Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: VRuC5IJtwlDfBBlkZvRC52K2fQFQQxNbTq7VFtnY5Co=
Subject key identifier: 85:14:58:C3:7F:3D:D4:FC:59:C4:C3:A9:FB:35:6E:15:BC:04:73:9E
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019E2A02BF4CAABD7FEC5C584FA06C33F3BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 08F2
Signing time: Fri 15 May 2026 05:01:23 +0000
Manifest this update: Fri 15 May 2026 05:01:23 +0000
Manifest next update: Sat 16 May 2026 05:01:23 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: dEpw/E3wbawPUzT2mSIKf24zddDt9mPRr/RJcxRR5vs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 05:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:bf:4c:aa:bd:7f:ec:5c:58:4f:a0:6c:33:f3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: May 15 05:01:23 2026 GMT
Not After : May 16 05:01:23 2026 GMT
Subject: CN=851458c37f3dd4fc59c4c3a9fb356e15bc04739e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:fc:5a:06:e8:2a:4d:c6:cf:43:98:d8:62:
e0:34:ad:e9:c7:12:e2:d0:c9:eb:bb:62:03:b0:39:
2e:03:f5:9f:45:1e:00:a3:7d:c2:09:57:3a:a3:81:
db:bd:bc:ff:6d:5b:89:86:aa:5e:e4:f9:0d:17:9b:
cf:c4:ea:dc:8a:8e:e5:84:73:08:78:d7:4c:25:aa:
a7:af:c9:1c:c7:7a:60:7f:d5:cc:25:1f:16:a5:63:
70:56:17:8e:9c:13:c7:a5:5a:4f:07:0a:f4:54:09:
c2:ea:7d:2c:ea:af:3c:26:ef:29:ee:34:cc:10:9f:
ee:4e:fc:6d:98:ce:32:47:1d:c2:7b:2a:68:3b:f0:
47:76:9d:35:b0:a0:33:86:d0:bd:50:54:ea:e6:95:
b9:ee:8c:a4:7f:11:3a:1c:bc:6c:68:87:51:eb:d3:
8a:8a:2e:e2:5a:b4:6a:4d:f5:39:f0:25:df:e0:b8:
6f:e2:5e:58:9c:ae:09:1b:ed:e4:fd:6e:e6:da:73:
fa:0c:a8:91:85:65:10:f5:07:ad:70:d9:56:b2:08:
23:5e:b0:cb:8a:e1:70:c4:e6:eb:17:e3:0b:86:53:
88:dd:4a:17:29:89:40:03:5e:94:6a:bc:2e:d5:2b:
13:34:fd:c8:2a:e9:d5:ff:c7:55:9a:57:c3:8c:8b:
c8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:14:58:C3:7F:3D:D4:FC:59:C4:C3:A9:FB:35:6E:15:BC:04:73:9E
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:7f:4b:48:d8:83:aa:4e:c8:87:e8:7a:99:f3:4b:e5:a1:b4:
d8:6d:92:ec:f3:19:5a:be:7e:29:8f:ad:52:8f:5b:65:10:d0:
e9:b3:7c:d1:ed:37:7b:af:b5:a7:a5:b6:3c:ea:76:65:64:bd:
9e:b1:f5:42:7e:6c:a7:23:df:b4:59:88:cd:8f:b3:df:62:45:
ff:e7:77:db:15:25:ea:6a:73:a4:dd:3c:c2:f4:1b:47:35:ba:
6b:18:a1:66:77:d2:b5:1d:f6:40:aa:4b:fa:1f:4b:5e:dc:c6:
45:ea:9b:b2:6b:51:b6:51:0b:b4:dc:a8:cd:d5:36:53:43:5c:
36:68:cd:30:fe:b2:7e:f2:2b:07:a8:eb:73:66:45:22:7d:3b:
23:50:6a:27:ac:d9:4b:c7:5c:6c:eb:f5:9a:bf:e3:94:f6:67:
60:cc:df:b4:c7:27:9e:91:b6:b8:8e:75:5c:f1:eb:ad:c7:5d:
73:a0:43:75:8e:aa:8d:7d:c4:60:aa:ea:da:f3:f6:04:27:6e:
c9:3b:27:51:88:d5:9f:d7:69:9e:54:4e:9c:0b:88:86:9c:06:
e8:16:ec:d7:9c:35:fd:0f:38:eb:ba:0c:b8:b4:da:0c:20:80:
31:f0:57:e5:7a:ad:73:5d:e9:de:df:32:9f:43:8a:6a:88:53:
af:f6:64:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 14:24:56 2026 by rpki-client