Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
File: pal1I5_dRDt9PYLjkqnkrjkhjvY.mft (raw, json)
Hash identifier: LV4B1e/oE92tv6s3R2xuqBioakX+68pE4LW0iJ8ybUM=
Subject key identifier: 24:05:BF:25:F9:62:14:18:E1:4C:95:5E:01:D7:B9:41:1E:58:C3:89
Authority key identifier: A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
Certificate issuer: /CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Certificate serial: 0195E0EB284BDF81510270D5D05D702729C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
Manifest number: 081F
Signing time: Sat 29 Mar 2025 08:01:02 +0000
Manifest this update: Sat 29 Mar 2025 08:01:02 +0000
Manifest next update: Sun 30 Mar 2025 08:01:02 +0000
Files and hashes: 1: D5eci654E86WgV4QeWe0mVBSIQA.roa (hash: 9EDx7nuNfSAVu4VJ7kFsnukQOFsHdN+PaVjNZkLYUS0=)
2: pal1I5_dRDt9PYLjkqnkrjkhjvY.crl (hash: 35YfN0gtizs9MYcqt2Pyn3Jx7BhnxyxnRbsH6gRi6bg=)
3: yvO64MJqKXwU9zQx1VNZmF0vwiQ.roa (hash: suqTW5OcdpqYPj7vinRk1PIGqjKi/55px0F96ecmjEo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:28:4b:df:81:51:02:70:d5:d0:5d:70:27:29:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a975239fdd443b7d3d82e392a9e4ae39218ef6
Validity
Not Before: Mar 29 08:01:02 2025 GMT
Not After : Mar 30 08:01:02 2025 GMT
Subject: CN=2405bf25f9621418e14c955e01d7b9411e58c389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:62:e2:12:14:37:a2:b1:0f:ab:e3:01:52:03:
a4:42:b0:67:2f:98:c1:ea:ae:b5:47:fd:a0:1e:25:
63:0e:8b:e7:12:d8:2e:5c:54:89:fb:09:c4:85:fd:
88:25:18:fc:e4:94:ac:57:92:69:0c:c5:3d:6e:07:
c7:57:b8:ba:8e:cd:2d:c9:1d:d5:43:5a:5d:fe:23:
6a:09:7c:cf:f5:5f:2a:f6:b3:18:0c:a3:16:2c:36:
b6:b2:53:5e:9d:27:a8:ae:0c:37:3f:c7:b3:a6:eb:
c1:d8:6e:13:83:22:50:77:03:b5:69:57:de:7d:04:
ce:ac:34:70:fd:18:83:9e:17:b0:12:20:44:33:74:
f1:30:d0:8c:b3:f4:67:42:37:08:cc:87:ec:f8:1c:
1c:ec:02:12:1c:9f:aa:73:4c:2a:1e:00:9c:81:9c:
74:8d:8c:d0:84:91:dd:57:37:b0:3c:37:6e:90:9a:
9b:67:07:20:a9:ab:97:1c:7f:dd:e0:3c:ff:6f:b6:
e7:41:89:9d:7e:00:35:1b:1b:82:d5:56:a9:70:82:
06:aa:60:a0:33:29:62:18:fe:2e:ac:b2:20:36:ea:
52:93:70:d6:8c:28:bb:c8:7f:a7:fe:e3:80:ae:c7:
0c:e2:46:30:01:31:0f:9f:46:2c:b7:60:64:97:ff:
0f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:05:BF:25:F9:62:14:18:E1:4C:95:5E:01:D7:B9:41:1E:58:C3:89
X509v3 Authority Key Identifier:
keyid:A5:A9:75:23:9F:DD:44:3B:7D:3D:82:E3:92:A9:E4:AE:39:21:8E:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pal1I5_dRDt9PYLjkqnkrjkhjvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f2700b-9853-4172-9a61-a691448b2ec4/1/pal1I5_dRDt9PYLjkqnkrjkhjvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:74:06:cf:bd:06:34:fd:2a:5b:c5:17:05:73:fd:47:00:8e:
02:36:c6:c5:94:c3:b8:a4:31:f9:c3:54:3b:cd:e5:24:d2:30:
92:c3:5f:31:b5:42:aa:72:f6:a0:7a:e9:19:e7:07:e3:dd:8a:
76:e2:23:48:4d:ee:1e:8e:10:02:47:e8:85:53:f6:b4:73:5e:
ea:8f:69:52:58:b4:1e:40:09:19:04:40:2b:54:55:74:79:d6:
0c:cf:38:a2:83:85:20:25:61:38:a9:fb:fe:64:60:08:d2:b0:
31:a7:6e:56:77:b9:2f:8f:8a:5c:a3:48:e4:c2:a5:7a:20:89:
46:69:79:40:6b:10:46:83:e4:46:83:26:95:aa:5d:fa:57:dd:
ca:24:52:3b:11:18:b7:d2:41:b9:bc:42:cf:db:7b:96:9f:a6:
e1:cf:c1:48:f9:41:66:72:4a:76:ee:fe:ce:8a:f2:db:60:83:
86:ce:61:1a:87:b3:54:26:96:b1:64:2a:a4:2c:d7:e1:5f:0a:
cd:45:43:aa:03:8d:8e:a5:f9:39:c5:e0:b4:49:c9:81:52:38:
9c:94:22:81:30:75:54:0a:24:51:2e:fd:95:ce:93:89:71:38:
d4:73:76:50:7b:ca:b5:0f:d1:14:e0:56:06:27:8a:de:21:dd:
51:ea:9b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:46:48 2025 by rpki-client