Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: BmCydDjiUF1DrTgSpa/cJa+mfx0QfbmsvtlCH3gG36I=
Subject key identifier: 20:0B:3E:EF:12:C5:21:31:FD:31:97:26:3E:C6:D9:08:CE:B1:42:C4
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019CACEBB7779881200D3E5C4FB00D334C4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 185B
Signing time: Mon 02 Mar 2026 05:00:54 +0000
Manifest this update: Mon 02 Mar 2026 05:00:54 +0000
Manifest next update: Tue 03 Mar 2026 05:00:54 +0000
Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=)
2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=)
3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: SdbU0pfqSGUMVdBxYDnNWPduXbrSbXSJQDhDDRZxuvU=)
4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=)
5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=)
6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=)
7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:b7:77:98:81:20:0d:3e:5c:4f:b0:0d:33:4c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Mar 2 05:00:54 2026 GMT
Not After : Mar 3 05:00:54 2026 GMT
Subject: CN=200b3eef12c52131fd3197263ec6d908ceb142c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a4:60:ee:fb:38:5d:f5:17:47:36:21:97:ff:
5f:39:5a:bb:ce:5c:e1:6a:27:6b:ad:93:22:0b:6f:
39:15:88:66:c8:ba:de:51:24:26:d5:58:34:50:85:
b9:36:ac:8a:b6:99:4f:3b:19:52:0f:9f:8e:29:3e:
90:4f:c3:14:19:3a:5e:f2:e7:f1:40:f8:1a:11:38:
41:3d:07:ff:ae:0f:4d:82:c0:40:7a:df:b6:14:ea:
f7:af:65:7a:74:33:87:d3:4a:b1:6f:3e:c5:b9:9a:
fa:07:e8:b6:86:a4:3e:0b:22:7d:f1:3f:63:de:7d:
c5:a1:a8:3b:54:f0:19:4f:a3:2d:04:be:01:68:ff:
31:91:66:b0:81:6c:6a:2a:96:b7:bc:cf:2f:fd:5e:
da:cb:76:18:76:46:e7:96:cb:0f:d6:1a:6c:33:9e:
ea:30:cf:c7:17:c9:a2:65:52:44:29:7e:c7:af:04:
ef:61:a9:d8:7d:9d:cc:51:a4:c6:7f:35:90:b0:08:
32:4c:ea:97:ca:cb:38:7d:0f:06:b6:7d:78:10:2f:
00:77:1d:b1:1f:99:4d:7a:7c:6b:1e:72:3d:e5:57:
0c:b7:a1:29:93:7f:0e:25:b8:54:eb:d0:3f:29:1c:
ca:42:16:98:ac:0c:61:00:27:c9:67:04:e7:07:62:
a6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0B:3E:EF:12:C5:21:31:FD:31:97:26:3E:C6:D9:08:CE:B1:42:C4
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b0:7d:85:73:49:d9:76:f5:c0:d2:99:18:48:ee:2d:43:17:
36:b1:f2:0b:b2:ef:b8:6d:0b:10:6d:f7:f2:78:5d:3f:41:c1:
d7:56:41:41:29:50:4b:40:b8:47:5f:b9:35:b4:eb:33:c5:55:
6d:33:94:e5:66:c2:34:4d:e5:2e:8f:8a:49:a3:b7:c9:3b:d2:
eb:17:f3:0c:72:42:3f:7b:dd:eb:03:2a:a6:d0:46:4e:b9:c7:
a5:84:d1:af:03:35:ec:47:1c:b6:49:b8:10:4c:cd:61:bb:81:
2f:96:1b:6c:e6:c4:a5:42:50:63:c8:fb:87:31:de:36:04:88:
61:6c:3e:8a:7e:42:92:10:87:84:4a:49:d6:f5:91:f3:8d:e3:
27:cd:3f:6a:fb:ac:c0:e5:54:86:e4:f2:14:ae:7c:d7:a7:e1:
06:af:1a:06:42:00:ae:fe:ec:22:11:06:9d:67:b2:fe:85:7a:
ea:9d:65:4c:32:c9:c0:d0:f6:c2:05:a9:a2:5b:86:c3:79:5d:
d9:3d:2b:16:1a:19:e4:62:c0:99:5c:39:04:3d:8f:cf:d2:a6:
fc:98:9a:bc:a5:9a:38:77:bc:4d:92:be:78:fa:75:83:41:d2:
c5:51:44:ec:66:ce:29:11:14:44:87:20:de:43:f1:1c:d8:15:
1d:01:db:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:31:33 2026 by rpki-client