Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: LcyJMWkq/6bFukSchZd1FmjqKPtUG/bqelyj6QFyyjw=
Subject key identifier: 2E:2A:3D:FF:EC:FA:7A:93:02:DA:EA:4A:B1:C0:A2:4F:99:A9:A9:06
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019A522C0BBEDE1CEB19E50E07402E4DCFCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 1722
Signing time: Wed 05 Nov 2025 04:00:09 +0000
Manifest this update: Wed 05 Nov 2025 04:00:09 +0000
Manifest next update: Thu 06 Nov 2025 04:00:09 +0000
Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=)
2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=)
3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=)
4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=)
5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: uwnBccMWCfGDQ2gAgLJ/Qv5klDGY3mw63ngrhLVp7eo=)
6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=)
7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:0b:be:de:1c:eb:19:e5:0e:07:40:2e:4d:cf:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Nov 5 04:00:09 2025 GMT
Not After : Nov 6 04:00:09 2025 GMT
Subject: CN=2e2a3dffecfa7a9302daea4ab1c0a24f99a9a906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:87:aa:fc:f6:8e:15:c5:77:e0:0f:c6:53:
53:62:19:01:5b:6e:23:c2:ad:89:50:88:e6:f9:f8:
cb:f6:6b:5b:07:92:78:c1:1a:07:70:79:f5:28:da:
e5:cc:27:c9:6c:dd:73:10:fb:c9:e1:1c:b0:e8:a6:
4d:7c:bd:07:d5:8d:ad:37:46:8b:3b:a0:b7:75:ed:
a3:1b:03:e6:bc:ad:77:ec:19:b8:7d:01:69:68:34:
72:e1:2c:15:a9:19:b0:85:c9:b5:2a:c0:87:65:cb:
8f:a9:7c:9c:83:9f:a5:fa:d9:3c:4e:19:7a:fc:e6:
fd:95:21:83:54:23:72:43:4f:54:69:b1:d1:13:f8:
39:a6:7a:07:fe:9e:87:dc:0c:1d:13:11:95:5a:94:
7b:c1:84:45:28:85:f1:fe:01:eb:46:c2:38:2a:ae:
ad:f7:94:4b:c8:20:25:0d:26:89:32:f2:f7:1e:a0:
73:75:9d:b5:f7:40:27:ca:54:e6:80:af:f4:10:ca:
3e:ea:b0:47:1e:64:79:78:97:83:4c:51:39:34:a6:
fa:92:47:80:0d:fe:b4:a7:0b:93:4f:6e:e1:34:f0:
0f:22:ce:8a:04:0d:69:5c:95:e2:1a:73:53:6f:41:
0a:ef:78:c6:4b:9e:64:26:7a:d0:1f:2b:ea:f5:25:
46:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2A:3D:FF:EC:FA:7A:93:02:DA:EA:4A:B1:C0:A2:4F:99:A9:A9:06
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:98:93:bb:5a:7c:c0:ca:f9:bd:0c:0a:d9:37:80:03:6c:49:
7e:46:58:f2:d4:f3:2c:0a:f9:36:07:41:e9:f6:30:eb:44:3d:
d2:70:cf:46:9b:e1:d5:15:9a:49:8d:39:22:11:04:97:80:7a:
5f:d8:fa:f2:0c:c4:ee:04:39:47:df:29:c6:ba:ad:99:40:0b:
4e:4d:41:b0:ce:e2:72:11:00:ae:ba:fb:0e:6f:b3:4b:e6:92:
7c:6e:77:ac:d9:36:9e:d1:7b:66:7b:fc:c2:16:80:fa:5f:60:
9d:ce:4a:22:99:28:db:99:04:44:4e:c9:7a:78:e8:3e:06:4b:
b8:68:cd:00:13:4d:24:db:bc:5d:ef:4a:c9:0b:a7:e3:e0:d6:
11:eb:83:05:18:35:f5:ae:d1:70:26:92:df:8b:f1:c4:ef:74:
e7:55:92:03:e7:31:12:76:4f:af:d3:50:e7:98:a1:9d:ee:96:
8f:94:47:f4:7d:96:0f:ea:88:1c:83:f2:d0:92:84:d7:fc:5e:
52:d8:14:ae:4d:c9:73:23:99:09:c3:da:61:b9:f9:5b:ae:71:
61:c6:db:27:d0:80:f8:df:a9:2f:5b:13:85:13:b4:fe:31:7c:
42:95:1b:d1:ba:91:40:40:2c:6f:13:2f:ec:92:4c:c9:72:06:
0d:24:1a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:41:51 2025 by rpki-client