Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: PRt7GuxP6ThPTZrdJC+TfnuddK1/IOrcz3VveFTpmrY=
Subject key identifier: F5:B9:07:05:22:87:BA:47:B6:64:28:96:8B:BF:63:79:27:0D:D5:21
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 0199FDD8C65EEF1DB0AF30D5250E4EB42318
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 06C8
Signing time: Sun 19 Oct 2025 19:01:06 +0000
Manifest this update: Sun 19 Oct 2025 19:01:06 +0000
Manifest next update: Mon 20 Oct 2025 19:01:06 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: O25qhV/Wn3bfO8Dtwcjh9vM6MK09UxP1zs06rENSTJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:d8:c6:5e:ef:1d:b0:af:30:d5:25:0e:4e:b4:23:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Oct 19 19:01:06 2025 GMT
Not After : Oct 20 19:01:06 2025 GMT
Subject: CN=f5b907052287ba47b66428968bbf6379270dd521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:63:33:a4:c4:28:28:03:1b:76:af:53:da:4b:
d9:e1:2f:a6:2b:6b:c3:2f:e6:b7:16:fc:04:aa:88:
f8:4e:64:0b:4b:7f:d5:f5:fa:e4:1f:47:8c:24:83:
19:06:0d:0d:aa:bf:cf:30:0e:7d:d1:db:0c:97:b1:
26:df:d6:5e:31:10:2b:ef:b7:7a:31:f0:fc:bf:ba:
36:c5:c5:89:17:9f:6c:37:aa:ac:50:d5:fd:1c:05:
e7:99:8c:0b:a8:53:27:cc:1b:2d:5a:f9:7e:eb:22:
8b:eb:32:de:8c:53:7b:58:d3:e6:d1:2b:ca:c3:95:
61:14:07:13:cd:b0:ac:6d:b2:10:ff:41:28:c8:86:
5a:ee:37:ab:96:ad:5b:63:1c:16:a3:30:5e:51:9e:
66:ed:d8:cd:6c:7f:e7:5b:83:68:c7:ec:77:cb:0c:
ad:e0:d7:0c:d1:6b:52:ee:54:1d:de:9c:cc:fa:17:
6f:b6:05:99:b2:82:7d:fb:5c:a9:5e:44:3d:f8:4a:
c8:a2:9a:a1:f6:c9:92:8e:d7:d2:58:f2:07:a4:73:
39:9b:0d:69:ae:fa:69:3c:d4:28:e7:92:70:e4:4d:
7f:83:85:84:cd:7a:ee:5a:a8:f2:e5:85:55:68:55:
ca:71:bd:45:14:77:f1:96:27:e5:d2:b0:7e:37:39:
b4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B9:07:05:22:87:BA:47:B6:64:28:96:8B:BF:63:79:27:0D:D5:21
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:1e:40:da:ec:90:53:43:55:3d:81:33:11:8a:c8:8a:fd:30:
7f:63:b6:6b:39:db:16:de:91:2d:d3:43:7e:36:79:b9:44:5b:
df:4e:cc:8f:e9:e0:a4:bf:2e:1c:57:1b:e0:4a:bd:92:ea:44:
39:c0:40:f6:0f:2c:c5:6d:c8:a1:62:25:6d:5a:f7:31:d4:b6:
be:51:2d:5f:df:94:14:42:cf:37:b0:9d:bd:ee:aa:c8:a6:fc:
f0:97:58:22:96:68:ff:fd:8b:f9:7d:97:25:3b:4d:06:36:12:
af:ae:80:10:84:ae:93:b9:e4:e3:d9:78:b1:01:c8:43:8b:bb:
db:21:54:d7:94:80:9d:87:85:5c:78:a0:dd:6f:5d:0c:2f:0c:
39:99:f7:24:32:64:a0:80:25:f3:ce:75:1c:9b:c1:1f:d4:4f:
d0:45:0c:74:b6:ef:1d:6e:10:4c:00:a5:3f:70:9a:7a:cd:e6:
78:64:67:74:53:aa:7a:74:b0:03:9c:eb:8c:45:07:48:d2:d6:
d4:33:a4:74:82:03:ee:3f:6b:99:90:47:af:41:b2:64:24:65:
d4:52:e9:99:f3:11:8e:fe:49:ae:38:08:3d:b6:5f:48:c5:03:
9a:c9:37:92:5f:7a:0a:48:fe:92:d5:33:a8:fa:5a:8a:4d:3c:
99:04:09:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:39:41 2025 by rpki-client