Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: FBa42UObo7MnW/A2aP2eMx87AbHNqEX/wjK8OaFURNQ=
Subject key identifier: 62:8D:C2:A0:D4:78:FA:76:1D:02:43:36:5F:AB:C8:2B:32:12:84:68
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 01960B67EFB87D5722C5401EF41CC6EA627F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 035A
Signing time: Sun 06 Apr 2025 14:01:23 +0000
Manifest this update: Sun 06 Apr 2025 14:01:23 +0000
Manifest next update: Mon 07 Apr 2025 14:01:23 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: 0ruz6WE+bN9Q/o6fS1TSZoZQGnSKSbjGFEkOFT+pzn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 10:07:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0b:67:ef:b8:7d:57:22:c5:40:1e:f4:1c:c6:ea:62:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Apr 6 14:01:23 2025 GMT
Not After : Apr 7 14:01:23 2025 GMT
Subject: CN=628dc2a0d478fa761d0243365fabc82b32128468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:45:11:18:16:00:44:94:7b:5b:4f:2c:23:8f:
c7:8d:73:26:0f:92:67:87:1e:bc:90:d7:9f:40:e5:
8f:9f:07:f2:c6:8f:86:66:f3:73:ab:ea:ef:e2:a8:
75:8f:7e:37:52:e3:fc:70:b6:74:20:7d:14:e3:e2:
ce:18:90:f2:4b:fa:5b:1d:c0:67:c7:51:a3:54:7d:
19:52:91:99:76:17:6e:55:7a:14:78:58:e4:30:11:
f4:01:57:25:fd:82:97:84:a8:59:27:21:48:9f:5c:
bf:06:4a:a3:ea:cc:be:4f:07:dd:f3:94:ee:ce:d8:
7c:0a:19:a6:07:d7:81:5c:0d:6b:c4:b6:5e:45:07:
cb:1a:c4:f0:a2:83:22:04:de:73:e6:39:b0:c6:80:
d5:7d:ca:5c:a1:59:cc:7d:68:58:34:f5:7d:4a:5f:
4a:8d:be:dc:4e:9b:8a:7f:cd:90:93:99:aa:bd:2d:
09:81:8a:c5:da:32:70:db:75:c0:3f:5c:e5:96:9d:
a8:c5:7a:69:27:b0:22:b7:a7:ff:b6:62:89:35:64:
70:06:36:48:c5:8c:94:08:18:eb:52:63:2d:4c:c7:
5c:35:29:b8:91:a3:f0:88:87:91:7b:31:72:cd:b8:
c0:c4:f4:87:22:5d:52:bb:80:86:4f:62:fd:44:93:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:8D:C2:A0:D4:78:FA:76:1D:02:43:36:5F:AB:C8:2B:32:12:84:68
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:03:85:05:a7:3a:99:0a:44:b0:a8:5a:5d:e9:89:30:f5:b1:
82:c4:4b:22:88:2e:a0:57:a5:47:5c:bf:e3:44:1d:c4:e1:e9:
ac:98:bf:c3:79:18:ca:ca:53:b0:43:22:72:06:e6:a2:cd:9f:
ee:97:f1:bd:e5:0a:2f:5e:48:f5:69:7e:e9:1c:e6:44:10:b4:
f4:56:92:d2:9a:a6:73:5b:6b:05:d3:fe:00:87:68:dc:3c:6f:
d3:b1:6f:a3:e5:43:9e:0b:cd:a1:dc:30:ac:b9:39:38:9b:01:
1d:af:5d:61:f1:8c:9b:45:f0:2e:b4:e7:6d:3b:d5:93:b3:4b:
07:b7:7d:10:6f:18:86:c2:00:76:70:83:fe:12:10:fa:b1:12:
9e:ee:36:ff:9b:8b:f5:5e:ff:2c:ba:a2:03:9e:73:e0:76:24:
e2:e8:54:0c:80:6d:eb:bd:52:5f:22:7b:1f:af:a7:00:49:b3:
ed:52:4b:3b:50:5d:bc:c4:37:4b:b2:69:3d:71:91:7f:e6:2e:
36:61:b9:84:b2:07:09:6f:9f:8a:dc:f3:5e:85:41:36:43:3c:
72:4b:b4:2a:ea:35:8a:56:87:ec:94:12:85:20:4e:ea:13:d9:
89:72:a7:f4:c9:9b:8b:47:d7:04:85:94:7b:45:d8:f2:91:26:
83:5f:44:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:10:40 2025 by rpki-client