Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
File: Q4T2-m3sztVXioWlHgvWVwHqNOw.mft (raw, json)
Hash identifier: o8ZucSWmxndVV23mRDroVqdxJZK4oRFcGdDmXRA8HWU=
Subject key identifier: F0:6B:35:09:67:EA:8A:96:91:03:14:71:CB:C3:16:E3:D7:29:A8:4D
Authority key identifier: 43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
Certificate issuer: /CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Certificate serial: 0198D5BB955C5957430BBCE14297D5658381
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
Manifest number: 165D
Signing time: Sat 23 Aug 2025 07:01:37 +0000
Manifest this update: Sat 23 Aug 2025 07:01:37 +0000
Manifest next update: Sun 24 Aug 2025 07:01:37 +0000
Files and hashes: 1: 29wssqErvKQtR_9f6uK-OYzddNM.roa (hash: Bh05SYc8VBmf4zaIv99zE5UZHb6fBJqOGBDvempbpVM=)
2: 6ydkCTIO-cNnh8Hv2Ok88IlcHaI.roa (hash: wLv2JoucZBkU56L2p9pXvAWsrjbYGSWjGCERyhVvXsw=)
3: AN-DGU807Zi1GLozE0Ye6tyK7Ic.roa (hash: +/Pg+LZh0oTnlaPXWDZsXPiFa0OXAsSR/g5vgnMvqME=)
4: N0dUKPrjFoc0y8MW0LZVdnxSnBI.roa (hash: GOCzo5+8biESJ82NDr0uRyIZsN+18Kfk+tP9JYURZW4=)
5: Q4T2-m3sztVXioWlHgvWVwHqNOw.crl (hash: g3NXV/eipEnFC6pRLwZdqEFTeEZoScIj9rSgnnS0TOo=)
6: akr2zEciBp0bAf10VTnQBF8A5hE.roa (hash: SJfaT9rqeoFgX5bxM6d8wxAKVaMpQ7a7c0aJKadx3yo=)
7: maXcZQ7N2y2_afrzV1oMNjT4O7g.roa (hash: D+pc8oR4WM9Y/chv55U8MqOsuEcIXejdvRWZ+f3Pszg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bb:95:5c:59:57:43:0b:bc:e1:42:97:d5:65:83:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4384f6fa6decced5578a85a51e0bd65701ea34ec
Validity
Not Before: Aug 23 07:01:37 2025 GMT
Not After : Aug 24 07:01:37 2025 GMT
Subject: CN=f06b350967ea8a9691031471cbc316e3d729a84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2a:86:d7:1b:22:7b:13:6c:06:ec:71:a8:72:
4c:c9:c8:0e:a3:e0:80:27:0c:75:f0:84:c9:6f:05:
1f:8d:b8:8c:0f:5f:90:6d:6a:93:b3:ec:ab:3e:64:
02:ef:b5:ac:25:e8:99:b6:ea:e8:5b:a5:3d:35:62:
3c:42:90:03:91:59:43:17:64:59:50:99:1d:21:93:
bf:a9:47:e9:42:59:2d:5d:56:07:be:b7:63:67:10:
cc:80:f5:0b:ec:40:08:7d:d4:29:b0:a8:bd:7d:a1:
6a:33:c9:e3:d9:aa:aa:0d:90:ff:71:ae:80:c4:ac:
a0:7e:bc:7c:c1:2c:af:a7:2e:4d:76:91:07:2e:7c:
6b:f5:7e:63:80:79:7b:6c:fd:e9:c0:61:b6:22:c0:
3c:12:ae:19:31:42:28:fe:26:af:70:b0:ce:8e:a6:
87:51:93:48:9c:f4:83:3b:b5:4d:d0:93:eb:47:ee:
01:2e:03:99:03:a4:ed:d8:37:fc:0a:c4:cb:b9:6c:
75:7e:1b:54:92:4c:eb:a5:05:2e:f0:d3:63:3e:f6:
1c:bf:f1:6f:f0:2b:8a:2d:3d:2a:2d:0f:17:d2:e0:
f6:c0:73:c0:91:92:96:c4:30:af:a3:8a:4c:38:89:
cb:cd:1b:9b:ed:0f:99:e3:8d:7a:a8:3e:6e:84:1a:
12:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6B:35:09:67:EA:8A:96:91:03:14:71:CB:C3:16:E3:D7:29:A8:4D
X509v3 Authority Key Identifier:
