Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: KoYl8ixjp55n8tb1UlQGa5vctW8NbE/Xi5BUIH4Ngrg=
Subject key identifier: 40:F0:ED:FE:13:AE:41:4F:31:83:C0:44:A1:2F:84:5F:A1:2A:E1:D5
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 019D9C62FDA23C2FCA599B669402DCF4B622
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 18D7
Signing time: Fri 17 Apr 2026 17:00:26 +0000
Manifest this update: Fri 17 Apr 2026 17:00:26 +0000
Manifest next update: Sat 18 Apr 2026 17:00:26 +0000
Files and hashes: 1: GlqGr2JXY3PhL5VUlM1NVcQhR0w.roa (hash: eNE9wH9uFmshNKZCXrztw6ppTkQy/INcRXUojDA/i0Q=)
2: MNCcfOf0YS36WqFOiIyVG7kT7lw.roa (hash: xDxtOXtE08yNKWuVaze/oNgNsHgsu08VrPvfwX+Etss=)
3: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: oYPZY9DCyoxQp8WIqRvglgwRkaUaB53lC3i1/HXKwUs=)
4: WjEJKBNSHVEcN3ymO9d7rBHNhsg.roa (hash: /ukNM+uY+q4nZGfneifUiM0pEWc8ClpbPhjLj7YvUSQ=)
5: ZkpkKq6oEr-_I6JVpG2CjygiNpU.roa (hash: iZ1/Xaqf4kk2t//5gAR8BRoA23b+RGLpyfieDXD6saI=)
6: fh7S3k35orygy_NxNIqp6F0-sJI.roa (hash: XfQHhVDUDcNs2QAWWCjGzgrFd34jfifMCK0Ay/ulRf8=)
7: uNc9xxeMsmhjoPp_AoWS-X6p82U.roa (hash: Ic5jIOaYkijIZKE1wsb+bGe4vb/8GZ2qRJh6Qu5nzIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:62:fd:a2:3c:2f:ca:59:9b:66:94:02:dc:f4:b6:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Apr 17 17:00:26 2026 GMT
Not After : Apr 18 17:00:26 2026 GMT
Subject: CN=40f0edfe13ae414f3183c044a12f845fa12ae1d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c1:17:1d:8e:1a:6f:da:e5:0c:e4:c5:39:43:
7d:3e:85:a7:b2:8f:f1:54:45:4a:fb:a7:33:71:a6:
1c:8c:d0:3c:66:bc:fd:e4:ca:d9:2f:66:56:6b:1f:
32:a1:33:c7:c9:03:2e:e8:10:61:b7:20:f4:23:22:
33:7b:8d:0d:be:59:5c:5d:47:c7:a1:bf:14:d3:31:
ac:de:d7:ba:11:13:c3:8b:c9:4d:03:fb:21:19:a4:
42:0e:1e:d4:96:ad:6b:96:fc:e5:4f:a7:8b:44:b9:
ab:55:5e:28:6e:81:2b:e5:e2:af:bc:30:13:3a:82:
74:02:90:46:a8:36:c3:54:87:ca:b7:bf:b4:28:30:
63:8c:e5:62:d5:6e:25:14:c9:45:04:81:5a:56:81:
c9:9a:eb:ad:ba:59:36:fa:93:07:ca:80:21:73:f2:
1b:3f:0d:bc:28:11:82:09:07:fa:da:74:3b:0f:8e:
f5:7b:d1:aa:4a:f5:82:f0:42:bc:2d:c5:c4:34:3d:
ab:c1:88:60:2d:25:05:0e:20:35:1c:5f:8f:16:ff:
8e:a9:d0:e2:7e:d3:8f:17:46:13:af:c6:60:2b:45:
47:97:28:46:6c:c5:f3:2e:53:ba:07:98:8a:65:75:
5f:84:d4:44:74:f6:9a:3b:bf:9e:ce:27:44:78:d6:
79:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:F0:ED:FE:13:AE:41:4F:31:83:C0:44:A1:2F:84:5F:A1:2A:E1:D5
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4c:8b:42:d6:1d:0d:88:a4:8c:53:e3:40:2c:5b:21:6c:c1:
ba:85:58:0c:d0:63:53:cd:4f:a7:ea:8c:30:d5:b4:1c:9d:0e:
92:94:f5:fb:b6:d4:d5:4a:4d:88:6b:40:43:f0:80:ec:7d:85:
f2:8f:6b:25:7d:30:0b:e6:f1:1f:9e:ef:b8:2c:63:0e:f5:6e:
3c:7d:8a:56:54:3a:9e:ab:ee:97:4b:fa:d5:4a:37:00:9d:c2:
d1:b1:9a:79:21:17:25:b8:93:3c:b4:76:11:c3:46:7c:7f:9a:
29:b4:10:b4:bf:66:c9:fb:1a:42:9f:d2:41:ef:00:34:90:19:
91:f7:64:3b:2c:e4:4c:a9:eb:db:d7:2d:fa:ba:8d:36:8b:f3:
f9:d5:64:88:13:fc:94:cb:69:10:be:c5:7d:e9:95:de:50:9c:
2a:0b:4b:1b:c3:d5:6b:eb:34:1b:8a:01:f4:5e:77:eb:27:34:
80:4d:38:a5:93:9c:53:69:f2:d5:4d:f1:37:7c:74:3e:f9:ad:
b4:91:18:ac:41:d9:6d:8a:0e:c0:f6:f8:43:43:a8:ad:43:f2:
ba:0b:c3:11:7b:cf:da:3b:2a:8f:eb:fc:92:c0:db:ad:0f:8e:
9f:c2:ee:65:e6:68:84:1b:a4:1a:be:d7:46:1a:c1:ee:b0:6a:
a3:00:16:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:31:07 2026 by rpki-client