Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: cj2VCU0xDzYYlJ4TyzijAau/R5rOh2Ft83PE7lG5q34=
Subject key identifier: AF:10:AE:7B:A4:F7:9F:38:AB:EE:92:F3:8B:5C:4F:58:93:26:68:F1
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019ED499700CBCC1A486E202908710234A97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0BCF
Signing time: Wed 17 Jun 2026 08:01:25 +0000
Manifest this update: Wed 17 Jun 2026 08:01:25 +0000
Manifest next update: Thu 18 Jun 2026 08:01:25 +0000
Files and hashes: 1: G3RuhmzfG29w9YFS7oTygz6W0Vw.roa (hash: JX85b3D4X40BgCYerPxa2mnW3gNxZep/hukddR8oH8k=)
2: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: ZWanAvp4lwKoUbPUMxmUFHc6IzkZnEPpbAyzOB17/7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:70:0c:bc:c1:a4:86:e2:02:90:87:10:23:4a:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Jun 17 08:01:25 2026 GMT
Not After : Jun 18 08:01:25 2026 GMT
Subject: CN=af10ae7ba4f79f38abee92f38b5c4f58932668f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:85:da:84:ae:16:af:51:ba:03:48:ee:ba:
92:fd:54:14:50:d8:e1:6b:1a:6a:f6:82:2d:71:ff:
06:2d:b4:ca:cc:d9:a7:a4:03:b2:2e:d2:56:d7:06:
b2:c4:ad:4e:af:d0:66:11:5c:cc:d6:e0:ef:95:df:
e9:35:c6:11:25:e4:26:7d:d3:aa:de:03:50:66:5e:
c5:b6:6b:ee:54:34:e8:34:56:01:85:a4:b2:cb:0e:
c8:e1:ef:a4:02:0b:21:59:87:ef:da:ab:bf:e1:16:
bf:a6:f9:ed:85:a9:d6:e4:04:97:5f:7a:d8:30:0c:
ee:f3:d5:c3:a8:a0:73:60:77:7b:8a:21:a7:7f:ad:
c8:bf:da:69:57:cc:2f:8a:44:d6:ed:b2:f4:02:ec:
aa:44:fa:a3:40:26:2c:30:42:13:09:77:12:7e:64:
50:f4:46:f1:fb:f9:9a:2f:3d:54:5e:4a:14:89:54:
c8:d8:92:3d:dd:47:0e:fb:71:2a:83:a1:ad:6e:1a:
1c:16:0b:30:2d:93:7a:a4:ea:2c:45:65:90:b5:c6:
ee:54:67:d9:92:57:74:83:90:b7:aa:32:54:d6:d2:
19:9d:bc:66:3c:54:4b:ba:1f:5f:54:1e:e1:b5:64:
9b:fa:57:68:39:48:99:15:b6:c9:f3:dd:ce:ec:93:
0a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:10:AE:7B:A4:F7:9F:38:AB:EE:92:F3:8B:5C:4F:58:93:26:68:F1
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:97:9a:e8:a2:d8:6f:ea:cf:3c:88:64:6a:3c:8d:34:79:7e:
73:1a:3f:1b:4a:ff:75:0f:6d:d5:ef:85:6c:77:a6:75:71:50:
9d:29:d9:23:79:ed:27:f9:b9:bb:79:66:f9:0c:6a:83:12:22:
07:52:93:2d:6d:61:03:54:bb:ca:12:3b:42:f2:19:1e:97:c0:
88:d3:60:25:36:2c:01:f8:92:12:28:e2:da:f0:67:72:66:39:
01:76:0d:69:d8:7f:0c:96:40:a8:39:40:d1:0b:58:39:f9:98:
c8:6c:bb:df:ed:3b:0e:d9:8c:6c:50:9c:dc:25:b2:08:25:1c:
8a:0a:63:0d:c0:4d:e7:c9:a5:c0:d1:7b:e2:18:8b:65:52:14:
01:f3:6f:ed:5f:83:6d:d9:81:95:b3:b2:9e:d9:56:8e:83:aa:
e1:7f:6e:4b:3b:4f:58:5f:75:41:92:7e:04:01:bc:6b:12:33:
9c:23:ae:20:2d:78:c0:89:5a:1e:13:71:98:3e:e1:ce:ac:11:
2c:0b:59:ad:cf:49:8f:b9:19:8b:86:07:07:74:96:00:ae:45:
9f:f6:0a:d7:29:e8:ca:83:8a:bd:e7:c3:d0:f1:39:ea:7d:b4:
2a:a7:c4:9d:34:34:34:24:72:73:a5:41:eb:61:d2:05:3c:48:
06:24:c2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 17:48:04 2026 by rpki-client