Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: jMua3ehtSJfn4NEjoUwXCcetwktIR6LWuG6PhLMPL70=
Subject key identifier: D9:8C:AB:B6:0C:35:3A:5B:B8:AF:A4:D6:E5:05:E5:27:D5:9B:9B:48
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 019768F3175B65F8CA82B6C2438C51986371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 040F
Signing time: Fri 13 Jun 2025 11:00:50 +0000
Manifest this update: Fri 13 Jun 2025 11:00:50 +0000
Manifest next update: Sat 14 Jun 2025 11:00:50 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: Bg9rVbkPlXMrZ09F4rIiO7QSbL2PExnk3wVe/GwJ9g4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 11:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f3:17:5b:65:f8:ca:82:b6:c2:43:8c:51:98:63:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Jun 13 11:00:50 2025 GMT
Not After : Jun 14 11:00:50 2025 GMT
Subject: CN=d98cabb60c353a5bb8afa4d6e505e527d59b9b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:08:0f:7a:a2:41:13:34:ac:78:b5:f0:71:d9:
82:33:e1:71:de:83:0b:1c:e5:c1:28:37:01:08:72:
fe:bb:05:38:ef:d3:bc:4c:81:64:63:ee:67:4a:38:
0a:ab:cd:8c:8d:fe:e1:5d:dd:83:c9:88:aa:ca:54:
de:dd:2e:37:dc:8c:74:29:61:93:45:e5:63:d2:9c:
ab:10:7f:03:0e:3b:72:a8:28:49:94:77:27:7e:cb:
e5:c9:d4:8b:1e:20:da:8d:db:46:ac:c3:57:4f:77:
06:a8:df:06:49:61:5c:ff:e9:32:3d:02:82:e6:16:
8a:e6:c8:2c:f8:7f:36:94:ce:6d:b1:e1:a0:3b:57:
88:8f:ef:40:c3:54:c3:b4:18:78:d9:16:b5:f8:c0:
ea:55:d2:3d:39:bd:01:3f:2f:3a:d3:f4:64:54:04:
d2:83:31:43:02:29:ce:33:33:b9:00:5a:6d:ac:0d:
51:ee:6f:7c:6a:f8:d2:15:9e:ac:ca:a5:47:dc:38:
84:86:05:7f:bf:66:60:49:2d:51:b6:62:59:fc:e4:
24:35:1d:5b:9d:21:71:a6:67:bc:8b:07:e7:7b:79:
58:d9:39:b8:4b:de:5c:d5:ce:85:c3:ab:14:3d:73:
1a:1b:34:44:72:89:76:4c:e4:2d:a9:38:3e:ed:97:
49:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8C:AB:B6:0C:35:3A:5B:B8:AF:A4:D6:E5:05:E5:27:D5:9B:9B:48
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:24:70:c0:eb:0c:e7:6d:d5:74:09:1e:4c:a9:8a:ea:07:88:
2a:40:92:7f:69:4c:36:cf:c1:cb:6f:9b:b6:3e:7d:55:91:e3:
91:2e:9b:11:4c:1f:17:9d:1b:db:9f:95:d9:17:92:07:ef:7a:
be:5f:c7:31:ef:96:2c:0b:fb:1a:6a:15:c8:29:5c:fd:cc:88:
f4:5d:da:c8:9f:16:66:8b:de:15:e8:88:8d:44:df:d4:44:4d:
17:b8:4e:06:6a:fb:c8:7c:f4:e8:ff:6b:08:35:89:fe:1a:5c:
5a:ff:b0:71:71:06:b5:aa:c6:c8:f6:b5:5f:b3:a1:f9:d7:b2:
bf:a5:59:bc:7d:1c:46:0b:56:c5:be:40:54:44:be:68:8b:54:
6d:6f:05:c7:90:d5:a5:89:3a:f0:fd:18:e0:64:2a:ad:3f:b3:
5f:7e:e7:9e:05:15:22:90:19:17:2d:b2:66:ce:cf:b5:16:9d:
86:1a:e3:9d:de:5c:bc:51:06:a8:e4:c9:16:f4:6d:9a:a6:62:
bb:5d:2f:bf:2d:79:70:22:a6:e8:e6:97:3b:20:78:8d:50:c0:
77:10:e4:eb:63:d7:8e:0b:52:73:bf:b9:ee:a6:5c:e9:b2:9c:
2e:41:bd:ff:2c:ae:16:83:2d:d3:f8:98:2a:99:5b:ef:70:fa:
c7:52:ad:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:21:48 2025 by rpki-client