Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: jQnH9cY8lX7vMTwk/2BlaYyzDS0Dc4gTeJYYhgMJNhY=
Subject key identifier: EE:35:D2:A8:DA:D0:BE:86:04:21:81:C1:B0:D0:04:F0:6B:04:82:72
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019D27E07335CA64B7E935794E997D39088C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0A31
Signing time: Thu 26 Mar 2026 02:01:54 +0000
Manifest this update: Thu 26 Mar 2026 02:01:54 +0000
Manifest next update: Fri 27 Mar 2026 02:01:54 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: YAK894mLWQArXsZU/7FxvKig6EWCCcIezXU1DKQS0jc=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:73:35:ca:64:b7:e9:35:79:4e:99:7d:39:08:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Mar 26 02:01:54 2026 GMT
Not After : Mar 27 02:01:54 2026 GMT
Subject: CN=ee35d2a8dad0be86042181c1b0d004f06b048272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1c:5a:8b:37:ec:d1:a1:2e:d1:72:64:23:db:
ee:11:e7:a8:21:4f:91:af:4f:db:70:95:f3:34:92:
5f:fb:78:c8:91:4c:74:cb:5e:22:9e:86:62:03:57:
ce:86:53:02:af:e4:62:f9:6f:5f:48:d2:50:f7:1f:
9c:6b:aa:69:5b:e6:2a:89:4f:3a:d5:54:99:f4:ec:
fb:d5:65:f2:b8:85:88:73:b7:f0:98:c3:f4:2e:f3:
7e:0f:39:54:4a:ce:35:09:66:50:a5:f8:ec:06:05:
5d:a3:5e:bc:02:87:50:1d:fe:85:b3:72:92:c6:82:
38:29:44:48:3f:42:d9:91:50:0a:3b:21:52:b5:68:
22:dc:d6:95:a8:c1:8f:7a:46:4a:6c:82:bb:ef:fe:
24:64:46:8b:9d:42:ce:6d:c0:f3:f0:38:37:2d:dd:
97:a1:2c:87:b4:f5:b8:24:4a:10:64:cc:bb:01:ea:
5c:69:42:1a:44:14:2b:63:d7:61:6f:07:c0:08:71:
54:5d:96:2e:eb:5d:73:3c:85:41:e1:10:33:f8:9a:
76:b0:06:58:72:31:45:db:dc:27:bb:34:d8:aa:5d:
01:9b:a8:b3:71:fd:1c:91:98:08:df:d1:75:13:04:
f4:76:43:5b:4e:a5:62:d7:b3:65:1f:71:ce:b8:01:
a5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:35:D2:A8:DA:D0:BE:86:04:21:81:C1:B0:D0:04:F0:6B:04:82:72
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:f9:a9:bf:55:de:09:49:d1:43:60:19:6c:93:8c:86:db:f5:
4a:54:5c:1c:6c:89:04:72:0e:df:7e:a0:ec:56:5f:2a:b2:14:
4a:40:7c:99:c8:3f:b5:91:cb:f6:3d:03:23:d3:b8:4f:1a:e0:
c9:83:e4:d3:64:f8:8c:e9:75:fa:0d:f8:1d:20:cf:78:39:96:
59:fe:6f:6b:49:51:90:9f:11:cd:db:20:ca:48:ed:86:04:cd:
4c:e1:da:84:30:f2:d4:5f:cf:7e:b3:77:86:5d:83:55:2d:cf:
00:89:81:c6:a0:02:06:e7:ff:26:9a:82:28:0d:1d:1a:30:c2:
46:f1:c7:c4:97:eb:2e:86:71:a2:74:0c:a3:57:49:2d:d2:0b:
2c:a8:9a:0f:df:2c:dc:72:bc:95:b3:98:e7:bb:16:55:d8:ff:
9a:6d:a7:41:e6:fc:1a:bb:f6:bc:35:c2:d0:a8:6b:e4:c0:fe:
b2:e5:93:61:c8:42:36:89:70:4f:75:56:6c:8e:0f:9f:24:73:
ce:5a:61:4c:dc:51:68:39:a7:2b:39:d7:4e:42:37:e5:83:f8:
8f:c9:69:5d:4c:79:e8:05:fa:b7:66:6a:3f:cd:c1:77:12:8c:
38:b6:1f:e2:42:04:63:61:a6:0b:51:3d:89:09:33:ff:21:6c:
00:fd:f5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:33 2026 by rpki-client