Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: pMhpRxS2xzCD4JNBPLAWamvOrUXPjr8SZH/aXDJViyk=
Subject key identifier: 14:F2:3E:DA:3A:17:B3:38:1D:0A:9B:CC:77:63:28:07:A7:A7:B1:52
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 019EC1EE0F0F6BE115FCAC186B8C0D4221CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 07E7
Signing time: Sat 13 Jun 2026 17:01:04 +0000
Manifest this update: Sat 13 Jun 2026 17:01:04 +0000
Manifest next update: Sun 14 Jun 2026 17:01:04 +0000
Files and hashes: 1: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: gAaDZCHCcXqiroTWwkm+H7Sw4UmOTVvO5yPVjVEc8yQ=)
2: mf0gWWT9tDUujC29k27IpTbJ344.roa (hash: CIBQigWs2TocsqchNE4I1RZtMQ3hnsC16oL8fK2cCdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:0f:0f:6b:e1:15:fc:ac:18:6b:8c:0d:42:21:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Jun 13 17:01:04 2026 GMT
Not After : Jun 14 17:01:04 2026 GMT
Subject: CN=14f23eda3a17b3381d0a9bcc77632807a7a7b152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:ca:cf:96:64:6d:d4:22:20:0f:f6:94:a5:
67:50:4e:d9:52:f4:22:3d:0b:07:8e:72:7c:0e:2f:
d5:0c:fb:42:aa:ff:d3:8f:4c:e3:fc:c5:cf:44:21:
da:4d:94:a5:ba:8d:67:33:35:48:92:ca:fe:e4:26:
15:68:34:fa:b9:1f:d0:38:15:a4:bb:26:9d:11:58:
ce:5c:a8:88:56:ee:f6:00:59:22:75:82:0d:e4:49:
a8:8a:f5:46:fe:09:65:78:47:dd:b1:bf:c9:b4:5f:
a9:77:74:da:ae:f4:f2:a9:c6:94:d0:b6:9f:96:9d:
cf:c8:10:2f:52:c2:db:90:f7:b5:98:1d:a1:cd:4b:
5e:4b:e9:fa:4c:94:69:66:0f:06:60:f0:7e:b7:9a:
35:72:a3:9f:69:b0:05:8b:6b:c0:79:d7:04:f1:9c:
ca:08:70:1e:27:03:03:65:43:72:fb:e0:ea:12:5f:
7c:f4:3f:4e:7b:35:66:4f:fd:22:7e:b5:f9:62:42:
15:48:62:ed:ab:05:09:3c:e4:f5:30:ac:53:48:16:
dd:10:48:b6:0a:c5:39:bc:53:92:a6:43:3a:37:0e:
34:e0:27:40:dd:1f:be:8a:ea:6e:77:0e:41:8b:00:
fc:07:6e:ea:0c:22:b2:63:fe:b3:2c:4f:88:7e:fc:
cc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F2:3E:DA:3A:17:B3:38:1D:0A:9B:CC:77:63:28:07:A7:A7:B1:52
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:08:8e:07:1e:7b:81:39:59:72:19:b4:84:48:c9:e8:76:45:
71:fb:46:93:79:47:5b:52:9d:5b:94:d7:c5:7e:d6:23:f4:33:
33:ed:c3:12:0e:5c:59:73:56:ef:d0:81:f1:62:c1:80:5a:6a:
92:d7:7f:6f:f8:e0:92:d3:0c:66:bf:c4:e8:80:46:fd:f0:84:
3e:47:5f:d4:d9:8a:4c:3e:a5:b7:64:4a:40:4d:96:21:5c:db:
86:c3:36:3c:4d:f1:72:94:7b:ce:10:5d:e8:1e:ab:af:99:4e:
c8:9e:ad:8a:39:fd:05:65:16:02:c1:49:52:78:b7:2e:09:6e:
11:e3:aa:86:f1:34:43:d0:7e:10:4a:4d:71:8a:d9:db:e1:cb:
a7:6b:b3:f6:ef:cb:1f:07:2f:4f:34:06:50:64:22:ce:10:71:
ec:4e:d4:f9:01:bf:42:ef:4d:d7:63:b5:c7:c7:3d:c9:3b:cf:
bd:89:9e:2b:c3:50:39:3d:ee:5d:ec:e3:67:28:18:56:e9:34:
ed:de:c0:36:50:5b:0a:4a:1f:6b:98:52:5c:df:56:dc:58:6c:
5c:ea:36:3c:dd:5d:33:e0:18:6f:85:d4:da:ca:09:d6:53:32:
db:30:ee:2b:e3:ea:e9:92:c7:c3:5a:94:4c:e6:87:f3:54:0d:
4e:60:d0:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:57:08 2026 by rpki-client