P7+JiZn+aAbS7GZ7s2XzT83XFiBbqulK9MBbK/v9ZHwCOMM0R6mRd+BaxiotHqCc
rVmasmiw8+vC+a8dnBu2j7PO5R0HJAD5OE4a0OODcON5JSaDzR1q04pVjfc8UONY
1RaJWg10PiMOyysOHDq2Sjjftw82SAxhWSzLS7AkduXp6WnrF1gDZZqPhEg78StG
LTuIQZ4zElBsCewCJH/Fz2YJ8gl90VfA0QgOVIvk+o6l3pYkUw9+TMVS1TE3S0kR
SsfMNAmr9bEq4IQ6YUNkcdxGcE71QmsUypZAGxrAcsD6cA+J2ImKH1/qgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4CH7p49cQW7MjytyUmMx3b2Lx/MB8GA1UdIwQY
MBaAFKWpdSOf3UQ7fT2C45Kp5K45IY72MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGFsMUk1X2RSRHQ5UFlMamtxbmtyamtoanZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mMjcwMGItOTg1My00MTcyLTlhNjEt
YTY5MTQ0OGIyZWM0LzEvcGFsMUk1X2RSRHQ5UFlMamtxbmtyamtoanZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mMjcwMGItOTg1My00MTcyLTlhNjEtYTY5MTQ0OGIyZWM0
LzEvcGFsMUk1X2RSRHQ5UFlMamtxbmtyamtoanZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKwcV+iaf
OsTABnejQiTctBkkchqdTAuqde0sltVFxOgWMr2V4S6kMtwQ/iXe/KMC30lyVPC+
L0OfZFFk6mEnZQH4Lw58Jp6qB+qPIJRXA+KUjt/E0n6tlwrDYbTLnuYFQRUaP2Cv
H8XKj9alC/pazwto0oYsdlpHG2g92shGJXUPijIipRqPDeMEr0J/wJlw+EOUVs01
z7XeMzrjr8euARU/xly4OoAy2/JXvRo1roHxvNEz/8PzsLl8Lv7JqfktOcV69cId
J5WtjpnFRK2FxmllJPQvkpMwt58hdaoosV0SdS+dvE4KS7LYCYsqG8mnQzzhqroK
kM3WgAz2oRUNYw==
-----END CERTIFICATE-----
Generated at Wed May 13 14:19:27 2026 by rpki-client