Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: uGC7G+9/7OCn8gQXb65oTbCbyLK6W3yO3oknIRWon7A=
Subject key identifier: EB:02:17:B2:F3:C9:B0:39:68:03:BD:B5:02:39:21:71:24:57:C7:99
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 019673B005A41B7A1397251585D66DDA57E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 0390
Signing time: Sat 26 Apr 2025 20:00:37 +0000
Manifest this update: Sat 26 Apr 2025 20:00:37 +0000
Manifest next update: Sun 27 Apr 2025 20:00:37 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: VKBiAwpseIqE59KRaB/tZnPTd229NWfCru5O2c34/7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:b0:05:a4:1b:7a:13:97:25:15:85:d6:6d:da:57:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Apr 26 20:00:37 2025 GMT
Not After : Apr 27 20:00:37 2025 GMT
Subject: CN=eb0217b2f3c9b0396803bdb5023921712457c799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:51:20:34:24:0f:d6:92:38:2c:aa:a1:ab:90:
72:f3:7f:6f:8d:7c:a6:50:96:a1:c8:45:d8:8b:27:
b7:7f:54:1a:12:d6:2a:85:6d:0a:10:ae:d1:35:89:
28:f3:a2:2e:6e:50:d7:5e:4b:4b:6c:57:84:7f:fa:
68:ab:4e:64:df:c4:fd:f3:38:be:4a:77:e0:a3:ba:
94:ae:f7:1e:78:47:a6:5c:47:ee:e6:89:10:20:86:
f1:17:53:0b:df:20:c2:73:03:a1:fb:d3:07:67:16:
ac:98:b4:3e:f3:e2:53:e4:98:94:7c:bb:0e:1b:ba:
2d:da:6d:76:32:ec:7c:e8:2d:10:aa:e6:17:fa:18:
25:6f:68:1c:c9:ab:fb:bb:5b:4b:22:67:8d:4d:8f:
ca:cd:76:49:a6:69:e0:44:ba:0d:70:90:cc:f9:1b:
69:ad:c7:b1:f5:bf:7c:8c:c9:3f:80:8d:da:09:d1:
bd:3f:11:9e:13:c9:d0:93:e0:b7:af:57:7f:ea:85:
36:57:95:ce:07:7b:c5:9b:34:9e:67:71:60:22:25:
c5:b2:2b:c8:88:ca:4f:34:6e:a2:31:4d:c5:ba:0f:
45:1d:cd:e7:b9:fb:83:8c:05:fa:2e:da:e2:6b:07:
90:00:73:6f:9f:29:4d:fb:f5:88:b8:bc:d5:aa:2b:
6b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:02:17:B2:F3:C9:B0:39:68:03:BD:B5:02:39:21:71:24:57:C7:99
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f0:a0:a1:0b:a6:48:12:8b:41:b9:1b:96:9b:a1:9d:1f:15:
42:3e:6b:58:76:29:5d:ea:3c:10:a5:4b:0c:49:d1:bb:94:51:
8c:fa:13:36:23:73:e9:de:cb:09:cd:28:98:8f:2d:b7:15:e1:
5b:34:46:6c:57:84:63:e8:34:31:36:50:05:6b:d0:98:e7:23:
b6:04:14:7a:d3:ce:d6:4b:e1:c6:34:47:f9:d0:a1:4a:a7:3a:
45:0f:68:a9:69:f3:2c:db:de:ce:be:7d:56:ca:05:e1:a0:94:
25:61:fe:35:d6:28:f3:ad:da:0e:b7:34:21:59:98:70:30:ec:
dc:f8:42:a5:12:2f:90:04:1c:21:5b:22:f0:ef:47:0a:4e:09:
ea:3f:52:94:00:06:1a:fb:5d:6c:46:52:16:11:2a:cb:3e:dd:
6d:d4:bd:4b:00:53:00:df:5d:ac:7a:c1:77:e2:f0:78:62:3a:
0f:26:85:c1:47:d0:74:b3:79:93:33:a9:43:0f:a0:b8:78:fb:
38:69:cb:5f:dd:ea:be:9b:b7:d4:64:a8:c3:81:8b:79:9d:a6:
24:3c:e4:34:3b:af:c2:36:9a:1e:c6:79:64:a2:85:0b:bb:b1:
8a:5c:0e:49:fd:6a:4d:c8:ee:b9:79:97:cb:57:83:29:f1:59:
9c:bb:c6:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZzsAWkG3oTlyUVhdZt2lfiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZjVmZTk5YmMyMjMyODg3MTE2ZmRhYzgyZDQwODJhZGJj
NmFjYjcwHhcNMjUwNDI2MjAwMDM3WhcNMjUwNDI3MjAwMDM3WjAzMTEwLwYDVQQD
EyhlYjAyMTdiMmYzYzliMDM5NjgwM2JkYjUwMjM5MjE3MTI0NTdjNzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVEgNCQP1pI4LKqhq5By839vjXym
UJahyEXYiye3f1QaEtYqhW0KEK7RNYko86IublDXXktLbFeEf/poq05k38T98zi+
Snfgo7qUrvceeEemXEfu5okQIIbxF1ML3yDCcwOh+9MHZxasmLQ+8+JT5JiUfLsO
G7ot2m12Mux86C0QquYX+hglb2gcyav7u1tLImeNTY/KzXZJpmngRLoNcJDM+Rtp
rcex9b98jMk/gI3aCdG9PxGeE8nQk+C3r1d/6oU2V5XOB3vFmzSeZ3FgIiXFsivI
iMpPNG6iMU3Fug9FHc3nufuDjAX6LtriaweQAHNvnylN+/WIuLzVqitrwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOsCF7LzybA5aAO9tQI5IXEkV8eZMB8GA1UdIwQY
MBaAFFD1/pm8IjKIcRb9rILUCCrbxqy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmIt
NzQ1NmY0MzBjM2YxLzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmItNzQ1NmY0MzBjM2Yx
LzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ/CgoQum
SBKLQbkblpuhnR8VQj5rWHYpXeo8EKVLDEnRu5RRjPoTNiNz6d7LCc0omI8ttxXh
WzRGbFeEY+g0MTZQBWvQmOcjtgQUetPO1kvhxjRH+dChSqc6RQ9oqWnzLNvezr59
VsoF4aCUJWH+NdYo863aDrc0IVmYcDDs3PhCpRIvkAQcIVsi8O9HCk4J6j9SlAAG
GvtdbEZSFhEqyz7dbdS9SwBTAN9drHrBd+LweGI6DyaFwUfQdLN5kzOpQw+guHj7
OGnLX93qvpu31GSow4GLeZ2mJDzkNDuvwjaaHsZ5ZKKFC7uxilwOSf1qTcjuuXmX
y1eDKfFZnLvGhw==
-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:35 2025 by rpki-client