Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: sL9sErePAa3OL99H3n07mF43+gllqLXZ3pp1d10CyUE=
Subject key identifier: 7C:77:41:6A:F1:B2:43:19:A1:5B:F3:62:0A:A7:24:B7:E4:E8:37:20
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019D2BBCB7B4CB4CFAF9A7001216687D6C33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0AF3
Signing time: Thu 26 Mar 2026 20:01:21 +0000
Manifest this update: Thu 26 Mar 2026 20:01:21 +0000
Manifest next update: Fri 27 Mar 2026 20:01:21 +0000
Files and hashes: 1: G3RuhmzfG29w9YFS7oTygz6W0Vw.roa (hash: JX85b3D4X40BgCYerPxa2mnW3gNxZep/hukddR8oH8k=)
2: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: Ls02IWXzx+5ppbUMQqLwU6UksmQ+jzKpDp4JWffXY4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:b7:b4:cb:4c:fa:f9:a7:00:12:16:68:7d:6c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Mar 26 20:01:21 2026 GMT
Not After : Mar 27 20:01:21 2026 GMT
Subject: CN=7c77416af1b24319a15bf3620aa724b7e4e83720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:84:1a:24:91:39:f8:1d:50:83:a1:1a:f5:c4:
f5:58:5a:0f:7b:5e:61:c6:f4:c1:aa:ee:99:6c:10:
d4:d5:06:8b:54:a9:0f:92:38:25:c7:d3:0b:2c:aa:
a4:96:84:ae:71:e5:c3:a0:92:8d:d2:bb:43:28:2c:
87:9a:c6:11:26:0b:82:66:ec:5a:82:e4:c1:bf:02:
f9:6a:0e:d2:30:7f:9a:7d:a8:e0:86:91:d3:69:a1:
45:23:a8:b5:7b:b7:30:f8:eb:c3:69:8c:ae:b1:83:
a7:10:67:7c:fb:55:c0:0a:42:59:cb:13:62:d5:51:
3b:0f:81:e7:d9:15:de:b3:ff:ef:7b:87:ad:12:07:
36:c5:c1:7a:80:cc:57:01:ef:cd:da:41:8d:0b:ab:
c3:3c:08:ce:cb:21:de:79:7b:cf:cb:ca:f9:2d:60:
f9:f2:d7:28:67:d9:b1:ab:7d:71:7f:5a:f0:30:c4:
33:85:db:bf:4c:64:60:22:24:b2:a4:a9:56:a0:bb:
69:2b:d8:6c:ca:32:29:05:7b:7d:b3:22:09:a7:7d:
f6:ca:d6:f0:3f:d1:5f:92:99:18:4b:9e:17:37:72:
8b:93:36:d2:3e:13:8c:a9:05:4e:f1:c7:b9:de:5e:
1f:1a:a4:bc:0f:c7:cb:57:d8:33:28:f0:40:2f:ab:
36:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:77:41:6A:F1:B2:43:19:A1:5B:F3:62:0A:A7:24:B7:E4:E8:37:20
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:f6:fb:ba:11:86:07:5c:35:75:e5:65:c2:48:8c:34:82:1a:
49:f1:5b:7b:d7:8d:8c:eb:9e:3a:47:eb:ad:36:88:85:f2:e2:
32:23:c7:32:50:cc:26:be:32:21:b9:d5:02:d5:a8:06:32:75:
8e:00:a9:dd:35:fb:fb:88:e1:42:c5:0a:35:b0:6b:e8:ca:ed:
84:9d:58:9a:be:a6:90:6a:c7:ff:c4:0c:e7:87:ae:3c:c6:82:
fc:10:3d:c2:40:db:fc:7d:dc:e5:8b:58:7e:2a:1e:cd:59:d4:
18:fd:d3:57:08:f2:86:80:15:cc:33:77:e3:cd:16:df:51:07:
a9:0c:1d:37:8e:62:b5:49:e2:16:e8:fa:56:cb:d6:f3:a9:e7:
80:6d:50:14:28:db:10:36:67:6a:37:7a:dd:30:28:17:3d:61:
95:f0:05:e3:bd:43:c4:35:e9:59:cc:69:3b:71:6b:09:37:b8:
1e:9f:bf:f1:af:eb:42:b1:d9:63:dd:e2:27:6c:a7:63:eb:59:
91:1b:88:9b:ef:a5:98:83:79:e0:83:9c:d3:29:1f:e1:68:e9:
92:7f:63:fc:08:fa:90:b5:f4:6a:b8:6e:0e:d2:6b:8a:88:88:
06:bb:88:30:6e:df:67:a3:7b:5f:01:3d:33:5b:92:4c:80:70:
bf:99:08:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rvLe0y0z6+acAEhZofWwzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi
NzU2MDMwHhcNMjYwMzI2MjAwMTIxWhcNMjYwMzI3MjAwMTIxWjAzMTEwLwYDVQQD
Eyg3Yzc3NDE2YWYxYjI0MzE5YTE1YmYzNjIwYWE3MjRiN2U0ZTgzNzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIQaJJE5+B1Qg6Ea9cT1WFoPe15h
xvTBqu6ZbBDU1QaLVKkPkjglx9MLLKqkloSuceXDoJKN0rtDKCyHmsYRJguCZuxa
guTBvwL5ag7SMH+afajghpHTaaFFI6i1e7cw+OvDaYyusYOnEGd8+1XACkJZyxNi
1VE7D4Hn2RXes//ve4etEgc2xcF6gMxXAe/N2kGNC6vDPAjOyyHeeXvPy8r5LWD5
8tcoZ9mxq31xf1rwMMQzhdu/TGRgIiSypKlWoLtpK9hsyjIpBXt9syIJp332ytbw
P9FfkpkYS54XN3KLkzbSPhOMqQVO8ce53l4fGqS8D8fLV9gzKPBAL6s25wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHx3QWrxskMZoVvzYgqnJLfk6DcgMB8GA1UdIwQY
MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt
NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4
LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABPb7uhGG
B1w1deVlwkiMNIIaSfFbe9eNjOueOkfrrTaIhfLiMiPHMlDMJr4yIbnVAtWoBjJ1
jgCp3TX7+4jhQsUKNbBr6MrthJ1Ymr6mkGrH/8QM54euPMaC/BA9wkDb/H3c5YtY
fioezVnUGP3TVwjyhoAVzDN3480W31EHqQwdN45itUniFuj6VsvW86nngG1QFCjb
EDZnajd63TAoFz1hlfAF471DxDXpWcxpO3FrCTe4Hp+/8a/rQrHZY93iJ2ynY+tZ
kRuIm++lmIN54IOc0ykf4Wjpkn9j/Aj6kLX0arhuDtJrioiIBruIMG7fZ6N7XwE9
M1uSTIBwv5kIlw==
-----END CERTIFICATE-----
Generated at Fri Mar 27 03:45:23 2026 by rpki-client