Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: 8flIZ4fnnO2zUXIietZpxp8c5te9m1muLg/ZM6uTAek=
Subject key identifier: 29:B9:24:15:3D:0C:0B:A6:C3:B7:97:2B:2D:14:57:3D:3F:19:36:78
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 019EE7E998CC7ABCE8357B90785085295F1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0BD9
Signing time: Sun 21 Jun 2026 02:01:46 +0000
Manifest this update: Sun 21 Jun 2026 02:01:46 +0000
Manifest next update: Mon 22 Jun 2026 02:01:46 +0000
Files and hashes: 1: G3RuhmzfG29w9YFS7oTygz6W0Vw.roa (hash: JX85b3D4X40BgCYerPxa2mnW3gNxZep/hukddR8oH8k=)
2: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: Aj1kzXsT1fX7z/+Xo3aTP7RGVOD6f1iCJfLUEjQXkTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e7:e9:98:cc:7a:bc:e8:35:7b:90:78:50:85:29:5f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Jun 21 02:01:46 2026 GMT
Not After : Jun 22 02:01:46 2026 GMT
Subject: CN=29b924153d0c0ba6c3b7972b2d14573d3f193678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fc:a0:bc:7f:b1:c1:e0:54:6e:30:f9:62:a5:
00:9d:ff:e6:76:a5:9e:bd:a2:b7:9e:fa:5d:2f:95:
65:7b:4f:92:e9:b8:56:0d:b0:87:37:01:e2:3f:b8:
4d:b5:6c:79:8e:7f:fe:e8:91:ce:a8:e9:b5:aa:e0:
2d:85:95:dd:9a:b4:43:a7:a8:89:42:6d:42:00:b0:
66:2a:16:f7:ac:62:f2:3b:06:e7:0d:41:03:14:52:
a2:68:ed:7a:d5:68:f2:d2:0e:fd:f2:95:1f:89:ee:
68:be:f5:f8:7c:cc:45:36:f2:51:3d:10:c3:03:27:
30:33:48:b1:8d:77:7b:a1:5f:dd:4f:8e:dc:90:5e:
36:54:01:c5:40:b5:46:0a:22:d3:3a:21:b7:19:f8:
0e:54:7a:97:51:ed:1c:93:a9:f0:5b:88:3f:94:a3:
eb:c3:0e:0b:51:12:24:a3:0e:ce:3a:9a:aa:7e:ae:
cf:af:a9:6a:c5:a6:39:f1:88:32:4b:05:a9:e3:07:
53:c5:bd:e2:b1:c0:32:8b:f3:db:23:ba:85:c7:12:
00:08:66:a5:b7:27:f7:1e:d9:c7:e4:c5:f4:d3:cc:
08:f1:8d:59:10:cb:09:7b:ee:ae:ea:55:7c:42:b3:
71:08:7d:af:b7:71:24:15:42:af:af:87:9c:a1:06:
47:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:B9:24:15:3D:0C:0B:A6:C3:B7:97:2B:2D:14:57:3D:3F:19:36:78
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:86:93:9d:15:66:8c:ec:b1:75:eb:b7:bb:bb:95:18:c2:37:
2d:90:05:9e:18:04:8d:13:ec:03:05:e7:83:2f:8f:ae:dc:8e:
f4:64:76:4a:09:5b:34:72:e1:26:d5:30:a0:07:8b:e4:1a:e8:
89:69:26:f0:38:10:80:dc:2c:e0:47:68:c6:7b:a5:66:e6:18:
50:af:b7:4e:8c:67:df:ee:47:d8:5a:f9:6e:d1:65:c6:a8:12:
a2:85:e9:1c:b2:eb:36:a7:b0:db:1a:e5:a5:8b:1c:f2:af:26:
bb:fa:4b:4a:e5:6e:24:48:47:0b:1f:07:1f:9f:07:8b:08:82:
c4:61:12:05:06:6d:6d:73:04:fb:91:db:b0:6b:c6:c4:1c:e5:
e9:0a:d8:ce:02:5e:ae:f5:14:cc:f7:ea:08:07:1f:85:8a:2a:
9a:89:12:45:3e:25:c5:33:cd:a0:82:c9:a1:be:ed:b7:6d:09:
0a:76:fb:e9:a2:7d:be:20:37:c7:e2:d3:72:79:5b:6b:e8:a2:
c5:1d:14:2b:f4:cc:35:1c:6a:af:e9:ad:79:ab:3b:fb:fc:92:
ad:0d:90:f9:3a:86:28:a1:df:71:83:76:ef:66:c3:68:e5:a6:
3d:ca:e7:64:2d:7d:d4:7d:19:87:39:cc:0a:f7:03:03:7a:cd:
1d:9d:2e:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7n6ZjMerzoNXuQeFCFKV8fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi
NzU2MDMwHhcNMjYwNjIxMDIwMTQ2WhcNMjYwNjIyMDIwMTQ2WjAzMTEwLwYDVQQD
EygyOWI5MjQxNTNkMGMwYmE2YzNiNzk3MmIyZDE0NTczZDNmMTkzNjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/ygvH+xweBUbjD5YqUAnf/mdqWe
vaK3nvpdL5Vle0+S6bhWDbCHNwHiP7hNtWx5jn/+6JHOqOm1quAthZXdmrRDp6iJ
Qm1CALBmKhb3rGLyOwbnDUEDFFKiaO161Wjy0g798pUfie5ovvX4fMxFNvJRPRDD
AycwM0ixjXd7oV/dT47ckF42VAHFQLVGCiLTOiG3GfgOVHqXUe0ck6nwW4g/lKPr
ww4LURIkow7OOpqqfq7Pr6lqxaY58YgySwWp4wdTxb3iscAyi/PbI7qFxxIACGal
tyf3HtnH5MX008wI8Y1ZEMsJe+6u6lV8QrNxCH2vt3EkFUKvr4ecoQZHlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCm5JBU9DAumw7eXKy0UVz0/GTZ4MB8GA1UdIwQY
MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt
NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4
LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4aTnRVm
jOyxdeu3u7uVGMI3LZAFnhgEjRPsAwXngy+PrtyO9GR2SglbNHLhJtUwoAeL5Bro
iWkm8DgQgNws4EdoxnulZuYYUK+3Toxn3+5H2Fr5btFlxqgSooXpHLLrNqew2xrl
pYsc8q8mu/pLSuVuJEhHCx8HH58HiwiCxGESBQZtbXME+5HbsGvGxBzl6QrYzgJe
rvUUzPfqCAcfhYoqmokSRT4lxTPNoILJob7tt20JCnb76aJ9viA3x+LTcnlba+ii
xR0UK/TMNRxqr+mteas7+/ySrQ2Q+TqGKKHfcYN272bDaOWmPcrnZC191H0ZhznM
CvcDA3rNHZ0ugg==
-----END CERTIFICATE-----
Generated at Sun Jun 21 12:34:56 2026 by rpki-client