Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: YFGsz5y9ie4uFWYjCPypELLl3yaQz8ZDOu+wKz86aVo=
Subject key identifier: 8E:48:71:AD:7C:25:81:70:BE:80:A9:6A:A4:ED:9F:58:2D:7B:BA:88
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019F13AEF16E79E5DC1C6C545E4484F926BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 096B
Signing time: Mon 29 Jun 2026 14:00:59 +0000
Manifest this update: Mon 29 Jun 2026 14:00:59 +0000
Manifest next update: Tue 30 Jun 2026 14:00:59 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: l2AmK9l2XQv4JXTqXJ1b2bgOBIk3+0iF2zON4tNpfzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:ae:f1:6e:79:e5:dc:1c:6c:54:5e:44:84:f9:26:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Jun 29 14:00:59 2026 GMT
Not After : Jun 30 14:00:59 2026 GMT
Subject: CN=8e4871ad7c258170be80a96aa4ed9f582d7bba88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6d:cd:ff:9c:c4:be:8e:eb:83:7b:79:c2:4e:
09:9f:b2:49:cd:9a:b7:9f:c9:6b:54:d1:f4:8b:f6:
ae:3a:3f:eb:37:b4:f9:e1:5e:e1:5e:d7:f2:83:92:
f3:1e:a6:ee:78:5e:f0:c6:52:06:6d:32:c0:f4:ec:
9d:e0:0d:4e:4c:30:90:5d:74:c1:b2:59:38:ba:3e:
f5:79:91:7b:77:f7:b5:94:0b:bd:87:63:d2:c2:6e:
3e:54:52:4a:0e:bc:f4:62:6c:67:d9:3b:f2:89:52:
75:a5:96:e5:a8:0b:3d:8f:3b:2f:08:fb:4e:e5:9b:
d2:ae:70:02:67:3c:d7:9d:19:5c:ba:ba:bd:8b:34:
42:95:5e:6a:88:aa:09:9f:6b:9c:88:c2:6e:62:b7:
09:05:63:d5:ac:54:47:7a:31:a9:37:01:aa:8d:92:
35:f3:c5:b7:4f:4d:77:62:d4:1a:b4:c4:7e:12:c2:
55:3c:a8:fb:59:60:40:6b:c0:03:98:ec:0f:ea:19:
20:04:13:93:b1:1c:87:24:05:43:f1:ee:15:a7:85:
99:82:f1:80:dc:3b:f4:0b:27:0f:da:15:3a:fa:dd:
db:6b:a5:a8:9e:50:e9:f9:3d:55:9b:f5:69:c7:bc:
1b:04:c7:36:b6:0d:ef:61:7e:08:71:5b:05:b0:22:
df:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:48:71:AD:7C:25:81:70:BE:80:A9:6A:A4:ED:9F:58:2D:7B:BA:88
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:9e:eb:ae:93:ce:1c:4b:77:ee:fd:6c:f8:f7:52:ad:eb:c8:
b5:3a:29:b1:be:49:63:09:cd:2b:df:c2:14:31:3f:0e:05:5a:
e9:2a:eb:e9:97:7d:db:6f:b1:4e:c8:2a:e9:1c:29:ce:df:ea:
26:b7:8c:ac:44:46:2b:69:ee:3c:e6:0b:81:49:97:eb:b6:64:
8f:72:38:ba:42:11:fb:97:89:95:38:9f:3f:dd:2e:2d:93:3d:
95:62:e2:8a:9d:8e:d9:c0:e4:07:37:b0:c4:9c:ef:89:26:fb:
96:c4:a8:8d:aa:32:27:a1:76:7c:0a:cd:cd:d1:da:5f:67:09:
0e:5b:c9:c2:b9:10:77:19:79:8e:dc:bb:5f:a2:2f:ce:91:7c:
f5:8d:ee:d0:64:27:f1:50:9a:66:6a:70:61:c6:ab:c6:05:92:
38:ef:32:05:78:c3:e4:fe:a6:b0:bf:9b:91:d5:08:73:09:25:
e8:3f:d4:6f:1e:5f:dd:e9:a0:7d:e4:8e:d1:cf:49:49:f0:63:
79:6a:bc:92:20:9c:ad:a8:66:e5:e8:b3:ae:27:31:13:75:41:
8e:fc:5c:22:ee:9e:f8:a1:cc:b9:8e:01:7c:04:52:1d:56:4b:
67:f1:1b:a2:69:1b:20:98:1b:4d:bd:bf:19:3d:cd:74:4a:90:
bb:90:26:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 20:28:58 2026 by rpki-client