Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: oYoV3CegPO5jFc4WHy8MTO52Dgo+1ShPiJq2W8DtnAU=
Subject key identifier: A2:69:C4:23:9E:50:E8:A7:61:8A:3A:67:D7:35:9C:C2:03:C2:1C:D9
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 0197485509EB7232D5C1B66FE08D5D2C3B62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 0561
Signing time: Sat 07 Jun 2025 03:00:22 +0000
Manifest this update: Sat 07 Jun 2025 03:00:22 +0000
Manifest next update: Sun 08 Jun 2025 03:00:22 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: KE5Jgt9O3pfAosV+fjCYp7zwaeLd+UtdRYTG8tN/wGM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:09:eb:72:32:d5:c1:b6:6f:e0:8d:5d:2c:3b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Jun 7 03:00:22 2025 GMT
Not After : Jun 8 03:00:22 2025 GMT
Subject: CN=a269c4239e50e8a7618a3a67d7359cc203c21cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:34:1c:7b:ed:86:b9:35:cd:a1:2c:9f:b1:94:
2b:0f:ef:69:f2:2a:9e:3b:20:94:48:21:50:81:49:
50:45:34:bc:9f:90:9a:bb:de:f8:21:95:29:17:27:
00:e7:a5:c4:ba:fa:ab:9d:bd:14:4a:b0:fa:59:3c:
9f:5c:82:e8:d3:51:7b:0d:db:c8:31:65:33:c9:d0:
38:4a:e4:f9:1a:ec:96:fb:fe:a7:20:7c:c9:01:4d:
ae:a1:46:d8:6a:1c:91:d6:a6:7b:a5:99:94:18:2b:
50:df:54:9c:f2:e2:d4:60:19:37:60:9a:0b:d5:fe:
4c:76:29:b8:61:f2:54:63:fa:c0:13:ec:2b:ca:5a:
f0:c4:50:84:8e:21:a4:e1:a0:9f:02:0b:f7:b0:24:
f8:90:7b:2e:62:c7:ce:d9:24:97:7e:36:a0:4a:6d:
4e:98:c4:51:92:48:b9:a9:a3:93:c7:2e:a0:81:b7:
d5:03:d6:81:08:54:65:7b:d6:5a:e3:e6:6b:d4:32:
25:93:16:52:55:66:81:1b:16:a3:57:65:2f:48:93:
63:4f:18:52:49:48:42:55:d6:7e:2d:c4:78:fb:73:
d8:96:9f:f2:82:f3:11:b5:9b:1d:67:75:8a:3b:ac:
a2:3c:b3:67:33:45:91:7a:e6:0e:d7:38:d8:cc:66:
51:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:69:C4:23:9E:50:E8:A7:61:8A:3A:67:D7:35:9C:C2:03:C2:1C:D9
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:11:b9:86:16:7e:1f:1d:e6:34:d4:23:17:8f:8a:ec:26:b9:
f6:16:2e:7a:1c:c7:31:5e:fa:23:c3:c3:f7:04:b1:98:fd:d4:
6a:10:19:1a:84:3c:69:8c:ee:da:2a:f4:2b:28:7b:59:ca:e4:
58:76:de:1a:eb:7a:15:c3:15:f7:af:eb:36:89:f3:0b:5a:3a:
3d:75:df:e7:3f:50:45:1f:81:86:94:df:b6:55:9d:00:9c:58:
f5:aa:e8:cd:fb:e7:ae:72:6a:4e:2f:5f:7e:a1:b6:26:37:2d:
4e:6e:65:63:29:b4:01:93:bd:56:d7:56:a1:60:31:81:77:9e:
44:1f:1f:74:c9:ce:1d:d6:f7:42:4d:56:5f:a3:7b:d5:81:31:
38:e2:3c:59:e0:d7:c8:4c:94:9f:8c:fe:8b:f8:a8:6c:f2:82:
50:37:c4:c7:5f:e1:75:1a:18:db:8d:da:4d:95:07:46:9e:2c:
aa:e7:d9:58:0d:77:c8:bb:1f:72:79:0e:89:6b:c2:2c:bd:82:
b6:9d:a0:31:0f:e1:be:17:c4:c1:e2:35:7e:9f:b8:19:61:ee:
ff:26:91:77:e5:22:38:e8:e5:81:d6:e2:66:ad:84:15:be:fd:
24:1f:89:0d:c7:4d:29:5e:8f:70:b2:d2:d3:ba:d3:51:4e:69:
19:67:07:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:12:25 2025 by rpki-client