Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: aidqa+kiYgKDpEkpP/sgiM35UQHz0IRJWfa1gdD7R5Y=
Subject key identifier: 69:0F:DA:58:72:D5:E8:11:58:0E:1C:19:B7:28:E9:EF:0B:CF:E9:6D
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 0198D47434E960D14197893A708334A36FEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 062E
Signing time: Sat 23 Aug 2025 01:04:02 +0000
Manifest this update: Sat 23 Aug 2025 01:04:02 +0000
Manifest next update: Sun 24 Aug 2025 01:04:02 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: Ux62vNfWrcwd7cxWcMVjsIaZet0/bQUSdIZY+0Hx1Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 01:04:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:34:e9:60:d1:41:97:89:3a:70:83:34:a3:6f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Aug 23 01:04:02 2025 GMT
Not After : Aug 24 01:04:02 2025 GMT
Subject: CN=690fda5872d5e811580e1c19b728e9ef0bcfe96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8f:ca:b1:fc:7c:7b:eb:be:2e:17:26:38:6c:
5f:a9:a9:e6:39:bd:1d:e9:22:3f:fc:29:88:eb:35:
06:73:12:51:d7:b5:bc:51:ce:ed:ab:2a:64:b8:2a:
ea:1b:0c:a3:1c:b5:5c:70:d4:e7:04:5b:46:bf:f4:
54:74:ad:19:d2:9d:18:97:b1:5d:a5:8f:7c:e0:8c:
cd:e0:e8:12:93:39:19:f3:fd:de:99:f1:22:d4:45:
59:5b:96:52:27:be:81:0c:51:5b:15:d8:81:d5:63:
af:c6:da:f4:01:1d:28:40:59:17:37:52:0d:60:85:
4d:e4:66:66:33:40:52:0a:3a:e5:a3:04:01:d3:a9:
bf:7a:70:79:cd:0f:b8:9c:17:46:5f:a4:01:27:1d:
6f:d2:f4:b7:63:ca:5f:f5:61:ee:83:56:e6:18:31:
bc:15:ad:96:2c:54:47:38:c9:fc:c9:09:a7:c7:d2:
bd:8c:89:9e:d8:c1:2b:2c:39:3c:7a:4c:c4:eb:ae:
7e:00:af:2f:f2:11:16:d9:35:ae:3e:a5:d9:6e:49:
b9:ff:dc:f3:30:55:f2:a6:49:44:b9:67:26:d9:31:
ba:66:50:3c:89:a1:58:4d:2d:d1:03:90:2b:1c:4d:
7a:41:84:dd:86:08:a4:95:da:4e:56:07:c8:8c:76:
52:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0F:DA:58:72:D5:E8:11:58:0E:1C:19:B7:28:E9:EF:0B:CF:E9:6D
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:78:a0:bd:c1:fe:b3:eb:6f:21:28:68:b0:5d:56:b5:31:df:
9e:35:60:42:91:a0:e8:a3:cf:6c:a5:0d:2a:11:05:9f:cf:37:
52:d5:5f:91:fd:15:ee:be:b2:cf:b7:18:e5:3e:5d:e8:f5:8f:
a1:d0:f7:89:87:70:cd:34:f2:3d:28:49:ae:5d:72:6f:bc:1f:
dc:d6:fb:ed:15:6d:26:7f:28:f9:1e:c1:c6:f6:cb:f1:50:91:
95:f8:39:00:d1:53:32:41:ce:6b:3f:96:21:33:b9:85:ae:93:
65:db:a9:1d:09:3c:6e:58:d7:b5:2d:9a:4e:e1:9b:ea:65:79:
7c:e6:dd:5b:27:6d:71:9b:ce:2c:ca:52:02:81:06:cd:1e:60:
45:be:95:73:d1:72:44:c0:07:4c:e9:bd:45:31:64:5d:3d:85:
53:63:15:7a:b5:7b:6d:3d:4f:d5:57:cf:d4:23:92:d6:1d:87:
f1:da:0b:28:cb:2c:a6:d1:55:7c:6a:c9:1b:bf:5f:b6:d2:27:
15:17:75:a1:60:ba:6a:52:a9:84:b6:5a:1d:39:c7:cb:0c:fb:
7b:cb:74:f5:7b:59:e6:89:68:7e:c3:7b:b3:99:bf:d0:62:ba:
56:15:2b:7b:94:67:9d:cc:3e:ec:48:50:cd:d9:89:e6:93:b0:
8d:dd:0e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:51:44 2025 by rpki-client