Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
File: kMABN-5t-utOpII7wXPDvAADHfk.mft (raw, json)
Hash identifier: BpBsK+wC6a0hn2dWlbP913q/OMI4hRYnu69Y1qz5DTc=
Subject key identifier: E2:68:43:78:78:BD:D5:76:AF:6A:A9:28:49:58:12:52:79:7D:DB:BB
Authority key identifier: 90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
Certificate issuer: /CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Certificate serial: 01976EF51C35A552FEF0608AABDCBF61F547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
Manifest number: 0575
Signing time: Sat 14 Jun 2025 15:00:46 +0000
Manifest this update: Sat 14 Jun 2025 15:00:46 +0000
Manifest next update: Sun 15 Jun 2025 15:00:46 +0000
Files and hashes: 1: FCW2bGoLdcM6i-Jx_GrHtMzXAlk.roa (hash: WJgWrgAT99wsdStIPz/Fl698liisGeyhumyE7tw/O7c=)
2: kMABN-5t-utOpII7wXPDvAADHfk.crl (hash: ByhuQt4wHd/ihKbB3FE6SQiZRXFl5YtvO4THuA1sPlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 12:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6e:f5:1c:35:a5:52:fe:f0:60:8a:ab:dc:bf:61:f5:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c00137ee6dfaeb4ea4823bc173c3bc00031df9
Validity
Not Before: Jun 14 15:00:46 2025 GMT
Not After : Jun 15 15:00:46 2025 GMT
Subject: CN=e268437878bdd576af6aa92849581252797ddbbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:aa:2f:02:1f:00:ab:3d:60:47:b4:de:82:0a:
45:c6:7a:d7:a2:61:46:52:1d:ef:04:8c:24:10:e9:
ee:86:55:c0:f6:5d:44:7c:43:7a:82:5c:a3:a3:79:
5d:90:6f:9e:1d:ba:c3:87:fd:9e:2c:e7:f3:eb:e1:
92:16:87:d4:5c:b5:43:8f:2a:cf:ba:c5:54:63:80:
e8:93:cf:b1:2c:5a:07:96:05:c2:8a:07:55:21:eb:
8f:3b:6e:01:f9:b0:a3:e4:51:46:69:b1:1f:d7:35:
69:01:9b:9e:71:3d:6f:ac:a6:99:3a:e9:af:df:7e:
b3:3b:c5:61:ce:f1:1a:8f:93:d3:67:91:49:a1:56:
0f:3f:e3:77:0a:f9:db:48:84:82:75:30:59:c9:82:
c2:8c:82:f8:26:1a:13:36:0c:1f:09:e2:9f:82:21:
f1:91:d4:4b:5f:25:18:c5:6c:88:b4:ee:67:b2:7a:
cb:15:61:71:99:1d:04:3d:cc:7f:3e:2c:d9:b7:5d:
6e:63:6b:e6:50:98:40:18:bb:93:b8:f2:52:04:df:
d2:25:84:a9:08:17:99:23:3d:be:28:7b:0b:33:40:
eb:ba:cb:a7:a0:3b:4b:5b:29:f8:d4:1d:ec:3c:f6:
bd:4c:5e:6a:cf:0a:6f:15:d3:da:49:56:08:8b:0c:
e3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:68:43:78:78:BD:D5:76:AF:6A:A9:28:49:58:12:52:79:7D:DB:BB
X509v3 Authority Key Identifier:
