Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: KAQ8X1dSYLWVi+RQL82mctL3HDsHiMjUxDc4E5IJG+k=
Subject key identifier: 17:4B:48:DB:C3:32:18:64:72:32:39:02:61:FE:95:93:17:31:66:D4
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019D9BBEA7B4FFCB884D5EB1EBD209CAA702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0A6D
Signing time: Fri 17 Apr 2026 14:00:56 +0000
Manifest this update: Fri 17 Apr 2026 14:00:56 +0000
Manifest next update: Sat 18 Apr 2026 14:00:56 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: 6vQCI3u7gIN4CbuDfJyWoaIAYjOAi4LHRXgrp+dfcDM=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:a7:b4:ff:cb:88:4d:5e:b1:eb:d2:09:ca:a7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Apr 17 14:00:56 2026 GMT
Not After : Apr 18 14:00:56 2026 GMT
Subject: CN=174b48dbc33218647232390261fe9593173166d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d9:94:da:a9:3c:56:77:e8:ed:34:22:d3:cd:
36:fa:01:98:bd:42:30:87:9d:64:a4:38:0b:ee:59:
bf:ba:1d:34:63:af:06:10:c5:e1:4c:02:48:36:f3:
4a:c2:87:f0:d0:dc:23:a9:8b:c9:6e:b0:4a:34:21:
89:32:92:e3:a0:40:5b:1a:5d:ae:88:8a:07:92:ba:
69:e2:79:00:57:c5:a5:9a:b2:1d:1f:dd:38:0e:3f:
7c:ae:23:4e:92:6a:42:21:52:ce:78:4b:08:b5:fb:
5d:e9:ea:22:7e:a4:3b:24:10:5b:49:2b:13:f3:43:
fe:d4:06:48:9f:fa:0d:ed:ca:2b:8f:39:5d:7c:b2:
c6:e2:c7:83:78:f4:ac:25:19:c2:d5:de:4f:54:3d:
2d:aa:3a:34:1e:cd:31:26:59:f5:8f:02:ff:6a:d1:
a5:32:62:8e:e7:0e:2a:91:cd:f5:d4:b2:47:59:dd:
03:0b:49:19:a2:11:7d:77:53:bc:58:83:64:7e:14:
2d:88:bd:d7:58:09:6a:59:09:64:a8:37:99:9d:08:
35:7e:41:b9:c4:d0:67:7b:c7:a9:47:ec:5f:af:03:
21:c8:ff:1a:a1:43:29:25:44:5d:67:e1:b1:a7:45:
0b:fd:22:79:02:25:fe:7a:4d:84:c2:13:96:56:e1:
50:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4B:48:DB:C3:32:18:64:72:32:39:02:61:FE:95:93:17:31:66:D4
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:d8:7f:ce:d9:35:be:2e:9e:e9:68:82:c3:a1:e2:71:5b:5e:
c6:de:52:5c:9b:65:bd:b3:d1:fc:2c:af:e2:8f:84:2e:60:37:
d5:26:5c:72:fa:d1:12:db:f7:28:87:34:43:7b:19:4c:7a:69:
2d:26:e5:88:f1:c1:9a:db:ac:17:5b:ef:74:c6:a0:64:63:2e:
ae:95:ec:12:19:2f:a4:7e:92:b8:7b:21:89:3b:84:02:06:ec:
62:2c:8d:ef:42:74:28:03:c7:7a:5e:c5:d1:84:69:03:65:4d:
5b:6b:43:62:82:85:ba:cb:6a:2b:b1:67:88:d5:96:96:96:4a:
49:9f:7e:c9:3a:d3:e8:10:26:b8:ac:92:fe:ad:f5:a2:a9:12:
d7:c3:76:17:1f:f5:37:10:97:28:2f:06:ac:22:2c:5e:70:ec:
c8:36:57:cf:58:40:e4:ca:40:a3:89:f8:c7:0b:6c:5c:bb:bd:
b1:9a:e2:3e:77:48:0e:a1:50:6c:94:ec:1e:44:06:fb:d2:26:
1d:3b:5e:2b:7e:b9:62:21:9b:4c:68:6b:29:39:85:3e:5a:70:
74:cc:82:1b:4c:8e:2e:3e:c1:78:bd:db:35:e3:55:01:a0:19:
98:aa:f3:1c:c4:28:f8:9a:b0:80:9f:31:e9:ab:8c:cd:d9:ae:
06:f9:d8:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bvqe0/8uITV6x69IJyqcCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy
NGM0MGYwHhcNMjYwNDE3MTQwMDU2WhcNMjYwNDE4MTQwMDU2WjAzMTEwLwYDVQQD
EygxNzRiNDhkYmMzMzIxODY0NzIzMjM5MDI2MWZlOTU5MzE3MzE2NmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9mU2qk8Vnfo7TQi0802+gGYvUIw
h51kpDgL7lm/uh00Y68GEMXhTAJINvNKwofw0NwjqYvJbrBKNCGJMpLjoEBbGl2u
iIoHkrpp4nkAV8WlmrIdH904Dj98riNOkmpCIVLOeEsItftd6eoifqQ7JBBbSSsT
80P+1AZIn/oN7corjzldfLLG4seDePSsJRnC1d5PVD0tqjo0Hs0xJln1jwL/atGl
MmKO5w4qkc311LJHWd0DC0kZohF9d1O8WINkfhQtiL3XWAlqWQlkqDeZnQg1fkG5
xNBne8epR+xfrwMhyP8aoUMpJURdZ+Gxp0UL/SJ5AiX+ek2EwhOWVuFQtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBdLSNvDMhhkcjI5AmH+lZMXMWbUMB8GA1UdIwQY
MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt
ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2
LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzNh/ztk1
vi6e6WiCw6HicVtext5SXJtlvbPR/Cyv4o+ELmA31SZccvrREtv3KIc0Q3sZTHpp
LSbliPHBmtusF1vvdMagZGMurpXsEhkvpH6SuHshiTuEAgbsYiyN70J0KAPHel7F
0YRpA2VNW2tDYoKFustqK7FniNWWlpZKSZ9+yTrT6BAmuKyS/q31oqkS18N2Fx/1
NxCXKC8GrCIsXnDsyDZXz1hA5MpAo4n4xwtsXLu9sZriPndIDqFQbJTsHkQG+9Im
HTteK365YiGbTGhrKTmFPlpwdMyCG0yOLj7BeL3bNeNVAaAZmKrzHMQo+JqwgJ8x
6auMzdmuBvnYxg==
-----END CERTIFICATE-----
Generated at Sat Apr 18 00:02:04 2026 by rpki-client