Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: Yd768IivXF7dgpomaiGjRl++QJyRAnvo9QTO95cu5pw=
Subject key identifier: 89:34:63:6B:DD:55:CF:E6:97:B2:A9:B3:BA:7C:AF:2A:22:39:AA:95
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019748F9D410500EF49D5F6377FA3CCA0A26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 07E6
Signing time: Sat 07 Jun 2025 06:00:21 +0000
Manifest this update: Sat 07 Jun 2025 06:00:21 +0000
Manifest next update: Sun 08 Jun 2025 06:00:21 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: adp4Ikm213aHMFiQfB42TWty2HE/SC+fwptxY0iix+M=)
2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:d4:10:50:0e:f4:9d:5f:63:77:fa:3c:ca:0a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Jun 7 06:00:21 2025 GMT
Not After : Jun 8 06:00:21 2025 GMT
Subject: CN=8934636bdd55cfe697b2a9b3ba7caf2a2239aa95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:85:d3:bb:c2:44:a8:28:6d:96:69:23:ea:c3:
18:66:2f:e9:aa:22:1a:d3:5f:5d:62:a1:fe:53:f3:
ff:ec:c7:41:1d:e5:7d:f9:cc:7e:de:8d:c0:b8:66:
22:97:96:a5:72:59:6f:f8:37:58:c8:c5:d2:db:35:
33:f3:3f:ba:4a:9b:63:7d:5a:40:6b:b3:a5:05:c3:
52:f2:f6:d7:46:c0:c9:57:cb:e8:46:a3:68:33:3a:
83:d7:5b:4d:fd:ab:13:21:ea:9b:62:17:27:46:e8:
2b:27:ef:b4:c1:43:94:ab:44:65:f6:b7:f0:69:27:
94:49:15:88:03:8c:eb:79:fd:a8:af:3a:2e:27:be:
05:47:ea:ea:42:a0:a7:d5:38:c2:88:10:56:41:bc:
ed:99:3e:12:51:6a:25:19:f4:74:6c:33:d6:a5:5b:
88:a4:ca:f2:a8:6c:c3:c7:1a:46:40:8c:2b:7e:2e:
ff:ff:88:d1:7b:a6:29:00:fd:6c:de:74:85:f0:dd:
d7:4d:5a:37:1b:af:6f:e9:23:d4:ed:1b:a7:57:b5:
ec:0c:ab:d8:da:b7:7d:fb:de:43:9a:d4:de:81:ab:
64:91:b0:e9:82:76:4a:95:0a:48:9d:48:75:40:bd:
27:c8:4b:c7:7b:b9:2d:bc:61:52:8b:a8:1b:25:2d:
c4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:34:63:6B:DD:55:CF:E6:97:B2:A9:B3:BA:7C:AF:2A:22:39:AA:95
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:a3:f4:06:1b:5c:97:2d:c4:aa:fc:6f:de:3f:72:da:9b:b5:
1e:f4:67:56:6f:44:b3:13:f4:94:4b:8d:45:4c:2b:3e:85:4f:
a5:81:81:bb:a0:88:18:e2:18:ec:86:7d:74:dc:ec:d0:cb:da:
de:99:91:46:84:0e:7d:75:a1:04:6f:f3:e1:08:a2:cd:85:92:
78:00:e4:ce:fe:42:5a:04:a5:a1:4a:f3:bb:43:4b:21:1f:a7:
26:23:e3:0d:b4:e9:ab:c9:50:f0:94:7e:6c:19:a4:74:05:ec:
a9:45:12:67:b5:ab:1d:27:bc:f5:14:8e:be:7b:f6:08:5d:ec:
38:ee:17:2b:30:84:33:6a:68:f7:9e:3b:04:07:2b:03:df:34:
02:43:c8:ad:d4:32:98:a7:ac:59:f6:6d:a3:8c:29:3f:11:b1:
26:e2:2e:d0:32:cc:e0:94:ca:ec:8e:3f:f8:54:3d:79:fd:9c:
82:d5:6f:75:2d:25:1f:7a:59:57:ff:56:80:97:a8:0b:b9:e3:
ed:77:7e:a1:61:76:44:8f:9d:e4:93:78:64:9f:61:3b:25:92:
62:30:53:c9:9e:31:6e:4c:b9:80:10:92:20:73:58:88:9f:ba:
54:6f:89:f5:ae:11:a4:bb:5d:ea:de:18:2d:23:72:e5:f7:d9:
ac:1d:8f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:04:57 2025 by rpki-client