Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: 3egQX7ebnToQ6E4vB3A5hw2+Q9bDSwRU26elR6LmeLk=
Subject key identifier: BF:4F:80:65:9A:C9:E9:98:0A:36:D3:A1:7E:D1:A3:A1:A4:DC:99:11
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019875D14537122A2C4CEABD18717781C77C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 05FD
Signing time: Mon 04 Aug 2025 16:01:45 +0000
Manifest this update: Mon 04 Aug 2025 16:01:45 +0000
Manifest next update: Tue 05 Aug 2025 16:01:45 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: 6tv0ju1jZiqzbfIvjlRwrMGGA1CMAdylBzbD5dOpQig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:75:d1:45:37:12:2a:2c:4c:ea:bd:18:71:77:81:c7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Aug 4 16:01:45 2025 GMT
Not After : Aug 5 16:01:45 2025 GMT
Subject: CN=bf4f80659ac9e9980a36d3a17ed1a3a1a4dc9911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:c7:73:aa:52:55:5b:88:dc:c0:01:70:d0:
0d:1d:7a:3b:9f:ab:4d:ad:b7:d0:b4:6c:3d:66:c4:
6d:12:cb:13:1e:d0:81:3d:bd:fb:18:c3:bc:c4:ed:
e2:53:4c:76:11:dc:6c:78:14:a9:5a:b3:df:81:d8:
3d:44:0e:d7:88:99:74:cd:13:3a:8a:2b:12:84:e6:
7a:08:6a:fb:f0:07:a0:f0:d6:b8:c6:a7:44:4f:d0:
0c:da:ed:60:e9:5b:8c:02:99:11:9f:68:e8:bd:5a:
3a:7e:6c:18:48:36:cf:8d:a7:89:c4:d3:78:fd:68:
ae:ad:48:78:d6:1c:e7:f9:0a:2a:a4:a7:92:5d:50:
a8:fa:9c:b7:de:9a:fb:89:66:2d:b2:de:b9:46:9f:
b9:8f:fc:d0:bd:76:c5:9a:54:b2:22:f3:2b:3f:f7:
64:e0:0f:e1:a8:34:48:c6:42:af:f4:37:01:4f:5e:
09:4e:a8:45:d3:79:d5:4e:1a:c3:62:63:dd:27:93:
6b:11:d7:72:ff:fe:ce:a5:99:61:3e:2e:10:cf:93:
a9:e7:a9:16:08:2e:a8:53:f6:10:61:af:0b:30:11:
a9:af:42:e4:8c:7b:36:7b:ae:b3:ee:0c:64:e9:cd:
29:bc:02:e7:a5:36:d1:2b:1d:53:e8:4d:e6:45:fd:
c8:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:4F:80:65:9A:C9:E9:98:0A:36:D3:A1:7E:D1:A3:A1:A4:DC:99:11
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:3e:a1:3b:40:b6:49:b9:29:3d:c8:a2:5f:5e:f1:d6:8c:22:
76:68:bc:95:fb:95:ff:d5:82:e2:56:3f:5e:56:a8:cf:95:7f:
a3:1e:af:4b:d0:00:ae:e4:91:bb:9d:b9:54:57:34:45:c3:b1:
56:18:00:b3:fc:16:18:d1:5b:51:3e:07:e8:eb:e8:e1:bd:aa:
35:e0:46:f3:3b:97:36:48:9b:f9:36:d4:1a:c8:db:6e:04:bd:
d3:16:5f:54:1d:77:4f:c6:07:5a:fe:de:a9:b9:75:92:f7:91:
ce:d5:70:6e:9d:59:18:cb:12:5c:4a:c4:0b:1b:53:17:e9:77:
0a:66:7d:11:c8:28:b4:c2:bc:62:cf:14:8f:7d:d2:8d:55:f8:
82:af:6c:aa:21:ac:2e:a6:18:1c:5d:c9:60:39:29:bf:70:1f:
fe:79:f8:61:fa:ba:10:f9:ab:b3:b4:04:82:28:9a:5f:fd:56:
06:2e:d1:1f:b1:db:93:6d:1b:8f:4f:44:3f:47:22:17:0f:58:
40:17:6d:60:74:91:05:a4:57:49:cf:fc:db:11:66:ab:94:eb:
0f:f5:93:fc:5d:05:91:c7:5c:af:35:c5:70:af:60:b3:7d:20:
e4:12:fe:ef:14:9b:5a:1d:1c:1f:a2:43:f2:ea:aa:ef:0f:c6:
e3:fe:c1:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 19:02:06 2025 by rpki-client