Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: CVRTyO4EQvyj+sjhiTu3LfHtuuRTK89aBvF4t2BfWAk=
Subject key identifier: 9B:D4:D1:D3:7C:40:E3:7B:FA:43:58:A6:58:1E:78:36:27:C5:BA:FA
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019E1E6C566F2CB873D1C310EED82E2B67AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 08EC
Signing time: Tue 12 May 2026 23:01:16 +0000
Manifest this update: Tue 12 May 2026 23:01:16 +0000
Manifest next update: Wed 13 May 2026 23:01:16 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: WOhMEbcQSNSXXWzpa0Nvsr2Q/JSoPSTqIP9587nuryg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:56:6f:2c:b8:73:d1:c3:10:ee:d8:2e:2b:67:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: May 12 23:01:16 2026 GMT
Not After : May 13 23:01:16 2026 GMT
Subject: CN=9bd4d1d37c40e37bfa4358a6581e783627c5bafa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d2:37:17:15:92:97:ec:9c:83:71:5e:6d:4e:
38:46:a6:0e:52:84:6e:36:67:3b:0f:eb:94:41:d5:
8a:93:3c:6c:05:3e:d0:01:77:45:f9:b8:a9:0e:be:
73:a5:19:4e:71:d3:d0:4b:40:a8:5f:bf:39:51:48:
0a:66:84:e4:62:fa:df:87:72:44:89:ca:a4:06:3a:
e3:25:df:d9:41:ac:85:42:88:ad:e5:aa:ee:17:28:
f5:78:a1:cc:84:22:ad:65:1f:79:fb:df:48:5c:05:
4b:38:45:dc:bb:4f:bb:f3:23:3f:75:b8:38:6a:42:
62:0d:c6:79:7e:43:d2:25:13:c2:a5:7b:96:91:12:
64:3b:67:44:32:c7:36:0e:31:cc:9e:7a:54:f0:b1:
65:c6:56:5b:f1:e1:eb:b2:91:1f:00:33:83:d1:ab:
73:68:59:56:22:c1:a4:38:5b:4c:43:27:9c:f6:3a:
2b:6f:72:2e:40:b5:f0:cd:73:d5:89:e5:c3:da:f0:
c6:fd:09:25:96:50:ac:d9:b7:c3:c3:79:43:79:f8:
5a:1c:f4:77:97:d5:8b:3f:47:c0:d2:d8:56:00:d8:
96:82:61:48:0a:85:54:35:88:20:07:e3:26:b7:7b:
23:35:4f:14:fb:c4:cf:8d:c0:e6:b5:03:30:ba:d3:
52:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:D4:D1:D3:7C:40:E3:7B:FA:43:58:A6:58:1E:78:36:27:C5:BA:FA
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:2a:67:6c:7b:20:19:53:dd:48:f2:5a:d8:73:da:70:69:ad:
30:e2:06:cf:8f:b1:32:99:b8:82:cf:18:76:2d:5a:09:e3:e1:
09:3e:17:59:9d:58:36:3f:5e:31:25:7d:f8:be:2e:ad:3c:db:
59:f2:53:cf:0b:f1:3a:d4:0e:72:2f:9c:8d:c8:8b:47:4b:83:
e9:07:d1:24:f7:01:43:d6:a8:56:34:1c:d7:31:6a:ac:bb:62:
55:a1:8c:ee:c2:c6:20:96:f5:9b:d3:01:fb:9d:c3:cf:a4:d7:
72:20:17:6c:7e:8f:78:66:62:11:cc:c2:cb:14:8f:d6:96:c1:
7d:8a:1b:e5:71:b4:68:49:34:e5:55:35:ff:6e:5f:f5:b5:0b:
e4:f5:4e:ab:ca:54:2d:eb:1f:d6:5c:72:ff:70:03:38:d1:92:
80:78:c4:85:45:d0:2c:a1:04:57:10:10:01:fc:84:4a:c0:f2:
ef:26:14:01:2a:3d:56:ef:f1:76:f0:cb:0f:0b:42:7f:9a:a5:
2b:6c:21:14:43:ea:a2:5c:6d:97:7b:60:a9:44:5e:7c:82:c2:
db:4f:80:20:35:f7:1b:e0:2a:2c:d6:30:ab:d1:5f:d3:03:d7:
ff:f0:86:bc:5c:de:f3:e8:43:80:68:61:ef:7f:f5:0a:3e:b4:
da:20:45:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:44:40 2026 by rpki-client