
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: ATnCs8/oxNFjdejx+9kJrASzb5zxHDT/KXVPY/q+u8k=
Subject key identifier: A8:B9:FB:AC:FC:BF:4F:8D:47:97:E0:DD:8D:D4:6F:A2:1E:D5:54:B3
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019F1AC42E75F362F3C2DA40C12D2DA49551
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 199D
Signing time: Tue 30 Jun 2026 23:01:32 +0000
Manifest this update: Tue 30 Jun 2026 23:01:32 +0000
Manifest next update: Wed 01 Jul 2026 23:01:32 +0000
Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=)
2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=)
3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: pUsIihyrY6Wq0UDhEoVCQO5yziVYdOaPpjN/CgPOj8c=)
4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=)
5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=)
6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=)
7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 20:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:c4:2e:75:f3:62:f3:c2:da:40:c1:2d:2d:a4:95:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Jun 30 23:01:32 2026 GMT
Not After : Jul 1 23:01:32 2026 GMT
Subject: CN=a8b9fbacfcbf4f8d4797e0dd8dd46fa21ed554b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:df:05:01:e2:50:5a:8f:15:8b:a6:e0:b0:a0:
2c:d3:4d:5e:96:65:43:ae:61:29:7e:fd:09:4a:19:
f9:25:0e:42:54:98:69:6c:40:02:36:99:d9:47:77:
f6:99:96:19:09:7d:88:83:b0:9d:13:81:19:d0:be:
32:7e:5c:2f:10:50:a4:66:f7:eb:9c:02:1a:82:02:
ce:73:c7:17:11:b0:8b:65:85:42:04:35:d3:0b:7d:
74:a2:4d:2b:02:78:52:04:d6:b0:6f:ae:d5:33:91:
34:43:73:1d:fd:78:02:b8:e9:9e:0b:2f:02:8a:f5:
5b:d0:36:20:cc:52:2c:d8:c3:61:39:73:06:8b:be:
07:9a:25:d5:1a:a9:b4:8a:4e:73:2d:02:a4:38:46:
3a:2c:a2:16:60:f8:c3:a5:3c:64:31:ee:53:e7:15:
c2:53:50:3b:0d:36:16:4f:7e:01:05:ce:a1:97:70:
87:01:5c:e9:6d:d8:f9:c0:6b:1d:e3:f0:10:6b:28:
65:14:f9:3a:36:21:61:d6:9d:55:d4:db:a2:b6:4f:
c6:34:d1:17:c8:8b:0d:e3:3a:74:fc:13:66:38:51:
97:75:bf:70:99:1b:f2:57:6a:39:f5:d4:d2:78:bf:
80:d3:20:0b:84:1a:20:60:ab:64:d6:8c:00:6c:cd:
11:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B9:FB:AC:FC:BF:4F:8D:47:97:E0:DD:8D:D4:6F:A2:1E:D5:54:B3
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:2b:aa:d5:7d:f7:39:e1:bf:6d:e9:9a:b9:13:dc:55:68:ff:
06:ff:3a:01:4a:25:1c:e7:90:ea:41:a1:b8:68:f0:ce:e3:a3:
86:5a:40:12:30:2c:ef:45:a0:b7:dd:7f:c1:73:06:ab:61:fb:
cc:34:96:95:41:b4:91:57:f9:f3:a3:a5:60:68:ca:95:ff:50:
82:3d:e4:4f:80:6e:65:9f:97:e6:4a:3c:19:e4:79:8d:35:26:
0b:13:69:3f:48:c3:02:8d:b6:c5:46:f9:1c:3d:bb:e4:19:69:
e1:23:c8:89:eb:14:10:01:bb:41:3b:f1:ae:25:43:b8:ff:bd:
d1:55:66:56:c3:20:77:c9:8e:d1:48:e3:1f:9f:76:f5:33:88:
6b:32:a8:44:49:a2:21:87:ec:96:93:95:cf:75:c2:47:f0:45:
6e:f7:9c:4c:4c:ad:db:bf:78:1b:8e:28:bb:b8:a1:f3:3b:e4:
69:00:27:8d:7b:06:5f:d2:2e:5a:b4:98:39:49:80:bf:0d:20:
34:09:3c:40:af:13:60:65:7c:fb:d3:25:c8:d4:7e:28:a2:0f:
bd:ff:0c:da:f5:52:ce:ff:47:52:43:f8:0c:81:18:00:7e:b8:
26:54:f4:9c:cc:b2:f9:1d:0a:aa:65:0a:82:8a:d7:c5:23:09:
69:01:3e:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 03:21:35 2026 by rpki-client