Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: vkeae6E18e9ham01djrT0QhQHjX++XUjzjRl77nqjE8=
Subject key identifier: D4:D0:F0:28:CF:A2:33:7E:35:9D:A4:67:45:B8:85:D3:CC:14:5E:49
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019D37F7414E412F50007B01E235320E7E0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 18A3
Signing time: Sun 29 Mar 2026 05:00:44 +0000
Manifest this update: Sun 29 Mar 2026 05:00:44 +0000
Manifest next update: Mon 30 Mar 2026 05:00:44 +0000
Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=)
2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=)
3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: fbuNQSQCHv8kska4fa6+LmbEFoyNm2GvxbnPYsG6yCc=)
4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=)
5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=)
6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=)
7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:41:4e:41:2f:50:00:7b:01:e2:35:32:0e:7e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Mar 29 05:00:44 2026 GMT
Not After : Mar 30 05:00:44 2026 GMT
Subject: CN=d4d0f028cfa2337e359da46745b885d3cc145e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:31:f3:05:a1:22:56:bc:78:36:4f:cd:92:ea:
d8:2e:95:47:23:70:de:f1:b0:cc:90:22:8c:07:d0:
9b:e3:b5:ba:f4:6f:bc:ac:98:4c:fa:51:bb:f8:9e:
c7:ac:84:fb:1e:eb:89:e3:ee:24:e2:ed:06:6f:e6:
09:b9:3d:91:43:b9:8d:d9:8b:d5:e1:f4:e3:a5:71:
98:26:9a:22:ba:00:ba:fe:34:4d:14:25:c9:a2:48:
2b:5f:6a:37:5c:8f:4c:a3:37:86:57:b9:4b:62:d9:
d6:fb:1b:55:8e:ef:8f:70:8b:30:ba:12:58:27:ca:
3c:58:88:87:ef:4b:8a:d6:31:de:f2:b2:24:a0:4e:
8a:a2:29:5d:10:19:13:20:e5:df:7d:12:75:54:bd:
a8:d1:c9:f6:9c:0e:4d:e5:9b:6a:1b:59:08:2d:55:
fd:d9:f4:4f:80:e9:fd:7c:55:a3:9b:32:0b:66:fc:
94:05:5c:5b:47:73:da:76:f1:26:ae:d0:e8:10:5d:
92:11:45:d8:0a:b9:0a:43:0e:6f:65:2b:8b:f8:1e:
02:a8:48:5e:06:53:14:1b:62:6d:bc:89:93:3e:25:
50:76:3e:34:22:04:f9:67:64:07:f4:14:f8:25:81:
04:86:22:49:9d:23:fc:2a:00:ad:70:a5:03:c8:a6:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:D0:F0:28:CF:A2:33:7E:35:9D:A4:67:45:B8:85:D3:CC:14:5E:49
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:aa:fe:f4:78:b8:a7:a4:2a:ac:b5:de:f0:bf:78:6c:ff:a0:
b5:a4:48:c2:54:5b:12:41:37:a3:4c:a7:01:09:3c:3a:bb:f5:
3a:86:78:19:92:20:75:3c:3c:15:c1:0d:28:a1:49:6e:6b:ef:
ab:c5:9f:ec:64:5f:1b:8d:f5:0d:0c:74:73:df:fb:4b:4d:09:
21:28:8e:c8:af:2f:6b:27:8d:f8:3e:42:33:ab:16:1e:ba:7e:
e3:a7:21:a7:12:73:d1:b1:4d:63:4f:df:e5:ca:b1:e6:20:2f:
35:c0:dc:4c:5d:21:97:b6:23:8c:f1:d9:a0:1e:eb:04:95:1b:
88:c8:2c:99:bd:1e:55:e7:b2:42:af:4a:a9:f0:f0:06:98:f4:
9e:6e:bd:ad:df:28:86:df:ba:ea:5a:5a:5e:3d:66:71:c2:d8:
63:91:09:53:db:15:8f:39:a5:37:85:51:1a:5f:8e:4b:3d:af:
94:75:25:2c:0a:53:7a:5d:18:68:04:de:72:3f:8e:4a:c6:6d:
91:ca:f0:c8:3b:f4:f0:60:97:57:ff:e5:5a:88:f0:5b:65:4c:
0d:3c:9e:07:dc:2f:b5:75:97:19:b8:37:8a:f9:b3:aa:df:29:
cb:05:7a:56:5a:47:12:36:7e:23:5c:c2:08:62:10:9d:38:a1:
89:a1:5b:ed
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0390FOQS9QAHsB4jUyDn4KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl
YTM0ZWMwHhcNMjYwMzI5MDUwMDQ0WhcNMjYwMzMwMDUwMDQ0WjAzMTEwLwYDVQQD
EyhkNGQwZjAyOGNmYTIzMzdlMzU5ZGE0Njc0NWI4ODVkM2NjMTQ1ZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzHzBaEiVrx4Nk/NkurYLpVHI3De
8bDMkCKMB9Cb47W69G+8rJhM+lG7+J7HrIT7HuuJ4+4k4u0Gb+YJuT2RQ7mN2YvV
4fTjpXGYJpoiugC6/jRNFCXJokgrX2o3XI9MozeGV7lLYtnW+xtVju+PcIswuhJY
J8o8WIiH70uK1jHe8rIkoE6KoildEBkTIOXffRJ1VL2o0cn2nA5N5ZtqG1kILVX9
2fRPgOn9fFWjmzILZvyUBVxbR3PadvEmrtDoEF2SEUXYCrkKQw5vZSuL+B4CqEhe
BlMUG2JtvImTPiVQdj40IgT5Z2QH9BT4JYEEhiJJnSP8KgCtcKUDyKYhywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNTQ8CjPojN+NZ2kZ0W4hdPMFF5JMB8GA1UdIwQY
MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt
MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1
LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqKr+9Hi4
p6QqrLXe8L94bP+gtaRIwlRbEkE3o0ynAQk8Orv1OoZ4GZIgdTw8FcENKKFJbmvv
q8Wf7GRfG431DQx0c9/7S00JISiOyK8vayeN+D5CM6sWHrp+46chpxJz0bFNY0/f
5cqx5iAvNcDcTF0hl7YjjPHZoB7rBJUbiMgsmb0eVeeyQq9KqfDwBpj0nm69rd8o
ht+66lpaXj1mccLYY5EJU9sVjzmlN4VRGl+OSz2vlHUlLApTel0YaATecj+OSsZt
kcrwyDv08GCXV//lWojwW2VMDTyeB9wvtXWXGbg3ivmzqt8pywV6VlpHEjZ+I1zC
CGIQnTihiaFb7Q==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:23 2026 by rpki-client