Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: WNeIjXQG9wojxg7tes2zxW7/CpHyCDgiMt0zCVJ6730=
Subject key identifier: EF:3F:75:24:02:99:18:D3:6F:C4:08:70:64:47:FC:9C:F5:48:54:0D
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 0197B6329AAA70CC89D2349CB260C65E25BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 0437
Signing time: Sat 28 Jun 2025 11:00:58 +0000
Manifest this update: Sat 28 Jun 2025 11:00:58 +0000
Manifest next update: Sun 29 Jun 2025 11:00:58 +0000
Files and hashes: 1: 4IU66ltB5spMCU1NkhmnAMSEiws.roa (hash: jkXsgCZ9AOwz4i9eeBiFtGjyKyqIabmttJku6EP5dW8=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: 2mDX8y8Mmfuiv3QeligRde39FyTJB+SGK9fk0BniTs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 11:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:32:9a:aa:70:cc:89:d2:34:9c:b2:60:c6:5e:25:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Jun 28 11:00:58 2025 GMT
Not After : Jun 29 11:00:58 2025 GMT
Subject: CN=ef3f7524029918d36fc408706447fc9cf548540d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d2:ac:e1:67:5c:3d:6f:19:ce:cb:f8:41:60:
35:37:73:6e:e8:b6:67:2a:04:b4:6a:7b:bd:ed:28:
8f:1a:27:64:67:61:e4:cf:eb:e3:02:94:9e:22:62:
c4:21:a0:8d:24:38:f1:34:28:9b:b1:19:fb:20:eb:
dd:5b:49:85:66:8a:cb:f9:08:2d:dc:e7:c7:ec:82:
8b:81:c7:c1:fb:da:b8:c9:d9:8e:7a:b2:73:d5:3a:
81:fa:5e:5f:41:3e:f7:6a:30:b4:fc:43:5a:ea:e9:
fa:02:c3:34:82:77:0b:5a:7b:96:b9:ca:14:27:c7:
8d:13:16:f5:e9:83:cc:bd:4c:0d:e6:48:f5:87:71:
cb:25:2b:93:3a:90:95:47:5e:26:18:65:cd:bd:cf:
17:42:d6:02:6c:64:49:5c:7a:ee:45:ee:c1:99:ce:
39:f1:5d:b4:37:fd:43:9a:ca:13:a4:7b:1d:c4:5e:
37:a2:82:a7:92:97:6d:fe:54:bb:39:13:59:a2:2a:
b4:00:99:05:fb:f0:30:c0:31:af:12:46:4a:30:cb:
56:5a:f8:dd:35:30:fe:8f:07:a4:04:35:76:75:fb:
86:aa:e6:33:a8:9f:1d:67:18:1d:7c:c7:bc:f9:dc:
db:64:29:af:b8:9f:b4:f6:48:d3:d2:7c:68:e7:87:
a6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3F:75:24:02:99:18:D3:6F:C4:08:70:64:47:FC:9C:F5:48:54:0D
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:0a:1f:3b:4b:64:e2:e1:ac:97:a6:07:38:64:7f:e5:29:53:
f7:77:d8:0e:e4:a7:37:e7:6b:c8:84:f3:21:14:4a:16:65:3a:
d0:2c:d8:ac:11:ee:29:d5:f9:ec:d8:8c:27:14:cd:99:1f:37:
79:42:ef:4e:a3:07:2e:c4:9a:e0:74:e5:ef:2b:37:f6:28:17:
46:85:51:e2:6c:d6:78:8c:ca:72:66:17:92:f4:6e:4b:5f:47:
fc:2f:fa:f3:1b:ce:7a:3f:35:4e:da:2c:79:cd:fd:77:37:ba:
c3:88:d0:8c:6f:87:15:e2:fc:94:50:16:f4:c7:36:c3:36:78:
d5:27:74:eb:46:25:fa:1c:a6:ab:d8:20:23:9f:23:71:eb:2c:
14:25:60:c2:50:e9:86:18:91:75:a1:35:43:72:22:86:44:57:
38:cf:1e:07:68:9b:47:77:16:0b:8a:ec:90:70:16:7b:e1:88:
cf:cd:25:11:6b:ec:71:55:64:e3:a3:50:43:18:57:9c:45:30:
06:05:9b:7a:ca:7e:55:0c:72:64:22:6e:e5:b1:70:e8:4c:cc:
55:91:bf:e0:cd:1d:90:d9:42:d4:9a:d8:ff:ed:8b:4a:1b:dd:
d3:71:49:1f:cd:18:5c:30:07:c9:0e:01:d3:9c:73:00:39:5f:
ff:3f:d5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:11:37 2025 by rpki-client