Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: Zj0gn08GXNpwETTwAZFgmUTPy+24ZKZNs+rQHCfkuD4=
Subject key identifier: D1:DC:8B:05:83:CA:5D:42:CC:11:7B:9F:C8:47:E9:DB:87:15:C6:30
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019E33061D59A3EB13606FA1150BE63847B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 1925
Signing time: Sat 16 May 2026 23:01:39 +0000
Manifest this update: Sat 16 May 2026 23:01:39 +0000
Manifest next update: Sun 17 May 2026 23:01:39 +0000
Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=)
2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=)
3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: bW1Gp9xZLdUNHri6S5sdgT0D0mtYoZB/M4lWiYGNnZM=)
4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=)
5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=)
6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=)
7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:33:06:1d:59:a3:eb:13:60:6f:a1:15:0b:e6:38:47:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: May 16 23:01:39 2026 GMT
Not After : May 17 23:01:39 2026 GMT
Subject: CN=d1dc8b0583ca5d42cc117b9fc847e9db8715c630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ba:63:ee:df:ea:1a:ce:55:39:3d:f2:29:2c:
66:13:0a:fc:f3:b6:b5:28:bf:19:e4:06:7c:27:30:
23:8b:32:ea:26:65:38:52:90:7a:4a:4c:7c:43:3d:
dc:81:9c:ef:96:77:6d:c5:bd:de:e4:92:ab:d9:92:
60:78:1b:0a:89:7b:ef:68:a7:d3:67:97:94:0f:f4:
b8:94:e4:94:cd:34:be:ee:64:d2:b5:68:88:53:90:
75:a8:1c:a0:cc:37:2a:4f:34:27:72:0e:2c:d0:01:
78:86:85:2e:69:a9:0d:76:37:da:d5:e2:6c:c3:aa:
7c:27:6e:67:55:97:bd:17:83:c3:fe:a1:6a:2b:e7:
8e:8e:36:90:20:5f:83:b0:6c:06:85:cc:3e:44:cd:
ae:9c:ee:b0:a8:c9:16:d4:94:83:d0:9a:11:9c:10:
86:62:91:63:77:b2:75:08:71:90:ee:ef:de:ed:9f:
4d:9b:f5:67:13:25:ee:95:83:6d:cc:26:d0:8a:8b:
c5:be:4d:d7:d5:a5:cb:c5:4c:d3:60:8d:57:83:c5:
1e:34:d5:a6:d2:7f:43:cd:46:08:a9:eb:a3:53:83:
94:9a:19:ce:29:2d:45:ef:0c:12:a3:36:b8:bb:f5:
8f:43:59:c9:fd:4a:a4:25:11:35:ff:ca:04:2c:e5:
14:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DC:8B:05:83:CA:5D:42:CC:11:7B:9F:C8:47:E9:DB:87:15:C6:30
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:4a:11:cd:95:02:b8:ee:67:74:a7:1d:63:fe:81:22:c8:6f:
36:a5:46:73:17:bf:67:3c:b3:a2:10:04:af:20:b8:5a:b7:57:
a6:e7:65:3d:3d:73:cd:a4:15:6e:2d:0b:dd:6f:dc:bb:20:c8:
f0:e3:a5:06:f9:b8:4f:e5:7c:1c:cf:6d:7a:f6:ec:9d:a3:32:
6c:b9:8b:20:e6:32:fb:1f:f9:64:52:81:b8:82:df:32:39:96:
c4:00:fe:fe:dc:fd:7a:b9:f6:d3:d8:55:e9:57:44:6b:12:11:
9f:32:cb:7e:12:51:37:a9:2f:c3:d7:0f:75:ae:25:eb:db:cf:
9e:58:fb:f1:46:5f:c7:1f:56:7b:50:37:56:98:62:d6:4c:42:
16:77:cc:ea:5a:c0:4d:a4:cb:8f:eb:a4:27:89:9d:7f:c1:64:
49:1f:93:1e:40:2e:12:d4:d8:d3:f8:2c:15:3a:ab:6d:f1:12:
52:2c:f8:b4:7b:d0:3f:a2:98:ac:b9:c4:15:f7:26:23:fe:b2:
5f:a7:64:23:6a:ba:56:1a:f8:04:95:e2:33:7d:0d:75:f1:74:
c1:f9:aa:f0:8f:4b:8b:64:55:44:d0:0e:e5:99:9a:5e:4c:df:
75:82:bd:f4:d7:4c:d7:29:21:20:3c:c3:85:24:35:25:0d:1a:
83:c7:cf:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 02:07:23 2026 by rpki-client