Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: qU7LkXh723ekJaBoHXVIU4XyIfgIzAZ0VZfn4ZPA6SU=
Subject key identifier: 57:E5:60:00:A0:8C:95:88:23:39:97:E0:42:F9:31:61:E2:A7:41:3F
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 019D371B8F169E6B6B02885417CD9A26D7DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 0719
Signing time: Sun 29 Mar 2026 01:00:46 +0000
Manifest this update: Sun 29 Mar 2026 01:00:46 +0000
Manifest next update: Mon 30 Mar 2026 01:00:46 +0000
Files and hashes: 1: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: aY3kc5YUTW0rXy7NunPKOW9N0+SJl+hy6boHg/iVjNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:8f:16:9e:6b:6b:02:88:54:17:cd:9a:26:d7:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Mar 29 01:00:46 2026 GMT
Not After : Mar 30 01:00:46 2026 GMT
Subject: CN=57e56000a08c9588233997e042f93161e2a7413f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f7:f9:2f:36:1d:a0:ea:44:0d:02:67:f9:c6:
d2:6f:b0:c1:8b:47:a2:eb:34:b4:68:8f:6f:95:81:
84:8a:a7:f4:3d:85:b6:fe:ae:ca:bc:c4:1b:a2:42:
14:23:e0:a1:7e:82:c1:2e:75:4b:ef:10:ff:33:bf:
4e:dd:8d:40:95:09:d0:58:cf:73:ca:9d:91:40:bd:
0c:df:92:d0:ce:a6:19:53:65:ef:e5:eb:29:96:fe:
58:f6:94:b1:a9:c4:89:0f:dc:de:31:d0:c3:1d:4c:
31:49:49:94:67:81:db:61:47:1a:24:40:6d:e0:96:
87:b7:97:5e:5d:14:32:18:84:a2:37:4e:7a:7b:ee:
53:ed:83:f7:15:30:d7:37:2d:8b:ac:58:f9:51:ff:
8f:4e:49:a2:d8:39:92:fc:86:35:5e:d6:33:39:49:
0a:2e:79:a5:cd:fa:56:a2:87:aa:68:cc:52:ba:12:
fa:c2:11:15:05:ce:40:ca:86:68:6d:18:a5:38:c7:
74:56:54:da:47:0b:45:de:72:18:9c:0b:f8:3e:74:
32:fd:e2:4c:73:22:70:b9:40:7e:67:34:de:15:47:
f9:43:c8:6b:4a:72:d5:57:eb:d4:23:42:54:81:8f:
a6:b0:21:f5:8a:e3:93:64:26:3f:c3:dc:64:79:be:
8c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E5:60:00:A0:8C:95:88:23:39:97:E0:42:F9:31:61:E2:A7:41:3F
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c3:32:b9:99:98:82:ac:2b:d2:ca:b5:39:1d:e1:0e:1c:95:
37:47:32:e2:37:1c:a6:b2:6f:11:d8:21:00:4b:7a:f7:64:ac:
89:1b:a0:d5:f6:32:0e:cc:59:92:d4:55:89:da:a4:70:dc:31:
8f:af:1d:d0:97:49:4a:7e:b1:d7:9e:97:dc:9c:8f:99:7b:40:
56:bb:51:c4:31:7a:53:df:0c:4f:eb:8d:b5:c9:5e:e7:38:d0:
4a:df:4e:50:05:70:be:b0:dc:74:11:06:86:f3:3c:b1:ea:d5:
61:f0:97:67:14:6f:0a:a2:d4:d2:83:75:af:f8:4d:3c:66:e1:
ca:3c:55:99:7c:0a:7f:f5:d6:73:1a:18:4d:bb:99:7a:ba:d2:
78:01:63:72:15:b7:12:b0:62:07:59:7d:df:9d:4d:38:7c:8e:
6d:a7:0c:eb:fb:1c:39:76:44:5e:d2:25:cc:30:66:2e:3e:8b:
4e:dd:9b:46:b5:88:8e:49:8e:21:e9:b3:e4:b6:b5:16:be:86:
e7:ea:d6:b9:2d:eb:8b:b9:7b:4a:3f:27:80:b5:4d:9a:fd:3a:
1b:a1:ba:b6:ff:a9:82:79:37:f5:3c:8d:41:e5:22:5d:1a:50:
1c:4e:6b:61:4e:5e:cb:01:16:48:8c:11:c3:7f:f6:01:39:ae:
84:fc:1c:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:22 2026 by rpki-client