Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: rJvWQ+WxT2RfCFWVSM5Rs/PjkByC+a+dSmSxCOzGyaQ=
Subject key identifier: DF:52:B5:FE:5A:FE:B6:86:EC:DE:93:42:FA:F5:0D:0C:AF:31:0E:7C
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 0197B70EBA65A362BD31E3ED6406F3CBA848
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 081F
Signing time: Sat 28 Jun 2025 15:01:25 +0000
Manifest this update: Sat 28 Jun 2025 15:01:25 +0000
Manifest next update: Sun 29 Jun 2025 15:01:25 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: fjTSGPTezJTgBmHkZfU/qIS01Be1VfuXpI6T5QgzNAc=)
2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:ba:65:a3:62:bd:31:e3:ed:64:06:f3:cb:a8:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Jun 28 15:01:25 2025 GMT
Not After : Jun 29 15:01:25 2025 GMT
Subject: CN=df52b5fe5afeb686ecde9342faf50d0caf310e7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3e:dd:a5:c2:db:d9:14:19:1c:8e:b6:24:31:
f4:61:ae:a8:60:41:2b:e5:7b:28:03:61:36:f5:d9:
a2:ff:1e:52:64:99:39:c3:d3:2b:2d:f2:72:b0:a1:
5e:56:d1:56:3e:dc:fb:05:a4:3e:34:f1:bd:aa:6b:
36:e8:a5:80:02:c6:cd:c3:38:a0:1c:be:ba:28:59:
ce:5e:fc:93:3f:4f:90:f5:32:56:67:fb:23:9d:cb:
1b:3e:3e:95:6d:cf:28:0e:01:4d:f4:3a:2a:b0:8a:
7b:7a:bf:85:77:7f:68:e4:04:92:7e:f2:af:44:99:
d8:a2:f4:1a:4e:a9:e9:2f:f8:fe:e8:40:2b:c0:c0:
83:6e:e4:3b:8b:b8:f7:e3:ca:d5:a5:f0:7c:31:66:
a9:a2:bf:12:8c:9f:42:15:d4:d3:cd:9d:c7:31:93:
37:36:18:4d:5a:a6:c9:49:59:97:d9:2d:d2:46:80:
75:7e:a4:fd:5b:42:3b:5f:c6:3b:a9:0c:7d:3a:ee:
90:71:73:7e:83:97:51:b3:2e:28:e8:84:81:78:6b:
2f:5b:6f:01:00:70:f5:97:fc:9b:92:4c:bd:8b:ee:
24:df:58:70:8c:9f:35:e8:c0:c2:a3:ac:3b:44:73:
ab:67:77:a9:95:b4:fa:ce:fa:38:75:69:de:f5:c9:
cf:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:52:B5:FE:5A:FE:B6:86:EC:DE:93:42:FA:F5:0D:0C:AF:31:0E:7C
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:fe:d1:85:13:5d:c2:67:0f:38:c9:06:5d:97:09:0b:d6:34:
d8:bc:f9:29:c9:a6:32:ff:88:39:af:eb:a8:eb:47:30:fb:b1:
03:2a:cf:73:20:93:88:14:03:15:93:d5:1b:e1:20:54:ed:71:
5d:c6:72:bb:d0:bb:ee:b0:de:dc:a2:42:87:fc:3e:fc:e8:e1:
eb:29:43:52:ff:96:54:87:fe:5e:4c:fd:b7:c7:e2:68:78:b3:
ad:51:e1:64:2f:53:55:fe:70:ac:1f:a6:ba:e0:54:d6:34:bd:
79:47:cc:03:b2:b6:e4:f8:dd:46:4d:68:85:cd:20:c5:e9:94:
b1:0c:22:7f:2d:33:9e:cb:ad:20:e1:19:68:a9:bd:1d:75:d1:
f5:da:eb:cb:b7:30:f0:bb:b9:a0:84:4b:57:51:5e:fe:06:44:
08:30:36:45:8e:30:c9:7c:da:c4:2d:61:85:95:33:ee:65:d2:
57:ce:fe:86:6d:21:4d:12:99:b9:ff:15:5d:aa:eb:8e:e0:26:
d7:57:10:a3:df:30:f4:fd:fd:42:ab:37:19:be:1b:05:b6:e3:
51:f4:30:bd:a8:ff:e8:da:14:6a:9e:dd:37:e2:fd:1f:61:74:
63:d2:80:eb:fb:54:f3:fa:39:75:f8:68:7f:94:70:6a:ec:ce:
ee:34:5e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:07:21 2025 by rpki-client