Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: 1jGDO0UfwHipB41nkHn5rmQooxULKzL0xw3mXIppeEw=
Subject key identifier: F1:60:7B:D5:56:93:B0:21:AF:4D:AF:EE:B8:5B:4A:83:CE:2E:DA:F4
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 01993501C01CA5C5939517B2066821352734
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 0660
Signing time: Wed 10 Sep 2025 19:02:11 +0000
Manifest this update: Wed 10 Sep 2025 19:02:11 +0000
Manifest next update: Thu 11 Sep 2025 19:02:11 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: ldTSdM2kIHKIRletDbOku92teIRzqjeS8A3MNqGpbdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Sep 2025 19:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:01:c0:1c:a5:c5:93:95:17:b2:06:68:21:35:27:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Sep 10 19:02:11 2025 GMT
Not After : Sep 11 19:02:11 2025 GMT
Subject: CN=f1607bd55693b021af4dafeeb85b4a83ce2edaf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:02:be:11:8e:69:57:e6:79:3a:25:91:84:3f:
97:42:30:a5:51:1a:e9:d7:e1:b8:d1:47:d3:e8:00:
33:62:00:fe:10:37:e3:40:32:bb:4a:a6:fd:a1:11:
d1:c1:61:aa:55:93:60:54:c5:89:80:9e:7d:8a:8f:
77:64:89:ea:d8:e9:b4:e0:e7:e9:34:17:62:76:79:
f6:3e:5a:9b:68:fb:11:0b:36:50:9f:69:f8:c2:1d:
fa:90:58:46:31:11:20:0f:3c:5b:46:4a:47:5b:89:
84:cb:fb:aa:0b:2f:5b:31:91:6c:78:d9:b7:dc:c2:
8c:01:53:32:3d:02:b0:cb:31:f2:b3:ae:85:40:45:
eb:f1:eb:47:44:e6:ba:a2:e8:14:b7:dd:b8:c9:46:
81:a2:e6:cb:3d:8a:44:2d:55:aa:65:9c:4c:0c:a8:
2d:62:17:c0:6f:0a:85:f8:94:f0:29:dc:ec:37:35:
b4:2c:83:c2:9c:74:21:c3:31:81:49:d8:5a:87:f8:
77:f5:f6:b8:18:4c:b1:42:f2:e4:72:15:78:bb:b9:
c4:8f:f7:d9:1c:a2:eb:ef:64:90:78:1e:37:b8:77:
0f:e6:17:80:16:d7:03:f8:78:52:c4:fa:48:23:81:
56:05:90:3a:77:b6:ed:50:3d:dc:35:ab:65:8b:40:
81:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:60:7B:D5:56:93:B0:21:AF:4D:AF:EE:B8:5B:4A:83:CE:2E:DA:F4
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:49:90:e8:61:1e:c5:91:47:0d:9e:60:01:bd:8d:7c:6e:6e:
99:3e:41:dd:2f:c0:ae:02:fd:c6:2f:af:3f:3d:45:77:4a:15:
ad:9d:04:3a:22:14:6d:06:09:32:5d:91:bc:de:c1:6c:e5:a5:
7c:b1:6f:5f:ef:e9:9e:e9:3c:36:bb:b0:6a:fd:7f:e5:ea:db:
cd:b8:e3:cb:75:73:76:6d:96:96:27:ff:ba:f5:02:24:5f:11:
3d:2c:88:a1:69:cc:de:d8:a6:8a:b0:db:9a:af:af:6c:8a:1c:
38:0c:6a:57:f8:77:d2:d6:b2:fc:f9:f6:3b:be:38:ae:85:0c:
2b:87:fa:f5:66:b7:fb:e0:7d:40:a8:cf:8b:4b:70:5d:93:64:
9d:2e:eb:a8:4b:af:4d:41:a7:8e:8e:e8:f1:f3:32:12:56:a5:
7b:d6:52:f7:2d:3a:8a:b4:8d:ef:c5:94:82:78:76:60:90:e6:
26:ad:9b:0d:17:92:be:72:e9:3a:21:42:c6:88:56:57:62:16:
52:11:3e:4f:c1:34:55:bf:df:03:77:b1:de:16:91:af:55:e5:
3a:c4:f5:10:2a:6a:60:c0:aa:3e:10:20:0d:1e:5f:b9:25:78:
6c:07:80:d3:9b:c7:fa:fc:b4:41:08:9b:b3:ee:9c:4a:50:40:
c5:6e:d4:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZk1AcAcpcWTlReyBmghNSc0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw
MzFkZjkwHhcNMjUwOTEwMTkwMjExWhcNMjUwOTExMTkwMjExWjAzMTEwLwYDVQQD
EyhmMTYwN2JkNTU2OTNiMDIxYWY0ZGFmZWViODViNGE4M2NlMmVkYWY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7AK+EY5pV+Z5OiWRhD+XQjClURrp
1+G40UfT6AAzYgD+EDfjQDK7Sqb9oRHRwWGqVZNgVMWJgJ59io93ZInq2Om04Ofp
NBdidnn2PlqbaPsRCzZQn2n4wh36kFhGMREgDzxbRkpHW4mEy/uqCy9bMZFseNm3
3MKMAVMyPQKwyzHys66FQEXr8etHROa6ougUt924yUaBoubLPYpELVWqZZxMDKgt
YhfAbwqF+JTwKdzsNzW0LIPCnHQhwzGBSdhah/h39fa4GEyxQvLkchV4u7nEj/fZ
HKLr72SQeB43uHcP5heAFtcD+HhSxPpII4FWBZA6d7btUD3cNatli0CBvQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPFge9VWk7Ahr02v7rhbSoPOLtr0MB8GA1UdIwQY
MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt
MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm
LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARkmQ6GEe
xZFHDZ5gAb2NfG5umT5B3S/ArgL9xi+vPz1Fd0oVrZ0EOiIUbQYJMl2RvN7BbOWl
fLFvX+/pnuk8Nruwav1/5erbzbjjy3Vzdm2Wlif/uvUCJF8RPSyIoWnM3timirDb
mq+vbIocOAxqV/h30tay/Pn2O744roUMK4f69Wa3++B9QKjPi0twXZNknS7rqEuv
TUGnjo7o8fMyElale9ZS9y06irSN78WUgnh2YJDmJq2bDReSvnLpOiFCxohWV2IW
UhE+T8E0Vb/fA3ex3haRr1XlOsT1ECpqYMCqPhAgDR5fuSV4bAeA05vH+vy0QQib
s+6cSlBAxW7UXg==
-----END CERTIFICATE-----
Generated at Thu Sep 11 00:15:30 2025 by rpki-client