Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json)
Hash identifier: IxgOXJ6AdiseuHAS9hP85FhIMzev+RvhuzS4sdB8Sy0=
Subject key identifier: E2:6D:0F:1E:C9:0E:CD:99:60:D3:BE:3B:08:9F:6E:75:41:F4:59:FA
Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Certificate serial: 0198D62984CB49143B8C063066233CEC3A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
Manifest number: 04CE
Signing time: Sat 23 Aug 2025 09:01:41 +0000
Manifest this update: Sat 23 Aug 2025 09:01:41 +0000
Manifest next update: Sun 24 Aug 2025 09:01:41 +0000
Files and hashes: 1: HbiTFz7V9i6HXWWSqGlfQX8_ozw.roa (hash: BHZpHAZhPw4oI1w65XG0GhSp8q7BaCOt4LTrGAHW2wc=)
2: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: tjCMqjZKkjVzqqeQ55BQHA4jV9WmwRVbgebYihEwq3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:29:84:cb:49:14:3b:8c:06:30:66:23:3c:ec:3a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7
Validity
Not Before: Aug 23 09:01:41 2025 GMT
Not After : Aug 24 09:01:41 2025 GMT
Subject: CN=e26d0f1ec90ecd9960d3be3b089f6e7541f459fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:1e:e6:03:5a:4d:ef:88:32:5f:7f:50:fa:
6e:af:a6:d3:ff:b5:2c:46:eb:76:ff:f5:e9:cd:67:
f4:41:1e:9e:d4:82:de:18:ed:1d:f1:02:23:f7:69:
87:ed:7b:68:10:88:72:e5:5c:a9:32:32:5f:a9:a2:
a5:41:36:8e:ee:14:f4:57:74:04:e5:4a:81:ec:f2:
6c:b7:92:94:4a:74:c0:45:8d:9f:52:e6:f8:c5:c1:
7c:b6:5a:7a:3d:1d:80:da:8a:ec:7a:4b:ca:80:79:
8d:6b:36:b3:59:d0:d9:92:64:c4:e6:8f:fd:b2:c7:
5d:5f:2c:69:3c:a4:a7:b5:3a:d1:01:a7:bf:3c:2c:
09:67:02:57:82:5b:c9:4b:0c:7e:c9:7a:3f:f1:bc:
7a:7b:c9:89:12:79:f2:94:5e:8d:08:c5:42:47:ce:
2f:41:2c:88:f7:dd:09:ba:ad:02:18:e6:71:0d:f5:
05:c9:e2:88:5a:e6:24:15:c0:5c:9d:c6:49:0c:b9:
77:96:78:d7:93:cd:30:76:14:47:36:7b:7a:dc:31:
3e:7e:fd:d4:47:da:b1:bf:e6:9f:5c:29:10:71:14:
52:17:08:61:7c:75:ef:f8:97:a2:c1:a5:78:29:9a:
ca:f8:b3:79:be:ae:4f:ef:42:4d:89:34:38:6b:ea:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:6D:0F:1E:C9:0E:CD:99:60:D3:BE:3B:08:9F:6E:75:41:F4:59:FA
X509v3 Authority Key Identifier:
keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:a6:ca:33:71:4a:4f:40:98:80:ef:06:15:ca:26:27:33:a9:
6d:11:66:ca:e6:cb:bd:5f:bd:49:f2:84:54:e2:8e:7b:1f:ec:
53:b7:80:7a:6f:a2:67:4a:9a:37:a4:9f:43:e7:0f:8e:a3:5e:
ff:b2:7b:10:27:8e:88:52:ae:8a:3d:33:3c:9e:02:74:60:94:
0d:ed:a9:6d:5e:a9:56:35:a1:63:46:01:a9:c8:11:0c:e9:c4:
e3:bf:2d:f9:c3:38:40:04:83:88:d4:2a:3b:bc:f2:be:7d:18:
b8:22:cf:2e:2c:5d:fc:22:71:ac:42:19:5a:d8:4e:03:08:e8:
52:40:5d:40:89:17:86:ea:db:41:ba:c0:15:dc:11:b5:27:0f:
72:26:2a:7b:f2:67:0c:0f:30:8e:d7:16:61:0b:de:c0:3d:03:
87:0f:09:81:ae:9c:00:e0:82:f6:ef:78:17:b2:94:e8:05:ec:
47:7b:3b:51:43:ea:98:81:f1:62:91:f1:9b:b2:a1:12:d8:43:
1e:40:ab:f6:04:a9:52:2d:30:58:a9:c8:c3:1d:a8:4b:e5:7b:
94:10:c4:03:ca:2f:65:8a:29:88:7d:8d:7b:80:ff:5f:64:e8:
b5:14:ad:b5:fa:61:63:8f:91:b4:e3:e7:43:0d:c6:93:f2:d9:
e8:c8:4c:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWKYTLSRQ7jAYwZiM87DqVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZjVmZTk5YmMyMjMyODg3MTE2ZmRhYzgyZDQwODJhZGJj
NmFjYjcwHhcNMjUwODIzMDkwMTQxWhcNMjUwODI0MDkwMTQxWjAzMTEwLwYDVQQD
EyhlMjZkMGYxZWM5MGVjZDk5NjBkM2JlM2IwODlmNmU3NTQxZjQ1OWZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3Ie5gNaTe+IMl9/UPpur6bT/7Us
Rut2//XpzWf0QR6e1ILeGO0d8QIj92mH7XtoEIhy5VypMjJfqaKlQTaO7hT0V3QE
5UqB7PJst5KUSnTARY2fUub4xcF8tlp6PR2A2orsekvKgHmNazazWdDZkmTE5o/9
ssddXyxpPKSntTrRAae/PCwJZwJXglvJSwx+yXo/8bx6e8mJEnnylF6NCMVCR84v
QSyI990Juq0CGOZxDfUFyeKIWuYkFcBcncZJDLl3lnjXk80wdhRHNnt63DE+fv3U
R9qxv+afXCkQcRRSFwhhfHXv+JeiwaV4KZrK+LN5vq5P70JNiTQ4a+qkyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOJtDx7JDs2ZYNO+OwifbnVB9Fn6MB8GA1UdIwQY
MBaAFFD1/pm8IjKIcRb9rILUCCrbxqy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmIt
NzQ1NmY0MzBjM2YxLzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmItNzQ1NmY0MzBjM2Yx
LzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO6bKM3FK
T0CYgO8GFcomJzOpbRFmyubLvV+9SfKEVOKOex/sU7eAem+iZ0qaN6SfQ+cPjqNe
/7J7ECeOiFKuij0zPJ4CdGCUDe2pbV6pVjWhY0YBqcgRDOnE478t+cM4QASDiNQq
O7zyvn0YuCLPLixd/CJxrEIZWthOAwjoUkBdQIkXhurbQbrAFdwRtScPciYqe/Jn
DA8wjtcWYQvewD0Dhw8Jga6cAOCC9u94F7KU6AXsR3s7UUPqmIHxYpHxm7KhEthD
HkCr9gSpUi0wWKnIwx2oS+V7lBDEA8ovZYopiH2Ne4D/X2TotRSttfphY4+RtOPn
Qw3Gk/LZ6MhMbQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:33:57 2025 by rpki-client