Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: mam9ni0ZeitjyZOW3wjmv+cE2UZJgehBnRz79+5g3mc=
Subject key identifier: C0:64:00:4F:2E:A2:6D:22:37:F8:EF:E8:00:9B:EE:3C:2B:FB:0F:1C
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019D9DAD59EC8C6486B0BA5463196716B36F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0B2E
Signing time: Fri 17 Apr 2026 23:01:16 +0000
Manifest this update: Fri 17 Apr 2026 23:01:16 +0000
Manifest next update: Sat 18 Apr 2026 23:01:16 +0000
Files and hashes: 1: G3RuhmzfG29w9YFS7oTygz6W0Vw.roa (hash: JX85b3D4X40BgCYerPxa2mnW3gNxZep/hukddR8oH8k=)
2: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: rEppAEe/ZYYKntNB5S2qR4yUXJkULPIQl5ZtpQOqVz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 23:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:ad:59:ec:8c:64:86:b0:ba:54:63:19:67:16:b3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Apr 17 23:01:16 2026 GMT
Not After : Apr 18 23:01:16 2026 GMT
Subject: CN=c064004f2ea26d2237f8efe8009bee3c2bfb0f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:49:da:32:f9:83:56:2f:03:ac:92:00:cb:4d:
50:fb:f0:ff:33:85:e1:38:36:61:71:d3:1a:bd:7d:
5d:6e:83:b4:ac:9f:08:f8:f7:f9:cb:e1:55:ce:32:
39:d9:62:3d:9c:82:b4:68:52:69:20:f8:06:ec:64:
27:63:74:0b:a7:0a:c6:9e:6f:51:26:c8:88:88:92:
4b:27:46:7a:3c:75:87:87:fd:20:56:84:28:15:64:
02:db:78:50:7e:9c:7c:0d:6c:2e:f1:f6:c8:aa:19:
93:59:17:4a:9f:a7:f7:3f:af:67:0a:a7:ce:46:74:
8b:47:71:df:ce:d4:bb:52:8e:e2:89:e9:82:5a:f6:
17:f8:43:44:9c:60:f1:aa:e3:a4:31:12:a6:aa:1a:
2d:55:d7:5b:7f:d4:4b:64:a8:72:38:69:60:25:47:
bc:49:b8:e8:34:fc:44:02:b2:b0:48:c9:51:de:64:
3c:75:1f:83:e7:f8:91:39:a9:54:7d:11:e1:1d:1a:
84:95:c5:3d:7b:bd:a9:f6:8c:d3:3b:dc:7a:4e:26:
0a:41:41:b0:54:ae:4b:78:e5:dd:7d:60:b4:1c:c1:
de:cf:6b:db:3a:49:19:23:b9:76:dd:c7:88:a3:d7:
14:77:b0:cd:0a:b2:2b:1a:5b:e1:b0:4b:12:7b:68:
61:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:64:00:4F:2E:A2:6D:22:37:F8:EF:E8:00:9B:EE:3C:2B:FB:0F:1C
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:c1:21:80:76:af:a3:47:bb:75:7e:ea:de:ba:3b:71:2a:c5:
f9:9e:9f:d4:87:bb:9c:e9:d9:8b:f7:18:bc:eb:28:1d:5d:e1:
71:06:d4:d1:28:13:c8:ba:a8:4e:23:9e:53:44:bf:a6:94:04:
0f:16:49:7b:be:95:d1:8e:60:04:a9:0f:b5:90:c8:b4:68:92:
b2:10:d8:cf:16:49:7e:23:af:db:9b:dd:61:94:75:00:a6:4c:
bf:80:d2:27:6c:72:fe:bf:43:fa:d1:87:0b:72:11:99:f6:1e:
f5:6b:19:21:cf:86:2f:a7:26:00:0a:d8:0e:b5:f2:59:d3:ca:
f5:fe:eb:28:26:8a:87:a9:25:ba:56:65:9a:00:2a:2a:f8:c3:
14:11:2c:0a:db:95:2e:b5:ed:ed:76:a8:5c:45:85:f9:28:45:
5a:2b:f0:a5:60:bc:aa:c9:ef:56:3f:c7:17:7b:d0:bf:fc:06:
b4:4f:a8:25:7f:a4:eb:e2:24:82:d1:84:21:97:af:c0:a9:1c:
f0:8a:a4:dd:30:36:47:8b:99:01:98:eb:00:6d:14:2a:58:62:
3e:d4:91:fd:f9:29:0a:8f:cb:b0:6a:4e:72:f5:84:57:21:b0:
e2:32:8a:1a:7d:e4:58:66:b6:ab:4b:11:39:2d:60:48:d7:7a:
7c:87:a5:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2drVnsjGSGsLpUYxlnFrNvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi
NzU2MDMwHhcNMjYwNDE3MjMwMTE2WhcNMjYwNDE4MjMwMTE2WjAzMTEwLwYDVQQD
EyhjMDY0MDA0ZjJlYTI2ZDIyMzdmOGVmZTgwMDliZWUzYzJiZmIwZjFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEnaMvmDVi8DrJIAy01Q+/D/M4Xh
ODZhcdMavX1dboO0rJ8I+Pf5y+FVzjI52WI9nIK0aFJpIPgG7GQnY3QLpwrGnm9R
JsiIiJJLJ0Z6PHWHh/0gVoQoFWQC23hQfpx8DWwu8fbIqhmTWRdKn6f3P69nCqfO
RnSLR3HfztS7Uo7iiemCWvYX+ENEnGDxquOkMRKmqhotVddbf9RLZKhyOGlgJUe8
SbjoNPxEArKwSMlR3mQ8dR+D5/iROalUfRHhHRqElcU9e72p9ozTO9x6TiYKQUGw
VK5LeOXdfWC0HMHez2vbOkkZI7l23ceIo9cUd7DNCrIrGlvhsEsSe2hh9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMBkAE8uom0iN/jv6ACb7jwr+w8cMB8GA1UdIwQY
MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt
NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4
LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYMEhgHav
o0e7dX7q3ro7cSrF+Z6f1Ie7nOnZi/cYvOsoHV3hcQbU0SgTyLqoTiOeU0S/ppQE
DxZJe76V0Y5gBKkPtZDItGiSshDYzxZJfiOv25vdYZR1AKZMv4DSJ2xy/r9D+tGH
C3IRmfYe9WsZIc+GL6cmAArYDrXyWdPK9f7rKCaKh6klulZlmgAqKvjDFBEsCtuV
LrXt7XaoXEWF+ShFWivwpWC8qsnvVj/HF3vQv/wGtE+oJX+k6+IkgtGEIZevwKkc
8Iqk3TA2R4uZAZjrAG0UKlhiPtSR/fkpCo/LsGpOcvWEVyGw4jKKGn3kWGa2q0sR
OS1gSNd6fIelOw==
-----END CERTIFICATE-----
Generated at Sat Apr 18 08:55:43 2026 by rpki-client