Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: 7gt7MCGXel2IarPG6Out6psa+Iyu86SX6ysMr6rPijo=
Subject key identifier: FE:93:40:17:7C:74:AD:9C:74:05:DF:6C:00:09:D1:64:E4:1E:B0:1B
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019CEF39688B342BA73CDC0123D8E24219D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 084F
Signing time: Sun 15 Mar 2026 02:00:42 +0000
Manifest this update: Sun 15 Mar 2026 02:00:42 +0000
Manifest next update: Mon 16 Mar 2026 02:00:42 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: e0/6qIcw1u8zgCaPEUg4EstxqqgFAp5pClfHceseRIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ef:39:68:8b:34:2b:a7:3c:dc:01:23:d8:e2:42:19:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Mar 15 02:00:42 2026 GMT
Not After : Mar 16 02:00:42 2026 GMT
Subject: CN=fe9340177c74ad9c7405df6c0009d164e41eb01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:21:bf:9e:d7:bd:9c:9d:48:2f:45:13:64:b7:
cf:6e:c2:fb:d1:e3:87:89:20:d1:bf:bc:f9:fb:40:
9c:02:bf:f7:a7:57:37:c1:70:de:43:80:74:4c:8f:
cb:ea:f5:cd:d5:6e:fb:89:70:42:0f:1d:58:83:d9:
13:bf:e3:94:77:68:48:a3:12:3e:c9:40:d1:e8:ba:
98:4d:58:b3:78:2f:ac:ef:7b:52:8f:57:f3:72:76:
bc:b3:03:ba:d0:45:42:24:5f:14:57:99:5b:7f:7c:
82:ac:86:2c:46:23:34:a9:85:07:c6:16:bc:33:4f:
72:8b:28:6d:f0:be:23:a7:33:c8:db:fd:2e:23:ab:
3d:d7:1f:bf:27:91:b7:55:fb:af:6e:ea:22:4b:5b:
79:72:6e:d3:26:5c:ab:37:63:8a:90:dd:90:c4:45:
2f:13:0a:2a:5f:b2:50:14:57:63:e6:2f:c9:19:0b:
a2:63:b9:e6:0a:e5:75:2f:02:92:c6:32:a4:e9:15:
14:f3:13:60:fa:86:63:c4:4e:2e:30:66:ab:db:0d:
89:5b:8c:8c:bb:08:b4:fd:5a:97:10:4e:eb:ba:61:
a0:de:b2:53:fd:2b:13:96:e3:b3:e3:60:0f:ac:11:
e2:f4:9d:e2:cc:78:f6:70:bc:f6:74:73:cd:d1:e9:
60:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:93:40:17:7C:74:AD:9C:74:05:DF:6C:00:09:D1:64:E4:1E:B0:1B
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:0d:86:f3:38:02:dd:19:c0:f3:37:a2:7a:fb:71:61:59:59:
bc:b3:b0:6c:22:be:6c:01:e5:61:b3:e3:39:f7:f7:65:0f:b3:
b2:19:00:14:6b:56:21:f5:4f:bb:56:c1:eb:06:25:1a:e4:e0:
70:b9:1b:c2:5b:f6:1e:d9:ed:48:e1:38:96:fe:31:09:cd:d9:
e3:3e:d7:95:92:c2:d2:62:6c:70:8e:ef:8e:14:81:97:26:9d:
38:5e:49:51:b4:fd:15:d8:90:d1:ee:5a:0e:fd:4d:00:11:52:
69:a1:e6:f5:eb:32:b7:38:9f:27:21:8b:da:2f:05:ac:83:41:
9c:ad:27:77:76:86:60:6c:dc:20:1a:df:e8:bb:7b:f3:b4:32:
04:ef:46:fd:a1:7b:65:d6:b7:2c:f7:5f:c7:64:1f:36:df:40:
92:16:e2:5c:d2:63:84:fe:b5:81:76:15:cc:71:80:e7:2c:0e:
62:e5:a0:b8:09:c5:3a:46:3d:d1:7f:43:ce:e8:e3:c7:2c:a2:
be:a2:d8:1b:ed:16:f5:28:62:19:2c:c6:6e:5a:94:62:ca:8d:
ee:7c:43:c2:81:27:63:f5:d3:60:e2:a9:92:db:39:c2:05:2f:
37:c3:aa:de:91:01:99:fa:03:a4:3c:42:86:42:60:76:c8:b8:
61:e0:6b:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzvOWiLNCunPNwBI9jiQhnUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw
MzFkZjkwHhcNMjYwMzE1MDIwMDQyWhcNMjYwMzE2MDIwMDQyWjAzMTEwLwYDVQQD
EyhmZTkzNDAxNzdjNzRhZDljNzQwNWRmNmMwMDA5ZDE2NGU0MWViMDFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iG/nte9nJ1IL0UTZLfPbsL70eOH
iSDRv7z5+0CcAr/3p1c3wXDeQ4B0TI/L6vXN1W77iXBCDx1Yg9kTv+OUd2hIoxI+
yUDR6LqYTVizeC+s73tSj1fzcna8swO60EVCJF8UV5lbf3yCrIYsRiM0qYUHxha8
M09yiyht8L4jpzPI2/0uI6s91x+/J5G3VfuvbuoiS1t5cm7TJlyrN2OKkN2QxEUv
EwoqX7JQFFdj5i/JGQuiY7nmCuV1LwKSxjKk6RUU8xNg+oZjxE4uMGar2w2JW4yM
uwi0/VqXEE7rumGg3rJT/SsTluOz42APrBHi9J3izHj2cLz2dHPN0elgcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP6TQBd8dK2cdAXfbAAJ0WTkHrAbMB8GA1UdIwQY
MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt
MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm
LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQ2G8zgC
3RnA8zeievtxYVlZvLOwbCK+bAHlYbPjOff3ZQ+zshkAFGtWIfVPu1bB6wYlGuTg
cLkbwlv2HtntSOE4lv4xCc3Z4z7XlZLC0mJscI7vjhSBlyadOF5JUbT9FdiQ0e5a
Dv1NABFSaaHm9esytzifJyGL2i8FrINBnK0nd3aGYGzcIBrf6Lt787QyBO9G/aF7
Zda3LPdfx2QfNt9AkhbiXNJjhP61gXYVzHGA5ywOYuWguAnFOkY90X9Dzujjxyyi
vqLYG+0W9ShiGSzGblqUYsqN7nxDwoEnY/XTYOKpkts5wgUvN8Oq3pEBmfoDpDxC
hkJgdsi4YeBrtQ==
-----END CERTIFICATE-----
Generated at Sun Mar 15 12:07:24 2026 by rpki-client