Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: D2Ms25ofMqP0NAEeRN7XVQQhucv+wQOHR6VZdhG/SWI=
Subject key identifier: 59:4A:BA:16:C4:62:F4:2B:EB:55:3D:C9:B6:CF:0E:AF:B6:DB:AB:C5
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019CAC470FD0C201E7D5A887673A2C1D49DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0AB1
Signing time: Mon 02 Mar 2026 02:01:03 +0000
Manifest this update: Mon 02 Mar 2026 02:01:03 +0000
Manifest next update: Tue 03 Mar 2026 02:01:03 +0000
Files and hashes: 1: G3RuhmzfG29w9YFS7oTygz6W0Vw.roa (hash: JX85b3D4X40BgCYerPxa2mnW3gNxZep/hukddR8oH8k=)
2: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: gpIyB+3X5ggSbt6/qCyHCNfefhGrbMvyBJJc/pB1hDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 02:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:0f:d0:c2:01:e7:d5:a8:87:67:3a:2c:1d:49:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Mar 2 02:01:03 2026 GMT
Not After : Mar 3 02:01:03 2026 GMT
Subject: CN=594aba16c462f42beb553dc9b6cf0eafb6dbabc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0a:9c:5c:2a:a2:86:3c:cb:31:fb:cb:57:9d:
08:98:ec:35:43:2f:8d:2e:a6:b5:53:6e:9e:80:91:
48:7b:7c:9f:c4:2b:f1:3f:cc:ad:c0:50:b2:7c:40:
e7:ca:c9:80:ab:33:8c:9f:06:72:77:5b:03:8f:d6:
93:a0:c9:75:a7:73:41:a6:b6:44:8f:31:13:54:0f:
d3:6c:4e:84:d5:31:7b:30:c5:de:0d:b0:a5:1c:16:
ec:22:be:d0:dd:45:df:81:0a:50:9c:c1:d1:9a:0f:
e5:83:67:0c:3d:11:5c:03:90:f2:eb:7a:5d:8e:49:
81:35:f1:2b:15:5b:52:13:49:08:3c:56:9c:c8:30:
c0:da:c6:cb:b7:c8:d3:08:a4:81:09:e1:db:3f:33:
69:76:2c:ef:83:fd:e8:57:db:14:ea:36:68:5c:aa:
a9:77:21:04:b5:3e:0c:cd:2d:a9:14:00:07:7b:dc:
53:8e:78:71:74:87:e2:8e:d1:43:ec:92:64:bc:a3:
ac:e6:15:14:c0:63:ec:1b:d0:5c:79:fd:c0:59:1a:
85:d7:f9:29:2f:97:b1:46:b9:df:73:98:d9:f4:7b:
92:4c:a7:e2:09:ec:a8:59:9b:57:03:7f:e0:2b:76:
ce:18:9b:f9:42:a5:8d:bf:10:af:b7:41:3f:b4:04:
db:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:4A:BA:16:C4:62:F4:2B:EB:55:3D:C9:B6:CF:0E:AF:B6:DB:AB:C5
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:9c:78:66:40:91:bd:77:b8:09:1c:00:8b:14:5c:bb:5e:07:
88:ed:5c:c8:b9:0a:6d:fd:a2:32:63:fc:32:f5:11:56:4a:08:
45:7e:79:09:8b:ec:6e:22:60:0e:c7:cc:35:1e:49:e7:52:e4:
78:9a:43:04:b2:5d:f0:a3:2e:6d:61:bf:e6:2a:5e:9a:f4:ad:
d2:ba:09:22:c1:85:5e:2d:ef:ae:2e:ac:69:b0:91:85:49:7a:
60:57:cc:78:f0:77:bc:a4:84:19:b9:98:d7:33:5a:45:90:3c:
e1:6d:cc:3a:31:3f:30:69:54:78:16:56:d1:18:03:bb:55:2a:
61:30:53:fd:70:e1:7e:0a:fd:64:69:32:05:46:0c:2b:f3:51:
0f:47:bc:7b:82:b8:12:51:5b:22:b3:b7:31:b8:6a:7e:46:b2:
b5:30:58:90:fa:82:11:03:e8:d1:c6:54:d0:bf:32:b3:99:3d:
aa:b0:73:9c:8d:39:e2:44:f5:d2:ac:d7:5f:62:32:1a:73:e1:
2e:a9:52:84:bb:ce:2b:8c:db:e0:6d:91:d0:5e:d6:7a:4f:76:
6c:6a:d7:82:26:18:0b:8f:b8:42:b9:62:d8:59:7a:d8:27:58:
d3:e4:e0:73:81:5f:d1:52:b0:a4:1f:55:94:43:10:a4:8b:67:
34:84:37:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRw/QwgHn1aiHZzosHUnaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi
NzU2MDMwHhcNMjYwMzAyMDIwMTAzWhcNMjYwMzAzMDIwMTAzWjAzMTEwLwYDVQQD
Eyg1OTRhYmExNmM0NjJmNDJiZWI1NTNkYzliNmNmMGVhZmI2ZGJhYmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4AqcXCqihjzLMfvLV50ImOw1Qy+N
Lqa1U26egJFIe3yfxCvxP8ytwFCyfEDnysmAqzOMnwZyd1sDj9aToMl1p3NBprZE
jzETVA/TbE6E1TF7MMXeDbClHBbsIr7Q3UXfgQpQnMHRmg/lg2cMPRFcA5Dy63pd
jkmBNfErFVtSE0kIPFacyDDA2sbLt8jTCKSBCeHbPzNpdizvg/3oV9sU6jZoXKqp
dyEEtT4MzS2pFAAHe9xTjnhxdIfijtFD7JJkvKOs5hUUwGPsG9Bcef3AWRqF1/kp
L5exRrnfc5jZ9HuSTKfiCeyoWZtXA3/gK3bOGJv5QqWNvxCvt0E/tATbIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFlKuhbEYvQr61U9ybbPDq+226vFMB8GA1UdIwQY
MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt
NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4
LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJZx4ZkCR
vXe4CRwAixRcu14HiO1cyLkKbf2iMmP8MvURVkoIRX55CYvsbiJgDsfMNR5J51Lk
eJpDBLJd8KMubWG/5ipemvSt0roJIsGFXi3vri6sabCRhUl6YFfMePB3vKSEGbmY
1zNaRZA84W3MOjE/MGlUeBZW0RgDu1UqYTBT/XDhfgr9ZGkyBUYMK/NRD0e8e4K4
ElFbIrO3MbhqfkaytTBYkPqCEQPo0cZU0L8ys5k9qrBznI054kT10qzXX2IyGnPh
LqlShLvOK4zb4G2R0F7Wek92bGrXgiYYC4+4Qrli2Fl62CdY0+Tgc4Ff0VKwpB9V
lEMQpItnNIQ3jQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 13:23:31 2026 by rpki-client