Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: 7f0HTjxAIO3Q+fsqeOL/DDssZq4Yhwb6juqc3e4oBvY=
Subject key identifier: C8:47:ED:9F:23:71:7F:50:30:53:D8:28:33:ED:68:9B:95:32:87:92
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 0198D6CCE6A13B8103FC2A61F528F70ACD04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 08B4
Signing time: Sat 23 Aug 2025 12:00:09 +0000
Manifest this update: Sat 23 Aug 2025 12:00:09 +0000
Manifest next update: Sun 24 Aug 2025 12:00:09 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: NCH7d4mM2vYwj0U5XmDuNRY5TZoqEIV1jdgJe0wJ9Ig=)
2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cc:e6:a1:3b:81:03:fc:2a:61:f5:28:f7:0a:cd:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Aug 23 12:00:09 2025 GMT
Not After : Aug 24 12:00:09 2025 GMT
Subject: CN=c847ed9f23717f503053d82833ed689b95328792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4f:75:7a:96:2b:e6:5c:25:0e:85:38:d7:d2:
aa:ec:e4:65:03:69:a7:31:89:c6:5c:fc:32:67:f8:
7d:a7:b4:75:68:63:49:61:83:cc:98:bd:db:20:94:
c0:32:95:94:52:8a:99:2c:63:be:5d:71:a0:f6:10:
82:aa:9d:83:5a:63:4c:20:d5:ad:00:1a:f7:97:a3:
9d:c5:d9:1a:d0:de:8c:28:8d:58:cd:a0:1f:a7:ce:
3e:5b:d3:8c:14:e8:b2:f8:c9:b8:f2:d8:84:1d:cd:
03:01:e5:ab:90:5f:1a:da:07:1c:b0:1c:f2:b0:6e:
ad:6e:55:4b:ef:9f:9c:03:64:1f:37:d9:a0:e4:fc:
a3:da:d6:cf:bd:90:a2:13:96:85:e0:da:ac:51:31:
23:29:53:c1:18:fe:27:74:e8:6e:43:48:6f:78:7d:
80:25:3e:bb:40:19:48:49:bf:13:5e:80:75:8f:68:
a7:12:57:e5:28:f3:0d:25:54:74:d3:59:85:4c:cf:
e3:5c:be:89:ef:ac:de:87:10:d8:bf:18:13:b2:9d:
6c:ac:05:4e:b4:a4:40:00:a4:c5:c2:da:37:5a:13:
31:ff:f9:1c:9b:7c:88:ba:c2:a0:01:ba:aa:7d:75:
46:0c:b7:e5:03:4d:41:bb:26:42:90:c4:a6:7d:b7:
a9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:47:ED:9F:23:71:7F:50:30:53:D8:28:33:ED:68:9B:95:32:87:92
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:ba:03:a0:a1:fc:85:9f:69:d5:5f:e9:2e:eb:a9:e5:ea:a7:
cb:ec:d4:25:e3:0d:6d:41:46:02:72:14:5f:b0:c2:4a:33:c7:
e1:5e:c6:2d:0a:36:4f:9c:95:87:51:ec:65:6f:f9:47:20:5a:
6e:35:5f:68:0d:95:49:0e:8b:49:7c:7b:e9:9d:5a:8f:7e:2b:
0e:ea:d0:a9:91:d7:af:df:d7:8a:6e:f3:c7:ba:e4:75:1f:f1:
ba:2f:67:55:d5:45:32:fe:dc:a4:1b:fc:3b:e2:cb:03:fa:e3:
79:9c:73:3a:13:fe:7c:50:21:1a:de:df:85:79:0b:fb:33:73:
5a:90:40:b1:f6:e7:aa:a6:0a:eb:b5:f7:3b:ad:ea:62:ee:63:
f2:95:ca:c6:c1:b9:9c:27:81:91:50:d6:b4:3b:ae:02:df:b2:
df:9b:20:fd:3f:fd:bb:d7:ad:3c:1a:4f:de:27:f3:4b:cb:94:
a3:fe:51:2f:06:91:fe:8d:09:15:64:e4:c6:da:66:92:61:65:
bc:8c:e8:0c:a6:9d:8b:14:e5:69:a0:a0:17:cd:c7:60:78:81:
15:68:51:50:16:c0:33:8d:92:eb:08:3a:e2:59:14:dd:70:30:
43:e4:a7:2b:af:69:08:06:3f:36:6f:7c:5e:a6:b2:f2:59:87:
80:5d:18:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWzOahO4ED/Cph9Sj3Cs0EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi
NzU2MDMwHhcNMjUwODIzMTIwMDA5WhcNMjUwODI0MTIwMDA5WjAzMTEwLwYDVQQD
EyhjODQ3ZWQ5ZjIzNzE3ZjUwMzA1M2Q4MjgzM2VkNjg5Yjk1MzI4NzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyU91epYr5lwlDoU419Kq7ORlA2mn
MYnGXPwyZ/h9p7R1aGNJYYPMmL3bIJTAMpWUUoqZLGO+XXGg9hCCqp2DWmNMINWt
ABr3l6Odxdka0N6MKI1YzaAfp84+W9OMFOiy+Mm48tiEHc0DAeWrkF8a2gccsBzy
sG6tblVL75+cA2QfN9mg5Pyj2tbPvZCiE5aF4NqsUTEjKVPBGP4ndOhuQ0hveH2A
JT67QBlISb8TXoB1j2inElflKPMNJVR001mFTM/jXL6J76zehxDYvxgTsp1srAVO
tKRAAKTFwto3WhMx//kcm3yIusKgAbqqfXVGDLflA01BuyZCkMSmfbepawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMhH7Z8jcX9QMFPYKDPtaJuVMoeSMB8GA1UdIwQY
MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt
NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4
LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgroDoKH8
hZ9p1V/pLuup5eqny+zUJeMNbUFGAnIUX7DCSjPH4V7GLQo2T5yVh1HsZW/5RyBa
bjVfaA2VSQ6LSXx76Z1aj34rDurQqZHXr9/Xim7zx7rkdR/xui9nVdVFMv7cpBv8
O+LLA/rjeZxzOhP+fFAhGt7fhXkL+zNzWpBAsfbnqqYK67X3O63qYu5j8pXKxsG5
nCeBkVDWtDuuAt+y35sg/T/9u9etPBpP3ifzS8uUo/5RLwaR/o0JFWTkxtpmkmFl
vIzoDKadixTlaaCgF83HYHiBFWhRUBbAM42S6wg64lkU3XAwQ+SnK69pCAY/Nm98
Xqay8lmHgF0YiQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 15:35:59 2025 by rpki-client