Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: 7t/msCOxr5LRznbrQovvdDy47yQ8B27Mu6BSCt6b3f4=
Subject key identifier: 8D:68:48:98:A4:32:6F:6D:9B:D3:57:87:BB:1E:52:9C:56:CF:5D:29
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 019D992B92FFE17ABB284C538CFF76FD70A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 08A7
Signing time: Fri 17 Apr 2026 02:01:02 +0000
Manifest this update: Fri 17 Apr 2026 02:01:02 +0000
Manifest next update: Sat 18 Apr 2026 02:01:02 +0000
Files and hashes: 1: O-5YbSnsrHJq6CYXfN6lS0bXHtU.roa (hash: m5fRexPWtu8YYbrVFGnW8/Uexvsppoei1HeT805HRHA=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: ILRvAb6BOUuDW8395ChKDK4rMZmqn3jXxKQyFvDORv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:92:ff:e1:7a:bb:28:4c:53:8c:ff:76:fd:70:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Apr 17 02:01:02 2026 GMT
Not After : Apr 18 02:01:02 2026 GMT
Subject: CN=8d684898a4326f6d9bd35787bb1e529c56cf5d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:f6:bb:f5:32:20:31:c3:e2:ba:13:dd:48:
40:81:53:48:1c:da:af:f6:e4:fd:d8:9e:fb:ae:09:
ed:6b:73:57:21:22:d2:94:03:49:9e:06:74:40:8e:
40:7c:bf:62:58:ec:5d:2c:01:34:1b:61:be:b7:64:
cc:d2:c0:75:07:36:1a:75:4b:2f:f0:3c:4a:49:f3:
fd:e8:5c:dc:12:a6:26:57:ac:2b:32:a4:f4:c8:d3:
01:19:71:2f:c6:d7:56:01:2c:ae:9e:32:74:45:90:
cd:07:30:ed:3c:b8:b5:cc:82:ec:ec:fd:e6:6c:23:
f2:74:c9:2c:f9:d4:8c:a4:16:2a:18:8d:a6:1b:01:
e0:96:b0:37:fd:d5:0e:1a:07:e8:3b:dc:10:33:e2:
7d:e4:35:de:75:3d:81:7c:93:69:97:3b:6a:12:e6:
e9:61:c2:22:67:f5:6f:f9:77:39:e9:85:be:6c:87:
ee:be:51:0c:d6:62:4a:bd:fe:c2:64:eb:c8:92:3d:
ff:73:5a:20:d1:e8:0d:39:38:3b:a2:c3:a9:45:39:
0f:9a:fc:e5:13:0c:54:8d:f0:8d:e3:2f:eb:d5:f6:
60:af:f3:7b:34:ce:29:4e:aa:a3:9f:8f:29:9e:e3:
4e:56:df:c5:32:0f:bf:00:bb:33:3c:76:5f:09:97:
50:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:68:48:98:A4:32:6F:6D:9B:D3:57:87:BB:1E:52:9C:56:CF:5D:29
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:6c:d4:00:25:e6:fd:ee:3c:ba:e0:02:46:4b:7b:46:fa:f5:
7b:84:78:e2:02:f7:07:4b:a6:70:89:75:b5:f3:5b:58:88:1d:
ed:20:7f:fa:a9:5e:b2:06:2b:13:64:d8:b3:a7:b8:f0:35:c9:
51:be:9c:3d:7f:f3:c9:a1:6f:bc:f3:4e:78:f1:4c:89:f5:27:
70:56:e6:13:ea:e3:a4:3c:a5:e7:b1:f0:1d:8b:04:60:4c:75:
f8:da:7e:eb:c1:91:c3:a5:8f:c6:d7:c3:c6:9e:8a:2d:8f:fa:
6f:14:d9:c1:35:19:54:bf:64:e4:72:aa:a8:21:8b:6d:c0:e5:
1b:9b:8b:6d:8b:c8:91:21:22:e0:53:87:72:91:be:41:8b:7f:
ba:3b:f8:7f:77:88:67:c6:46:15:b3:d7:30:95:c5:f6:0f:7a:
eb:79:d2:cc:fa:58:36:cc:ec:d2:7b:44:55:18:bd:00:f3:67:
8b:3f:f0:15:04:b8:98:1e:17:3a:b9:22:95:f8:02:f3:bf:b8:
0a:a3:82:96:e5:ff:3b:de:ce:03:22:d7:f2:b1:41:af:ac:07:
25:62:6e:0b:e5:ef:aa:18:50:b5:dc:2c:12:04:78:e7:9a:1b:
22:f0:fd:11:37:74:61:d7:9b:29:9d:95:50:06:16:40:f8:fa:
0c:70:08:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:47:13 2026 by rpki-client