Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: 4zbz8ZSqTx4FoLbA9fxdzl02UB/eZGWC1Cs4aq0NcWQ=
Subject key identifier: C7:E5:B1:D5:7B:63:4B:64:5B:62:D8:81:B1:A7:A5:33:22:84:E6:A3
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 01987975FA0A10D5D59D77C05B3F310F71EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 049E
Signing time: Tue 05 Aug 2025 09:00:31 +0000
Manifest this update: Tue 05 Aug 2025 09:00:31 +0000
Manifest next update: Wed 06 Aug 2025 09:00:31 +0000
Files and hashes: 1: HbiTFz7V9i6HXWWSqGlfQX8_ozw.roa (hash: BHZpHAZhPw4oI1w65XG0GhSp8q7BaCOt4LTrGAHW2wc=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: iILMudl4tYgsoQAsPUfLkFuxAF1WnXxHpcTYHNzT1uQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:79:75:fa:0a:10:d5:d5:9d:77:c0:5b:3f:31:0f:71:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Aug 5 09:00:31 2025 GMT
Not After : Aug 6 09:00:31 2025 GMT
Subject: CN=c7e5b1d57b634b645b62d881b1a7a5332284e6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2b:aa:9e:01:f1:6d:59:1d:19:d0:0a:40:df:
af:cb:b0:f0:4b:a2:ae:b6:1a:bd:b4:ab:0c:a4:f6:
22:96:ec:2d:10:b9:74:d4:79:d2:a5:94:98:68:5b:
34:48:0f:5c:fa:5e:a5:5d:3d:8c:ac:71:a5:94:b3:
11:82:22:d3:00:c9:ee:33:cd:97:54:ed:1e:60:44:
61:5a:b4:01:32:8d:d2:01:d5:80:47:e9:ef:55:85:
61:da:d0:65:ad:ba:d5:b9:a9:b4:4a:63:73:bd:db:
e3:02:b1:60:a7:a9:d4:94:39:cc:c2:35:04:4d:13:
22:dd:b2:74:1f:8a:01:3d:ed:99:bb:a9:ca:8e:69:
fb:0d:a2:46:a5:97:8c:c3:10:7b:4a:64:03:53:29:
2d:d8:fc:59:d5:14:09:86:e6:4c:26:2c:01:9e:f8:
bc:7a:5f:1d:ab:52:91:1e:90:d3:73:61:52:fd:05:
b0:ea:f1:69:8d:33:de:cd:95:e6:6f:95:00:ca:48:
61:bc:f2:2a:b7:ce:b1:56:8c:80:dc:86:dd:a3:ee:
36:66:7a:70:02:b9:db:39:e8:83:46:ad:ee:83:c7:
95:33:4e:76:23:41:4b:60:fb:44:85:97:d8:6a:f5:
de:59:3a:9d:cc:18:35:96:12:bf:d3:e3:4d:b8:73:
7b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E5:B1:D5:7B:63:4B:64:5B:62:D8:81:B1:A7:A5:33:22:84:E6:A3
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:87:17:fb:e6:fb:ca:54:c5:9e:97:ce:4c:a4:6f:b3:98:69:
90:26:91:5d:6c:5d:7d:5d:e4:22:d2:72:e5:c9:c6:a0:91:c2:
07:aa:38:5d:ae:31:3d:1d:60:bc:2a:42:68:74:98:c3:09:94:
cc:56:ca:4a:a6:47:15:5c:7f:f6:17:35:a7:6b:b8:0d:52:ef:
c0:38:b7:02:9c:04:e3:3b:94:5a:11:d7:5e:a3:2e:71:79:23:
1b:0a:6d:a4:b6:75:7a:a2:b6:cf:35:a7:73:48:c1:ab:b1:9a:
15:b4:5c:a4:ba:94:3f:35:99:42:3b:0f:6f:1b:d6:d3:1a:01:
35:66:3f:10:b1:7c:f1:be:1d:7c:82:d0:42:b4:50:d2:de:28:
cd:64:27:2b:e7:7a:62:b4:0f:f4:e6:2b:fd:06:3b:13:63:ca:
40:b5:1a:40:f1:20:3a:4c:a3:ad:2e:33:db:ff:62:84:3a:4c:
db:c6:76:df:4f:d5:a5:d7:62:fd:f8:21:cd:33:e4:9e:99:96:
1a:14:ee:19:85:6b:f8:56:b4:4f:69:f7:da:a5:ef:4b:b7:1c:
30:69:1b:df:4b:92:a9:13:6c:3f:3c:20:47:4f:92:bb:92:b3:
3c:2e:eb:56:a5:89:08:4f:cc:bf:74:bc:1f:4b:5c:2b:76:86:
c9:b0:df:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh5dfoKENXVnXfAWz8xD3HsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZjVmZTk5YmMyMjMyODg3MTE2ZmRhYzgyZDQwODJhZGJj
NmFjYjcwHhcNMjUwODA1MDkwMDMxWhcNMjUwODA2MDkwMDMxWjAzMTEwLwYDVQQD
EyhjN2U1YjFkNTdiNjM0YjY0NWI2MmQ4ODFiMWE3YTUzMzIyODRlNmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiuqngHxbVkdGdAKQN+vy7DwS6Ku
thq9tKsMpPYiluwtELl01HnSpZSYaFs0SA9c+l6lXT2MrHGllLMRgiLTAMnuM82X
VO0eYERhWrQBMo3SAdWAR+nvVYVh2tBlrbrVuam0SmNzvdvjArFgp6nUlDnMwjUE
TRMi3bJ0H4oBPe2Zu6nKjmn7DaJGpZeMwxB7SmQDUykt2PxZ1RQJhuZMJiwBnvi8
el8dq1KRHpDTc2FS/QWw6vFpjTPezZXmb5UAykhhvPIqt86xVoyA3Ibdo+42Znpw
ArnbOeiDRq3ug8eVM052I0FLYPtEhZfYavXeWTqdzBg1lhK/0+NNuHN7VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMflsdV7Y0tkW2LYgbGnpTMihOajMB8GA1UdIwQY
MBaAFFD1/pm8IjKIcRb9rILUCCrbxqy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmIt
NzQ1NmY0MzBjM2YxLzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmItNzQ1NmY0MzBjM2Yx
LzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVYcX++b7
ylTFnpfOTKRvs5hpkCaRXWxdfV3kItJy5cnGoJHCB6o4Xa4xPR1gvCpCaHSYwwmU
zFbKSqZHFVx/9hc1p2u4DVLvwDi3ApwE4zuUWhHXXqMucXkjGwptpLZ1eqK2zzWn
c0jBq7GaFbRcpLqUPzWZQjsPbxvW0xoBNWY/ELF88b4dfILQQrRQ0t4ozWQnK+d6
YrQP9OYr/QY7E2PKQLUaQPEgOkyjrS4z2/9ihDpM28Z230/Vpddi/fghzTPknpmW
GhTuGYVr+Fa0T2n32qXvS7ccMGkb30uSqRNsPzwgR0+Su5KzPC7rVqWJCE/Mv3S8
H0tcK3aGybDfow==
-----END CERTIFICATE-----
Generated at Tue Aug 5 17:10:43 2025 by rpki-client