Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: v4yInhZCHCXiD8PnMalpBVxGXHz18EcyGbGnzoL7r38=
Subject key identifier: 22:A2:3A:01:41:A3:EB:AF:22:B1:93:BA:7C:F0:E6:47:01:79:D3:AF
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019A2666407FBE6B405169BEDC964AA351BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 06DD
Signing time: Mon 27 Oct 2025 16:00:26 +0000
Manifest this update: Mon 27 Oct 2025 16:00:26 +0000
Manifest next update: Tue 28 Oct 2025 16:00:26 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: No3NBX6aBeMX9x6PVva0FAFP83F7kyOFDgLAMuDGmrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 15:57:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:26:66:40:7f:be:6b:40:51:69:be:dc:96:4a:a3:51:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Oct 27 16:00:26 2025 GMT
Not After : Oct 28 16:00:26 2025 GMT
Subject: CN=22a23a0141a3ebaf22b193ba7cf0e6470179d3af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:7c:79:86:22:b9:6a:92:b3:a6:be:94:5a:
5b:e7:75:43:ce:05:7f:df:98:da:c5:75:fe:c0:0d:
b7:b9:a2:ba:71:fe:cf:3f:4d:2c:21:61:2c:96:f2:
78:86:c3:cc:82:f2:6a:70:0c:09:06:5d:a2:81:70:
c2:15:b5:4b:ac:b1:a0:f9:53:d1:37:f4:03:00:2d:
e4:09:dd:33:18:5a:ba:0c:6f:c6:c0:90:e8:5f:7f:
bb:be:c6:90:50:54:db:99:cc:38:0f:15:7c:90:50:
86:f5:bb:25:74:d5:30:fb:59:bb:5b:73:18:1e:c8:
d3:02:3a:fc:3f:0f:b4:a4:56:70:66:b0:8d:e7:63:
1f:c5:b1:e0:fa:d0:95:2e:f9:bd:ca:21:0c:27:54:
6e:58:a1:8c:27:00:2c:a6:0a:ed:21:ab:a7:fb:58:
58:0f:71:e3:4a:61:a9:3a:3d:d6:94:35:f4:ee:69:
81:cd:d2:f7:aa:b1:ee:62:ce:fb:94:ad:75:9b:69:
87:c7:f0:6b:e5:61:f2:bf:19:62:42:0e:55:19:c6:
88:16:e3:79:cc:bd:21:11:da:49:d5:e2:10:d7:ea:
47:22:3a:f0:a4:7c:96:02:64:2e:ac:06:8e:91:85:
f1:42:04:3f:9a:3a:7b:56:8d:29:c9:9a:2d:70:e5:
55:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A2:3A:01:41:A3:EB:AF:22:B1:93:BA:7C:F0:E6:47:01:79:D3:AF
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:35:00:77:2f:96:8a:91:3b:9f:d0:34:8d:43:51:44:18:73:
07:c9:5a:97:af:95:64:4c:8c:7a:e0:15:45:6b:12:84:91:2b:
6a:d8:49:16:f2:14:4f:84:98:26:97:4e:fc:de:9b:4f:d3:43:
6c:8c:95:2e:aa:b3:2d:1c:c6:48:5a:f4:6d:8b:4e:6f:97:ea:
e2:81:3e:d2:3c:83:0f:4b:2e:8b:68:d3:c0:51:46:1c:4f:bd:
9c:25:b1:ab:11:69:42:c7:96:92:f3:85:12:99:93:bb:62:bd:
3f:69:d5:64:77:9c:ff:2a:1e:7c:3c:bf:0a:ed:c8:1e:18:68:
88:56:2b:c5:fa:29:d8:a1:ff:cd:2c:97:b2:43:78:fc:46:a9:
e1:2d:10:b9:86:7b:c9:76:23:b2:4b:3d:3c:73:df:44:0a:5c:
4c:c1:be:e6:28:2e:0d:49:5b:77:75:6f:b4:44:6f:16:03:47:
f7:d2:38:67:9d:c1:4d:f3:27:9d:5d:96:12:65:c4:e8:e0:4c:
1d:a2:18:fc:c4:09:19:0d:75:85:ac:fd:e7:be:d9:68:28:14:
95:63:71:3d:08:9e:e5:3e:cf:6b:6c:ef:87:00:3c:01:77:b7:
25:62:3d:9b:77:1d:16:e8:81:e2:77:1b:7e:f4:aa:23:34:91:
91:6c:80:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 20:39:47 2025 by rpki-client