Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: bhCYfTvlcF5jnufu+LK85zsPZt8INqY81k3SSPvt7fw=
Subject key identifier: 5C:B8:11:CE:66:79:46:76:52:21:E1:75:F2:25:85:BC:F2:1B:D0:FC
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 019CAC1038AF18AB2A84D88F1613687BC451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 06D1
Signing time: Mon 02 Mar 2026 01:01:10 +0000
Manifest this update: Mon 02 Mar 2026 01:01:10 +0000
Manifest next update: Tue 03 Mar 2026 01:01:10 +0000
Files and hashes: 1: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: mO2coDuTtibsZ2kHd6s4yGYYbNTVROuOgxz3cJU5zec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:38:af:18:ab:2a:84:d8:8f:16:13:68:7b:c4:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Mar 2 01:01:10 2026 GMT
Not After : Mar 3 01:01:10 2026 GMT
Subject: CN=5cb811ce667946765221e175f22585bcf21bd0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:01:9e:6c:b8:72:67:00:a3:52:3a:35:28:9c:
b1:0d:7b:17:c8:53:25:45:bf:cc:fb:42:71:b6:bd:
3a:86:6a:8e:44:dd:8e:14:57:02:63:d8:07:a8:71:
ae:58:29:1c:2c:50:70:ce:6e:e0:af:27:02:98:00:
08:89:cf:0e:de:df:53:d6:dc:86:03:2f:f6:99:f3:
cc:04:92:da:71:80:08:b5:81:13:3c:7c:0d:07:5a:
bc:ff:8a:2a:e4:89:c8:a5:f1:cf:1b:12:c0:2c:c2:
a7:51:70:f4:f7:b8:4c:4c:15:7c:4d:41:2d:bd:b3:
4c:8d:a7:68:f0:32:9a:f7:47:9a:b2:d0:a9:58:cd:
37:55:ed:35:0f:56:cc:fe:33:37:ec:13:6a:9d:49:
e9:a2:c9:3c:3e:15:e6:62:70:c8:59:ab:e2:8c:6d:
b3:a8:67:7f:3b:85:55:32:39:e8:41:28:22:37:fc:
e5:f3:c0:db:c1:d4:bf:da:fc:c3:cc:b5:da:9f:6e:
cb:71:e0:8c:12:a7:37:96:0d:fa:44:75:65:84:e0:
aa:13:1c:21:a5:20:d6:5b:16:e9:0e:d1:c6:d9:f9:
5e:99:8d:a0:aa:15:6f:86:9f:a9:ff:fb:90:69:2f:
61:97:13:ab:fe:ad:20:39:a6:9f:68:03:fd:9d:5e:
61:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:B8:11:CE:66:79:46:76:52:21:E1:75:F2:25:85:BC:F2:1B:D0:FC
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:d8:87:ff:b9:95:95:f3:de:2f:2d:a0:80:19:76:68:e2:d3:
1d:70:00:03:12:79:b9:e5:9d:67:c8:8f:61:71:a5:0a:76:4b:
d1:0c:94:a7:e9:52:65:b8:12:85:f8:fe:02:27:42:b2:7e:22:
d2:42:d4:0d:b4:30:79:d4:e1:44:f8:26:88:e9:7a:c3:01:fc:
86:45:b3:ef:49:3d:c3:79:d7:00:38:88:fd:bd:44:33:96:45:
cf:a5:11:c4:8f:be:fa:88:29:28:6c:5d:a4:49:ac:34:8b:14:
02:35:0f:a6:88:2a:4a:29:0b:38:fa:8c:fd:44:b8:2e:0f:84:
d4:e6:c0:26:77:19:d9:28:a6:57:30:59:e7:4c:ed:46:77:0e:
51:dc:d3:b6:1d:c5:c8:f5:b8:e4:52:9e:72:90:35:d4:74:58:
7f:32:7b:fa:1b:92:70:dd:b5:62:4b:62:6e:4c:07:5e:a3:52:
04:bd:d9:e6:57:61:6f:b9:6d:9a:8d:a9:82:a6:db:d7:93:1b:
f8:84:f6:90:5e:40:09:ea:79:ab:27:e7:22:89:e0:b7:e5:df:
4a:b8:8a:74:d5:8d:6c:e0:e6:fd:b4:02:ea:06:9e:2b:67:e8:
71:95:8e:5e:70:81:9a:0e:8e:d2:da:c0:c8:d7:50:65:3b:bd:
ad:8d:92:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:06:56 2026 by rpki-client