keyid:43:84:F6:FA:6D:EC:CE:D5:57:8A:85:A5:1E:0B:D6:57:01:EA:34:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4T2-m3sztVXioWlHgvWVwHqNOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b698bd-8dd2-40be-82a3-1b13bd4566a5/1/Q4T2-m3sztVXioWlHgvWVwHqNOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:1d:9c:af:ff:2b:41:f0:d9:e2:a7:a4:25:1c:8f:3f:75:e5:
21:4a:f5:ee:c5:80:51:ef:a7:f5:f4:a6:ef:ca:23:fa:2b:02:
08:b2:54:cf:47:7e:06:52:07:d7:0f:f4:9f:ff:69:c2:89:27:
ee:16:b1:4c:88:4c:80:3f:53:36:f5:08:83:d7:03:7c:0d:ae:
85:e0:e7:82:d9:95:bf:0e:87:6e:c1:fa:bb:f5:a7:f6:a5:ff:
16:f7:cd:65:95:79:63:89:60:b4:8b:87:65:ed:89:a6:0b:02:
7a:b7:96:76:f2:f8:a8:41:f5:ec:8a:ec:50:dd:f1:0f:bd:4f:
3a:81:10:68:66:0a:eb:b8:bd:64:c5:0d:73:c6:53:7d:7b:84:
70:10:eb:f9:88:58:7d:6f:74:18:c3:d3:7a:d8:f8:2b:9d:46:
04:7c:2c:1b:4a:29:72:0f:10:e3:c5:f1:ee:20:dd:77:a7:ff:
20:57:32:c3:b4:fe:83:30:d3:42:37:fd:f5:72:25:2e:58:4a:
bc:59:ea:a6:99:72:ef:84:21:7d:05:30:2c:59:a3:1f:1a:9e:
eb:03:24:de:f3:88:54:f5:d7:7a:13:1e:7f:08:49:9b:7f:92:
6e:ca:d9:8a:da:bf:f6:36:c0:05:e2:a5:1e:b2:19:00:f1:e3:
2a:5c:41:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVu5VcWVdDC7zhQpfVZYOBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQzODRmNmZhNmRlY2NlZDU1NzhhODVhNTFlMGJkNjU3MDFl
YTM0ZWMwHhcNMjUwODIzMDcwMTM3WhcNMjUwODI0MDcwMTM3WjAzMTEwLwYDVQQD
EyhmMDZiMzUwOTY3ZWE4YTk2OTEwMzE0NzFjYmMzMTZlM2Q3MjlhODRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSqG1xsiexNsBuxxqHJMycgOo+CA
Jwx18ITJbwUfjbiMD1+QbWqTs+yrPmQC77WsJeiZturoW6U9NWI8QpADkVlDF2RZ
UJkdIZO/qUfpQlktXVYHvrdjZxDMgPUL7EAIfdQpsKi9faFqM8nj2aqqDZD/ca6A
xKygfrx8wSyvpy5NdpEHLnxr9X5jgHl7bP3pwGG2IsA8Eq4ZMUIo/iavcLDOjqaH
UZNInPSDO7VN0JPrR+4BLgOZA6Tt2Df8CsTLuWx1fhtUkkzrpQUu8NNjPvYcv/Fv
8CuKLT0qLQ8X0uD2wHPAkZKWxDCvo4pMOInLzRub7Q+Z4416qD5uhBoSJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPBrNQln6oqWkQMUccvDFuPXKahNMB8GA1UdIwQY
MBaAFEOE9vpt7M7VV4qFpR4L1lcB6jTsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMt
MWIxM2JkNDU2NmE1LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9iNjk4YmQtOGRkMi00MGJlLTgyYTMtMWIxM2JkNDU2NmE1
LzEvUTRUMi1tM3N6dFZYaW9XbEhndldWd0hxTk93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvh2cr/8r
QfDZ4qekJRyPP3XlIUr17sWAUe+n9fSm78oj+isCCLJUz0d+BlIH1w/0n/9pwokn
7haxTIhMgD9TNvUIg9cDfA2uheDngtmVvw6HbsH6u/Wn9qX/FvfNZZV5Y4lgtIuH
Ze2JpgsCereWdvL4qEH17IrsUN3xD71POoEQaGYK67i9ZMUNc8ZTfXuEcBDr+YhY
fW90GMPTetj4K51GBHwsG0opcg8Q48Xx7iDdd6f/IFcyw7T+gzDTQjf99XIlLlhK
vFnqpply74QhfQUwLFmjHxqe6wMk3vOIVPXXehMefwhJm3+SbsrZitq/9jbABeKl
HrIZAPHjKlxBoA==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:26:31 2025 by rpki-client