Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: fvbOhfxYUM+kc1+MQw2Huaf10gwcr+s+lyVLXFqMYB0=
Subject key identifier: 60:8F:2F:D5:05:DF:B1:B5:BC:30:82:00:78:62:93:C1:4A:61:79:78
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019D292906465C75CC2F278A2536CF8B6166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 086D
Signing time: Thu 26 Mar 2026 08:00:47 +0000
Manifest this update: Thu 26 Mar 2026 08:00:47 +0000
Manifest next update: Fri 27 Mar 2026 08:00:47 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: al4FHuNI9ndTD5uaXUAXrirl5kz/3OaOJNNBCNAV/fM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:06:46:5c:75:cc:2f:27:8a:25:36:cf:8b:61:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Mar 26 08:00:47 2026 GMT
Not After : Mar 27 08:00:47 2026 GMT
Subject: CN=608f2fd505dfb1b5bc308200786293c14a617978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:52:d6:88:76:3d:d4:dd:63:64:78:38:cf:37:
12:d7:ba:28:0d:66:7b:9e:4f:cd:c8:a7:4f:b7:4c:
fc:52:5e:79:97:a0:9a:74:b5:db:dc:2c:0f:28:0c:
47:13:0a:2d:70:81:fd:0f:b9:b1:b6:73:e5:0f:7e:
ca:50:42:1a:20:64:d9:40:8c:49:92:8a:91:a8:9e:
8a:0e:96:ae:24:47:2b:a6:87:7c:8c:bf:d0:5d:0b:
fc:9a:c5:fe:e7:a0:8d:7a:8f:13:98:52:18:bb:15:
ed:70:2d:1b:58:d6:86:3c:dc:4b:11:aa:88:13:01:
e3:52:f6:84:bc:83:9d:59:dc:2b:7f:a4:b5:86:9f:
24:e9:77:fc:57:21:9a:4f:4b:31:26:97:15:5d:cd:
8d:c7:26:0f:eb:ec:c0:08:d4:2e:06:47:93:8d:c5:
72:d8:0d:c2:17:80:6e:ef:29:fe:cc:01:91:7d:68:
25:8a:ef:cc:72:36:36:dd:e5:3f:eb:9b:56:73:49:
23:fb:66:f0:d4:16:dd:6c:dd:d9:8f:3d:c8:ce:19:
83:a1:32:1d:9b:fb:37:15:58:89:24:67:c5:52:6f:
b9:96:26:c9:b3:24:d0:01:37:6e:0c:43:1a:ee:70:
9f:0f:61:d5:d4:dc:d6:e1:d1:6c:bf:99:40:b0:82:
19:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8F:2F:D5:05:DF:B1:B5:BC:30:82:00:78:62:93:C1:4A:61:79:78
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:36:0b:ab:af:70:79:67:0c:b3:46:ee:95:44:39:f0:51:1f:
45:33:03:58:6f:5a:39:c2:28:1e:9b:6c:3d:ea:4c:1e:0c:66:
ee:f5:3f:c8:d9:e3:df:8a:b9:43:fe:de:63:7e:26:2b:9f:21:
f4:ac:87:45:88:8e:64:55:8e:2c:58:2e:c5:76:40:10:ee:09:
b4:4d:57:05:aa:49:25:e7:7a:00:36:7c:e8:7a:4a:0c:d0:29:
46:ff:e8:ff:d9:e5:67:9f:3d:cf:df:11:65:6d:18:ab:10:59:
70:ca:90:16:d3:69:a1:4b:9e:4f:fb:c9:f6:e2:06:28:58:df:
a1:ce:00:b6:2a:35:57:b7:a8:48:e0:ea:df:7b:72:56:3c:56:
a4:36:ec:31:50:df:13:fb:23:c9:c3:81:50:33:5f:84:ac:4c:
5f:8e:3c:47:aa:e0:49:ca:56:86:2e:90:ca:d2:92:37:5a:a9:
66:24:70:c1:37:f1:ba:25:0b:75:5a:d4:f9:c2:06:bd:25:35:
27:9b:c0:bf:f0:51:23:39:af:57:ac:8d:81:d3:14:57:53:d9:
8c:70:19:22:23:4b:c6:c5:90:48:5d:11:91:96:8d:fb:d6:ac:
a6:a9:a5:a4:2b:08:8b:9a:28:d0:11:f8:96:d6:52:a0:2a:42:
bd:98:51:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:40:53 2026 by rpki-client