Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: ChftCeOUnoJmDVxlsHlvDEDDpUFRIzd/p7DA68yafMo=
Subject key identifier: 93:67:B9:93:F0:CC:81:A7:A5:93:33:86:BC:2D:A1:DA:13:BF:6A:CF
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 0197481E943B4CE12E8AE39A5CE9112343C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 03FE
Signing time: Sat 07 Jun 2025 02:00:52 +0000
Manifest this update: Sat 07 Jun 2025 02:00:52 +0000
Manifest next update: Sun 08 Jun 2025 02:00:52 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: ueegNsr6A0ZYgksuAjCT9pBCUBQUBwmKeld4t4qB0Os=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:94:3b:4c:e1:2e:8a:e3:9a:5c:e9:11:23:43:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Jun 7 02:00:52 2025 GMT
Not After : Jun 8 02:00:52 2025 GMT
Subject: CN=9367b993f0cc81a7a5933386bc2da1da13bf6acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f0:68:a9:42:34:96:71:27:42:17:c0:30:50:
88:a4:3e:52:b8:e3:fe:1f:e4:ed:87:ca:61:44:82:
92:10:45:e5:a7:c2:64:62:fe:fe:60:a7:50:1a:6b:
ab:5b:fc:b5:9a:0e:8c:6c:1d:37:18:6f:28:c8:23:
3c:19:b4:b5:b1:de:4e:e3:fe:51:4a:b2:48:95:10:
23:88:f8:ff:d5:db:82:47:c1:54:eb:32:89:08:bb:
c6:e8:81:48:e2:2f:4f:36:e6:09:17:80:7b:5a:b1:
bb:d7:49:ba:a6:0d:9e:67:c3:ed:fa:92:4b:09:9a:
d9:36:05:b3:7f:28:db:b7:80:a4:ee:75:98:05:f1:
2e:13:02:ef:bd:1a:19:26:5b:c6:f2:b0:2c:40:7a:
ad:bc:86:d0:92:9a:16:a8:d7:fb:b1:1a:fd:20:09:
b3:8a:c2:d5:b1:57:d3:a5:b5:80:bb:e5:74:59:a1:
6c:ca:dc:e2:92:ad:9e:f1:97:cf:50:20:bd:ad:6b:
fa:09:77:f8:9d:0e:fc:32:20:8f:b3:ab:7a:9b:99:
8e:7b:11:04:dd:da:98:77:bf:eb:6d:61:d6:c6:f3:
42:d9:08:a1:59:bf:a7:0c:39:c6:a1:85:77:be:f8:
23:98:3c:f0:43:f2:bb:20:90:cc:31:a5:3e:0b:98:
76:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:67:B9:93:F0:CC:81:A7:A5:93:33:86:BC:2D:A1:DA:13:BF:6A:CF
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:6f:a1:c6:20:81:9d:b2:1d:81:a5:42:77:8f:e5:7f:da:4d:
06:42:9b:1e:44:8c:59:74:d7:d4:ad:dc:c8:d7:bf:d3:7d:9a:
53:75:31:33:cf:f3:7b:08:8b:1e:b9:be:14:24:b7:c0:07:c9:
f7:f2:92:44:d5:bd:0f:5b:1c:7a:cc:cc:4d:3b:c2:34:06:ae:
66:41:4d:cc:08:60:2d:fd:2f:33:7f:54:93:94:36:1f:55:55:
cd:5c:e9:ca:10:66:7a:a7:02:26:49:d6:7a:05:c7:56:9e:63:
40:d4:17:b9:54:1b:fe:cd:36:d7:47:1a:87:93:b4:fc:66:e9:
a4:dd:9f:62:2a:0f:5b:e8:d6:2c:f4:d3:7b:37:e7:3f:f8:77:
1f:dc:88:9b:3f:c4:71:f8:14:2d:3a:f4:b1:f7:cb:7e:d3:81:
73:cc:c8:31:b9:cc:d6:ef:f9:2b:f6:a2:10:38:3c:71:f9:43:
78:21:07:69:5d:d6:be:e7:57:e5:0d:33:8b:0d:0a:b2:5b:c2:
71:f7:31:f5:75:d0:ea:fe:73:6f:99:69:3e:a5:2a:a1:05:d7:
df:37:97:0e:51:c9:13:f0:7b:1b:2f:83:89:52:1e:61:8a:0d:
b9:10:a5:66:45:bb:85:5e:b2:da:3a:00:d2:87:31:7f:d0:1a:
71:79:ef:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 09:17:49 2025 by rpki-client