Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: F5o10sJlRPfxgGHZ4jPbw8dqkBWg3slRkGJvSff+Wbs=
Subject key identifier: 1D:09:77:90:34:E2:5F:1C:5D:84:A7:60:61:4A:91:27:ED:2F:AC:76
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019CAA590A98C858F3FEF07C2B88104C5842
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 09F0
Signing time: Sun 01 Mar 2026 17:01:28 +0000
Manifest this update: Sun 01 Mar 2026 17:01:28 +0000
Manifest next update: Mon 02 Mar 2026 17:01:28 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: FUsocv3NfKpvpmnqalJvJERZ7sjng5G0mzXlHeLIVEQ=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:0a:98:c8:58:f3:fe:f0:7c:2b:88:10:4c:58:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Mar 1 17:01:28 2026 GMT
Not After : Mar 2 17:01:28 2026 GMT
Subject: CN=1d09779034e25f1c5d84a760614a9127ed2fac76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c9:74:c1:2f:44:54:cb:0f:ef:3d:90:08:8a:
a5:7f:07:8f:6e:c5:e4:d3:bb:71:f9:3a:40:3a:e5:
08:12:0d:67:00:97:f3:13:11:aa:ca:d5:01:73:16:
f7:f9:51:92:ea:7e:22:05:7e:f5:60:e4:36:27:9b:
45:5c:26:9f:55:15:f8:66:1e:c0:a7:bf:10:b1:e2:
77:a8:4b:0a:62:e3:c9:13:11:68:7b:7e:0b:c1:95:
7a:59:31:48:0c:bf:61:b0:dd:a5:20:11:1b:ca:0e:
24:32:93:02:c8:d7:71:82:66:62:0a:8e:95:f7:d7:
c0:5e:fa:97:62:50:27:96:3b:7e:67:3d:bf:07:71:
ed:65:63:4b:98:68:ad:cb:4d:9a:ef:13:5f:d2:c7:
61:41:11:59:b2:e3:68:88:fd:fb:2c:dd:a4:4f:f9:
34:c2:40:4e:7b:62:a0:d7:58:d0:ef:13:bf:87:2f:
4c:f9:29:27:84:19:11:b9:d6:d4:db:06:1e:41:99:
84:05:a4:ae:85:f1:1d:05:74:b9:b1:26:ce:ea:5f:
bb:e3:8e:c4:56:14:4d:d5:c3:71:2e:be:96:f7:9a:
43:0e:c6:99:b0:81:0e:e2:c1:88:ac:81:48:b6:bf:
ff:5d:75:90:0c:3c:e9:12:ee:83:6e:03:5f:cd:43:
ab:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:09:77:90:34:E2:5F:1C:5D:84:A7:60:61:4A:91:27:ED:2F:AC:76
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:b4:8c:d7:1a:83:14:ab:90:d9:21:06:be:c1:00:3f:b4:3d:
06:83:36:62:9f:e5:dd:53:92:ee:04:48:b9:ec:1a:c9:a5:37:
30:f1:ad:b6:cb:fc:dc:d9:66:3e:02:7e:24:90:ee:98:b0:14:
2f:94:d6:91:fd:4d:f8:28:54:81:79:1f:0e:ae:57:90:0c:fc:
46:2a:ad:c4:93:eb:8e:61:e2:25:41:59:ae:45:bb:74:a4:a9:
c5:df:78:39:8d:75:e5:7e:1b:8b:35:9f:f3:a2:3e:0b:f2:4e:
b4:7f:8d:31:42:85:9a:0a:e5:96:9e:40:53:a3:45:72:b2:92:
ee:14:14:3b:8c:28:a4:91:92:e2:5b:d2:5d:4a:97:66:bf:31:
59:da:f9:63:64:e2:6f:e3:4f:dd:cf:3d:ee:59:0a:09:18:49:
05:34:f6:7e:4e:a3:6f:b8:ad:47:b6:8a:56:e1:87:f5:70:5f:
82:f4:69:9a:4c:53:3b:10:2e:ce:e5:89:e9:cc:3e:fc:bc:ee:
3c:49:ab:eb:91:4c:41:82:82:ae:4d:70:d0:15:47:cf:d4:e1:
ce:21:f9:28:55:ae:33:15:79:cf:ef:a7:df:a6:c9:3e:c6:b1:
d7:5d:47:d0:6c:40:c2:38:be:fe:8a:e4:32:c3:32:e9:bd:8b:
e8:cd:81:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:02:24 2026 by rpki-client