keyid:90:C0:01:37:EE:6D:FA:EB:4E:A4:82:3B:C1:73:C3:BC:00:03:1D:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMABN-5t-utOpII7wXPDvAADHfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be370e-6729-4df7-aabe-0a525b69db8f/1/kMABN-5t-utOpII7wXPDvAADHfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:9c:b9:bb:ff:8c:d8:69:e7:4b:79:d4:3d:18:c8:44:68:ea:
b5:fe:52:31:56:23:29:b6:a5:66:bc:4f:c0:20:23:6f:16:d6:
32:67:94:89:ea:e0:5a:87:33:45:60:d2:6f:9d:23:e7:7d:06:
e2:f1:d1:ca:19:f9:2e:de:36:98:ee:95:8a:e6:55:1c:c6:33:
10:13:16:a5:39:2e:c9:35:08:49:83:f2:3c:f7:41:b5:57:73:
b7:c2:22:eb:f3:38:8f:cf:2a:bf:68:2a:ac:cd:76:f0:1f:07:
a1:c7:ba:6f:87:3c:0e:63:74:6c:c8:44:c3:2e:cf:34:c4:36:
d9:29:bd:49:4c:fc:18:0e:2b:81:4e:cd:fb:5e:6d:b5:59:1d:
df:df:c5:06:80:38:f8:97:fb:bf:c8:66:d7:25:53:bc:15:60:
45:17:b9:e5:7f:91:16:e7:37:2e:8c:1c:53:a8:4e:fc:bd:f4:
47:aa:12:c4:30:ba:ee:5a:88:18:04:a9:fa:cd:6d:a4:1c:70:
51:43:99:12:cf:09:97:1a:c3:76:74:f1:9e:c8:21:31:bc:8a:
08:fc:24:b4:a6:f1:b1:c5:d7:19:69:2e:f3:9f:45:0b:3b:e0:
56:d7:a0:53:2e:db:ed:02:15:be:de:bd:95:51:11:0c:c2:69:
ca:0a:af:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdu9Rw1pVL+8GCKq9y/YfVHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYzAwMTM3ZWU2ZGZhZWI0ZWE0ODIzYmMxNzNjM2JjMDAw
MzFkZjkwHhcNMjUwNjE0MTUwMDQ2WhcNMjUwNjE1MTUwMDQ2WjAzMTEwLwYDVQQD
EyhlMjY4NDM3ODc4YmRkNTc2YWY2YWE5Mjg0OTU4MTI1Mjc5N2RkYmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaovAh8Aqz1gR7TeggpFxnrXomFG
Uh3vBIwkEOnuhlXA9l1EfEN6glyjo3ldkG+eHbrDh/2eLOfz6+GSFofUXLVDjyrP
usVUY4Dok8+xLFoHlgXCigdVIeuPO24B+bCj5FFGabEf1zVpAZuecT1vrKaZOumv
336zO8VhzvEaj5PTZ5FJoVYPP+N3CvnbSISCdTBZyYLCjIL4JhoTNgwfCeKfgiHx
kdRLXyUYxWyItO5nsnrLFWFxmR0EPcx/PizZt11uY2vmUJhAGLuTuPJSBN/SJYSp
CBeZIz2+KHsLM0DrusunoDtLWyn41B3sPPa9TF5qzwpvFdPaSVYIiwzjkQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOJoQ3h4vdV2r2qpKElYElJ5fdu7MB8GA1UdIwQY
MBaAFJDAATfubfrrTqSCO8Fzw7wAAx35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUt
MGE1MjViNjlkYjhmLzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9iZTM3MGUtNjcyOS00ZGY3LWFhYmUtMGE1MjViNjlkYjhm
LzEva01BQk4tNXQtdXRPcElJN3dYUER2QUFESGZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMZy5u/+M
2GnnS3nUPRjIRGjqtf5SMVYjKbalZrxPwCAjbxbWMmeUiergWoczRWDSb50j530G
4vHRyhn5Lt42mO6ViuZVHMYzEBMWpTkuyTUISYPyPPdBtVdzt8Ii6/M4j88qv2gq
rM128B8Hoce6b4c8DmN0bMhEwy7PNMQ22Sm9SUz8GA4rgU7N+15ttVkd39/FBoA4
+Jf7v8hm1yVTvBVgRRe55X+RFuc3LowcU6hO/L30R6oSxDC67lqIGASp+s1tpBxw
UUOZEs8JlxrDdnTxnsghMbyKCPwktKbxscXXGWku859FCzvgVtegUy7b7QIVvt69
lVERDMJpygqvXw==
-----END CERTIFICATE-----
Generated at Sat Jun 14 22:22:34 2025 by rpki-client