Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: 15Hc+iRYoKiUfg7eDizM5EdkO1mR/W/Y47RQMjLNZxE=
Subject key identifier: 34:A6:08:FA:03:E4:5E:82:DC:C9:7F:07:2E:58:A8:C5:CE:BD:42:7C
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019874502AAB78DD04A128A3F57879338515
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0881
Signing time: Mon 04 Aug 2025 09:01:07 +0000
Manifest this update: Mon 04 Aug 2025 09:01:07 +0000
Manifest next update: Tue 05 Aug 2025 09:01:07 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: iEbk+kCvofhCLOfPCXgfpGYSgvC+CZLOQpA4SWZQLYg=)
2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 09:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:74:50:2a:ab:78:dd:04:a1:28:a3:f5:78:79:33:85:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Aug 4 09:01:07 2025 GMT
Not After : Aug 5 09:01:07 2025 GMT
Subject: CN=34a608fa03e45e82dcc97f072e58a8c5cebd427c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:43:c2:9e:75:27:d5:e3:c7:71:93:ad:43:dc:
4d:79:b3:1f:0f:66:24:06:01:50:c9:cb:b1:c6:76:
93:25:9a:6e:0a:fb:c0:2d:be:a7:70:f2:36:a5:80:
77:59:1b:af:0d:49:e6:db:e9:d6:aa:b2:05:47:c7:
83:28:79:01:69:a3:8a:dc:40:dc:66:e6:49:cb:a9:
52:fe:b7:d2:c7:8c:a5:14:61:70:bc:af:2c:85:15:
6d:a8:8a:0f:54:49:40:11:55:9c:97:c2:0d:5d:a3:
fa:ff:8b:1d:d1:51:79:f9:5d:a2:19:98:f4:12:40:
f9:e7:1b:ad:14:cc:b5:d3:3f:29:45:4e:77:dd:af:
d2:fe:27:4f:0a:d1:09:7e:b0:92:27:95:a7:35:40:
e3:5e:c7:1b:c3:e4:95:18:5b:a9:c4:09:33:b3:4f:
62:49:ae:a1:1a:19:dc:c9:3a:7c:2f:18:77:47:d5:
a6:66:c6:9d:34:e0:99:23:6c:97:9c:8b:0f:99:d5:
7c:5d:52:0d:9d:bb:61:75:59:1a:ba:3c:0e:6c:7e:
ce:ef:45:30:36:1a:6d:78:aa:f0:76:c2:00:2d:a3:
dd:87:1c:5f:92:4f:cb:45:64:30:c9:1f:6b:c7:73:
b2:20:02:86:0a:98:17:42:b0:1b:63:fc:60:c4:99:
b3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A6:08:FA:03:E4:5E:82:DC:C9:7F:07:2E:58:A8:C5:CE:BD:42:7C
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:a2:34:be:69:ec:75:ea:df:9a:10:94:78:54:f5:57:22:2b:
3c:b8:2f:59:49:4b:21:b2:a8:13:a8:08:36:75:29:b1:42:72:
9b:80:4d:76:99:65:54:3f:cd:dd:6e:55:38:98:97:ed:2d:93:
d3:a0:69:d5:62:c9:f3:0f:4d:1b:eb:99:f9:74:64:47:0a:7f:
0e:ce:9b:c1:6b:5d:4c:1c:be:92:71:1d:af:3a:47:fb:1b:f2:
ea:82:36:63:23:4e:d9:d1:aa:37:5c:e5:0f:14:3b:c0:f1:41:
8a:09:f5:06:47:6c:4e:8d:f6:be:25:d8:73:c4:bd:54:6d:2c:
c5:69:57:ad:5f:2d:fb:ee:1d:b2:40:0f:6c:50:cd:89:66:8b:
87:75:98:40:2b:75:fe:4b:ce:83:14:81:02:45:1d:12:90:cd:
15:1c:a4:c9:dc:87:15:f8:75:52:dc:7d:85:c8:f6:23:f0:9d:
f4:27:85:c0:5b:d0:1b:3a:de:a1:68:03:d0:c8:39:b6:f7:d1:
f8:60:bb:1a:b2:f0:61:2c:5b:43:09:79:cf:43:60:f6:0a:99:
83:86:cf:ed:37:43:b0:70:06:3a:c8:2b:7b:5b:a0:1c:28:b1:
01:43:2f:34:c7:a8:0c:ae:c8:83:a9:ae:44:a6:fa:89:fe:8c:
b7:d7:d5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 14:57:47 2025 by rpki-client