Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: gGIHkkbHMWqMLdSTlfJUz1TeIqeA8wbSOVPfdL3PDyg=
Subject key identifier: B1:1F:65:AC:C7:38:FD:C9:1B:24:D3:F2:7D:4F:EF:FF:34:83:5E:CE
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019EBF5AB214F2E701E73CDC63849C5C28E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0B04
Signing time: Sat 13 Jun 2026 05:00:52 +0000
Manifest this update: Sat 13 Jun 2026 05:00:52 +0000
Manifest next update: Sun 14 Jun 2026 05:00:52 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: cvnYw1LlNmioGGuk8S+1tYADCpFjnTsrTUtqkHFHrZc=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:b2:14:f2:e7:01:e7:3c:dc:63:84:9c:5c:28:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Jun 13 05:00:52 2026 GMT
Not After : Jun 14 05:00:52 2026 GMT
Subject: CN=b11f65acc738fdc91b24d3f27d4fefff34835ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:d0:aa:4f:ad:98:c5:c5:79:28:5f:2b:b2:a9:
12:96:e0:2d:7f:8f:41:01:f7:05:d5:6c:98:16:0d:
8d:81:01:ec:33:e0:2c:34:f4:ae:ab:14:dc:4d:ae:
54:56:7d:7d:e6:aa:02:9a:63:de:b8:80:e4:2e:9c:
99:c0:98:00:34:d0:16:2d:28:d2:fe:f3:f5:94:01:
bd:70:ad:94:9f:7b:b9:87:7d:25:40:42:57:ce:4c:
41:e9:27:30:da:ed:48:2c:87:59:48:d9:6b:8b:ba:
3a:b0:4c:30:79:e4:50:e2:f5:2c:77:42:9f:32:24:
31:af:a0:62:f1:d2:de:09:23:0f:2d:ee:49:7c:98:
8b:10:24:b7:46:72:6e:5d:c3:d4:e2:5f:e7:08:e4:
de:c2:53:c3:13:ca:5f:22:99:bb:06:04:bf:52:73:
ee:97:5c:b8:49:b0:cb:cc:0d:55:f8:fd:1e:fa:ed:
98:b7:3e:26:a5:27:ba:27:d3:01:b6:81:64:df:41:
fa:33:81:d2:81:8b:3a:1a:31:dd:24:29:b4:c7:ab:
ba:78:42:05:0f:aa:66:10:bb:98:f2:a3:a9:b5:54:
1c:67:b8:49:ee:10:8c:4e:d4:c2:5e:12:de:d1:8a:
95:a9:47:3c:70:d8:bb:34:43:15:20:90:47:ed:53:
19:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1F:65:AC:C7:38:FD:C9:1B:24:D3:F2:7D:4F:EF:FF:34:83:5E:CE
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f1:e3:46:fe:cf:1d:f9:c9:fa:d0:b1:c6:54:e5:5f:f7:4a:
8a:a3:58:bf:32:49:f4:25:5a:e8:70:2c:97:3f:d4:e3:f2:1c:
38:b1:8e:2e:a1:26:6e:23:a7:cf:93:13:74:12:4b:39:e9:df:
0f:56:04:95:b2:2e:ac:63:6c:76:2f:2f:73:15:9b:04:da:0a:
b9:80:81:96:6c:91:f8:2d:54:80:50:6b:71:ea:b8:0d:56:ad:
d0:5e:03:fc:04:f9:c9:cc:df:84:cd:2b:f1:f1:be:1b:5d:98:
4f:43:79:46:67:53:4c:66:46:34:b6:93:3c:76:9f:52:1c:03:
f1:7d:4a:26:71:df:f4:2d:bf:61:b9:70:ce:d3:72:2b:de:67:
d0:3e:0f:32:a0:ff:81:5c:31:c9:cd:fb:be:55:82:08:c7:06:
09:81:e7:3c:75:17:7b:2f:c4:a3:2a:e2:f0:2a:08:8a:cc:45:
8d:3a:46:31:81:3b:e9:18:26:1a:a1:01:88:5e:2a:b4:8b:75:
48:84:9a:f9:3a:88:21:15:b1:7e:2e:9e:51:60:35:70:a5:01:
a5:55:1b:9a:2e:72:35:f8:0b:4c:86:92:c7:f6:7a:0b:dd:26:
56:de:a1:58:a6:18:65:d7:33:91:5b:27:cd:a6:c6:a2:6c:1a:
4f:21:d3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:26:28 2026 by rpki-client