Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: e52I2XjdxIVJ7Vst7s140vxw+eO9tjuKmByB9sxW/io=
Subject key identifier: F6:BB:42:70:AD:B5:95:3E:9B:6A:2A:EA:EB:F6:49:70:7A:D6:03:9B
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 0196BB240710E15438015C68E5A590F7766D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 03B5
Signing time: Sat 10 May 2025 17:00:22 +0000
Manifest this update: Sat 10 May 2025 17:00:22 +0000
Manifest next update: Sun 11 May 2025 17:00:22 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: +s6NQTkRw5LCoRSJeovEMulp2r0GFiyRsGM1+fw647c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:24:07:10:e1:54:38:01:5c:68:e5:a5:90:f7:76:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: May 10 17:00:22 2025 GMT
Not After : May 11 17:00:22 2025 GMT
Subject: CN=f6bb4270adb5953e9b6a2aeaebf649707ad6039b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:30:16:e1:86:40:19:89:de:5b:d2:f5:f0:ad:
b8:9b:02:b2:49:31:b2:99:48:c1:bf:e1:03:50:54:
b3:19:6b:a1:7d:b7:56:f9:18:f9:71:32:ac:d2:1a:
d3:f1:f2:15:5b:88:fb:cd:20:0a:b1:fe:ac:d6:a2:
2c:47:e0:c4:f3:94:1b:df:f2:ac:85:9c:b4:03:be:
71:00:fe:6f:84:11:70:aa:05:8e:13:78:46:7e:30:
57:e9:e8:05:04:97:c0:bd:65:50:f1:3d:6a:e0:9a:
45:25:55:22:7c:7b:af:76:6a:87:2b:db:ee:61:8e:
33:4e:f3:39:ea:cd:97:c9:7d:19:3c:ac:10:64:30:
9e:03:7e:1d:1a:1f:2c:2f:4e:81:5f:3f:74:a9:78:
72:61:cd:fc:34:01:c7:dc:35:28:c1:04:33:57:58:
cd:9c:e2:0b:c6:f1:a8:95:0f:4e:95:99:37:2a:17:
f5:1d:89:7b:11:bd:28:31:70:97:cd:64:6c:3e:03:
05:e1:77:ee:1d:58:73:72:09:5f:74:41:51:01:1f:
87:19:f4:91:6a:f2:03:48:67:88:95:51:14:f3:7b:
48:33:27:44:b7:1a:6c:2c:3d:c9:88:48:25:b4:1e:
cb:4b:06:46:fe:01:a2:7f:5c:19:2b:3b:85:e9:a5:
14:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BB:42:70:AD:B5:95:3E:9B:6A:2A:EA:EB:F6:49:70:7A:D6:03:9B
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:5e:80:bf:24:a4:9d:6e:72:a5:30:fb:93:f5:18:26:ed:25:
91:26:87:7e:93:f7:7f:18:9b:a3:9f:b9:91:84:16:16:ce:b7:
2e:51:9b:67:9a:01:93:cf:02:cd:63:a1:03:84:e3:a9:8b:65:
71:16:d6:e3:c4:c4:41:6c:fc:e8:3d:a7:6d:32:e5:38:68:fb:
f9:cb:23:72:0a:9d:b1:45:fe:48:bb:6c:3e:12:52:97:18:3a:
c7:1b:ca:42:25:83:3d:9d:1c:d9:d5:f5:98:00:5b:90:05:c2:
de:39:6c:b2:16:a3:c7:0f:0c:49:c6:b4:f4:ac:28:68:4c:b2:
73:c2:da:02:0f:87:ca:3c:b2:77:e8:ca:bd:a3:0a:5e:67:b0:
83:76:06:eb:21:c6:b3:a0:58:2e:ab:b4:b8:18:de:42:16:0c:
d3:05:e3:a0:a3:ad:62:e5:59:93:80:fa:b8:24:0d:2d:d1:f3:
2c:6b:16:2b:00:72:1c:b1:70:9a:3a:8c:72:36:90:a4:7d:c8:
6d:77:9e:cd:28:73:ff:57:3a:ed:02:93:3b:bc:eb:7d:73:d9:
bd:fa:ed:9e:70:13:59:7b:09:0f:77:51:34:c8:28:b1:bf:b6:
1a:ac:43:cd:87:48:35:9b:7c:b1:94:2b:3b:f4:a2:c4:9c:bd:
9d:ce:7f:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:33:59 2025 by rpki-client