Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: +kC9S6DeWKYdSOkrP0EGMvn6LkJ7Go99UY6z9HMiSt8=
Subject key identifier: 61:3E:1C:BB:D0:2F:93:0F:5C:F2:CB:4A:16:DD:E1:C4:C9:BF:6D:48
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019ED3F4245E3EEEBC4FEFE0A99177BB3F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 094A
Signing time: Wed 17 Jun 2026 05:00:53 +0000
Manifest this update: Wed 17 Jun 2026 05:00:53 +0000
Manifest next update: Thu 18 Jun 2026 05:00:53 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: Xu8raBu/G/YRslGle/CDi8Nq9lwayb7Y5q4nGS2vYu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:f4:24:5e:3e:ee:bc:4f:ef:e0:a9:91:77:bb:3f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Jun 17 05:00:53 2026 GMT
Not After : Jun 18 05:00:53 2026 GMT
Subject: CN=613e1cbbd02f930f5cf2cb4a16dde1c4c9bf6d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:67:e6:bf:36:67:d5:6e:31:2c:2f:a4:84:
0e:69:a6:76:48:8d:94:26:29:73:99:7b:8a:0d:6e:
cd:ba:2e:32:14:75:bd:e3:41:07:88:0c:95:68:c7:
67:ef:ac:ca:52:ec:2b:d9:b9:8d:37:40:1f:d3:2d:
db:86:d8:77:87:87:a3:22:f6:bc:f8:71:99:73:89:
e2:78:f2:9d:f3:be:50:ae:32:02:3b:87:e7:e0:d1:
44:0a:b0:3a:71:12:10:80:ce:ee:43:d3:10:88:8a:
25:8f:0c:5b:d2:3c:0b:1a:54:c5:5d:a6:c3:8e:93:
76:7d:5e:73:1a:b6:95:81:a6:22:0a:d8:de:12:c9:
82:de:9a:b9:8e:6f:04:69:70:ed:10:1b:c4:06:4e:
95:04:f0:8c:ba:7d:3c:f9:3a:f4:25:65:8a:25:07:
88:9a:c9:8b:d9:80:94:7a:f5:75:60:3b:f7:51:2c:
a6:33:1d:26:37:61:83:eb:6c:d2:57:89:3e:ea:18:
1a:e1:d9:67:75:ee:84:d8:bf:11:3d:ad:8e:c6:f3:
39:00:a8:84:bb:01:31:8f:31:d6:c6:62:02:bc:4f:
cb:7f:e1:1e:98:5b:91:5d:44:fb:59:ab:e6:2c:48:
36:e6:80:3e:70:f0:42:93:71:64:03:e6:bc:40:78:
09:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:3E:1C:BB:D0:2F:93:0F:5C:F2:CB:4A:16:DD:E1:C4:C9:BF:6D:48
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:59:ed:8b:09:85:c2:44:ea:20:46:56:8b:fe:a0:e1:01:c4:
d8:27:07:a2:98:84:b7:80:f2:90:58:60:b4:9d:8c:4d:ff:a0:
5b:0e:47:79:cc:b0:25:7c:47:4e:65:4d:9f:84:1d:c0:8e:d8:
a0:b9:e2:e0:19:50:19:2c:9d:81:42:d3:fd:52:6b:36:57:01:
15:e5:ee:0b:01:84:51:75:f6:3d:80:ca:4e:06:e7:31:52:8a:
e7:af:18:46:b9:c6:e7:f6:10:5d:a7:a3:01:de:5a:4a:55:67:
81:d1:0e:a8:01:de:88:5e:1d:cf:b7:5d:7c:ad:65:12:7f:be:
09:c4:8b:fa:29:79:d0:91:f1:7e:39:3e:6b:d7:7f:73:83:98:
06:5e:c0:1c:42:25:97:e2:38:cb:e9:ec:cc:ef:54:9f:ec:29:
9d:88:d3:99:23:78:31:b6:8a:b9:4c:85:65:f9:7c:48:09:3b:
fe:e9:1c:79:52:14:6c:c8:53:c2:61:d0:5f:6c:22:f0:a9:15:
73:eb:0c:65:f6:1b:e4:5d:6e:27:70:65:1d:c4:4f:50:cc:81:
45:23:77:ba:12:94:7f:3e:49:59:cf:94:9b:dd:7d:ab:c4:7d:
9b:61:6a:07:ff:3c:2a:b8:07:77:c6:f1:3c:30:55:a3:ec:4f:
4d:2c:50:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 11:40:22 2026 by rpki-client