Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: 9Sv+oftEjjQ/EAQFs5t00iflwnL0R92Lei3fM4S+Bk0=
Subject key identifier: E7:9B:7E:35:F7:8A:34:BC:CF:9F:E1:07:13:54:8F:E6:C3:45:1C:A6
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 01984B1C88710022B604972FCE905F5D3A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 0486
Signing time: Sun 27 Jul 2025 09:00:17 +0000
Manifest this update: Sun 27 Jul 2025 09:00:17 +0000
Manifest next update: Mon 28 Jul 2025 09:00:17 +0000
Files and hashes: 1: HbiTFz7V9i6HXWWSqGlfQX8_ozw.roa (hash: BHZpHAZhPw4oI1w65XG0GhSp8q7BaCOt4LTrGAHW2wc=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: OSaEhfS2qkjAbqYXu3waNGJer7q2Cm5zlQ+f6vk/XCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:1c:88:71:00:22:b6:04:97:2f:ce:90:5f:5d:3a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Jul 27 09:00:17 2025 GMT
Not After : Jul 28 09:00:17 2025 GMT
Subject: CN=e79b7e35f78a34bccf9fe10713548fe6c3451ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f3:32:ee:95:7b:05:0d:bb:1c:d2:3c:c8:df:
e9:12:db:63:b5:6f:02:5e:e2:8f:0f:d1:24:4f:73:
e6:59:a6:49:0e:c5:5c:4f:dd:28:e1:5e:3e:ff:7c:
e1:33:d7:ed:c8:17:0c:bf:5b:09:09:50:0f:85:a5:
69:d6:8f:63:7f:14:8f:4e:1d:fd:c9:e9:8f:3c:25:
84:32:b3:42:3c:48:cd:90:7a:c1:01:89:3c:41:b5:
95:e3:b6:c4:50:a9:25:1e:3e:26:79:50:28:aa:a0:
54:03:7f:aa:01:16:fb:28:4e:7b:cb:0d:a4:62:69:
ab:0f:4b:3d:ad:82:f7:e8:54:9d:38:eb:75:6e:a7:
3f:5a:25:46:53:95:3a:86:7b:ec:71:82:c7:0f:7a:
a0:d3:63:52:ba:e4:28:aa:06:f8:94:27:e5:a8:87:
ce:a1:1c:fd:07:02:5f:2f:b6:76:d3:fe:a3:6c:ea:
82:ff:6b:53:07:5a:7e:48:bc:2b:19:b7:2d:51:70:
60:2a:8e:c9:b2:63:a0:ba:07:1f:68:6c:ce:31:9a:
40:1c:a1:93:c9:07:a9:8b:b0:63:e9:af:ad:43:eb:
2f:08:85:78:73:99:71:d1:12:28:71:40:c9:0f:c3:
be:17:ff:5e:6c:f1:45:f6:8e:28:20:e4:47:16:14:
55:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:9B:7E:35:F7:8A:34:BC:CF:9F:E1:07:13:54:8F:E6:C3:45:1C:A6
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:b5:44:03:5c:34:28:ee:fe:85:4a:14:39:2c:91:b2:9c:2a:
dd:d9:ff:88:d3:41:3e:7d:c4:48:5d:02:c8:60:6c:95:0f:33:
6b:16:1e:76:8d:a0:ed:a5:1e:6f:fc:03:44:c4:7f:65:eb:69:
0a:1a:54:cf:7a:58:5c:30:59:25:0e:41:ce:cf:58:2a:52:28:
c8:07:72:11:74:2a:c6:68:90:fe:98:26:46:82:1b:9e:5c:64:
8c:4a:9f:18:49:c8:a5:61:9e:a6:6c:40:c9:52:04:2b:0d:c4:
46:72:41:d7:bf:53:44:9e:f4:23:fc:12:96:c9:3e:ca:50:45:
55:d3:ff:9f:f3:e1:91:29:db:91:7b:7f:fd:c8:df:88:c5:0f:
23:fb:67:c2:af:d6:d7:9b:60:76:36:58:e7:09:5a:77:80:f2:
ca:ab:af:49:5d:f9:65:ef:42:d4:c2:eb:4d:7e:ac:e3:62:9b:
23:04:aa:56:22:60:73:63:03:6c:ae:7e:d5:ae:64:1b:08:64:
71:ec:49:70:67:21:49:8a:38:2f:fe:6b:0d:a5:98:f1:86:d1:
fa:51:5d:8b:3b:56:d5:8b:d5:65:ef:79:06:ff:2e:93:9f:22:
21:a1:b0:a7:f7:b2:e0:08:0d:91:d7:f9:08:56:af:f4:95:4f:
c6:54:79:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 13:39:35 2025 by rpki-client