Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: pA6qapnbZo1TG5crm9kL3hCZZEG0D5MzajuQJDHtLp8=
Subject key identifier: F7:05:13:65:03:AC:BD:2E:54:1F:E5:F8:8A:66:B5:E9:83:EB:C9:FB
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 0199FC8F827047CFDC73A8E36D85B59389AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 056B
Signing time: Sun 19 Oct 2025 13:01:27 +0000
Manifest this update: Sun 19 Oct 2025 13:01:27 +0000
Manifest next update: Mon 20 Oct 2025 13:01:27 +0000
Files and hashes: 1: UALX_giHJIpWJY-WYBT5Q32MPc8.roa (hash: GxUJ4yIT9Xzo0JJuCDXvsLVFAMg4yoQwQ3Bhgyd6Mng=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: cTbkW1dV+r5K/xSjzbvbpmap/Hs8bELqIUyIMJ2gq7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:82:70:47:cf:dc:73:a8:e3:6d:85:b5:93:89:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Oct 19 13:01:27 2025 GMT
Not After : Oct 20 13:01:27 2025 GMT
Subject: CN=f705136503acbd2e541fe5f88a66b5e983ebc9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b9:49:aa:eb:e3:7a:3d:40:15:1f:19:89:c1:
43:68:91:10:b4:ef:15:d2:df:64:ce:1b:5f:2d:74:
bc:0f:06:88:ba:30:18:54:78:1b:c4:8e:a8:2e:e1:
a3:d0:c8:d9:8c:79:61:65:de:41:f8:a1:24:f2:56:
cc:a0:1c:26:82:30:59:03:da:6d:a3:24:c6:d6:f4:
a0:16:12:dd:a3:af:db:37:2a:a2:cf:93:d7:42:3c:
5b:6c:c2:e5:2c:cf:13:fc:6e:2c:cc:bc:40:16:fb:
0d:44:07:cc:8e:5a:6f:4f:aa:1c:3f:3d:51:ed:87:
9e:12:50:0e:22:a6:33:5d:75:34:04:09:81:cf:f0:
bb:af:59:0c:dd:a9:71:37:69:cf:a0:98:83:b2:c9:
ed:c2:af:d0:b3:8a:42:61:e1:12:22:9a:09:10:96:
e3:4a:2e:88:d1:2c:2c:77:da:c9:97:dc:c7:ae:6e:
39:bc:6e:f6:7b:10:25:11:53:44:64:9d:d8:b4:08:
4f:a8:5b:a2:c1:6c:4e:12:8a:b6:c6:ef:c9:4d:71:
9b:18:b9:4a:43:a5:4e:0e:86:84:9e:80:68:dd:df:
37:b6:f9:d5:26:5b:52:a2:cf:f7:b7:78:72:fd:e7:
ec:59:71:d5:5f:2f:9e:20:3f:06:9e:33:ac:04:a1:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:05:13:65:03:AC:BD:2E:54:1F:E5:F8:8A:66:B5:E9:83:EB:C9:FB
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c3:a3:ff:32:22:b6:59:24:f6:6d:9a:f6:ba:4c:a8:09:43:
46:f9:24:ce:10:9c:a9:d0:ea:8f:8a:06:89:d4:70:73:7a:c9:
e3:c4:e5:8e:94:cb:f4:c2:ce:3e:11:8c:95:ef:1c:dd:2e:eb:
da:04:5b:02:77:90:b5:ee:36:51:d3:4e:a9:ed:16:5d:22:3e:
76:d0:85:73:9a:b3:62:ad:22:51:a2:cc:37:fe:79:58:c8:06:
0c:cf:5b:4c:85:88:d1:84:f9:3b:f0:93:ec:17:14:e2:23:e2:
08:fc:95:7a:da:1d:2f:80:bc:fa:e3:6d:30:20:22:2c:a7:9e:
93:f2:fc:9d:d6:f8:d5:61:a9:02:d6:73:ba:95:23:ec:70:6b:
4b:12:58:37:ba:f5:fc:16:bc:5e:d7:fd:a4:51:05:83:4e:de:
4e:58:54:67:92:26:42:90:5a:61:93:2d:61:bc:ed:57:0f:6e:
65:a1:e2:f5:7a:6e:bf:f3:58:70:4f:b0:ed:ed:a7:55:27:2b:
bf:df:2a:b9:01:4f:8a:46:39:c9:d6:5f:bd:1e:03:04:15:5a:
bd:a0:1a:9a:27:62:e1:ce:cc:6c:b0:7f:29:6c:58:e6:4e:98:
f3:58:12:4b:04:84:37:8e:bc:bd:65:21:91:ef:e8:62:ee:6a:
4b:f9:03:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:06:45 2025 by rpki-client