Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: s+ojun4m6gVxZBb7HiCdAUrOOxvOpmeptC6SMVkITlU=
Subject key identifier: C6:0F:C1:2B:13:62:0D:77:E1:48:D2:53:11:3E:99:7D:F6:EE:21:61
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 0199FCFD585BBA336F213045E64FF0FE0045
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 088D
Signing time: Sun 19 Oct 2025 15:01:25 +0000
Manifest this update: Sun 19 Oct 2025 15:01:25 +0000
Manifest next update: Mon 20 Oct 2025 15:01:25 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: 2BuiroZGIehwMSaWves72BS9+0SiuHsMughF0NFrAX8=)
2: nHuVyjc3KMoSX7dk6oCcJzZC7yI.roa (hash: 8kNlY4DAN29iBV2YoNVORKEQ7cx+NbbKiFTFq2jo6ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:fd:58:5b:ba:33:6f:21:30:45:e6:4f:f0:fe:00:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Oct 19 15:01:25 2025 GMT
Not After : Oct 20 15:01:25 2025 GMT
Subject: CN=c60fc12b13620d77e148d253113e997df6ee2161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9e:93:5d:bc:a0:ef:04:df:68:42:7f:38:2a:
e4:d6:1b:78:b8:7e:f8:25:1b:45:02:4e:4f:38:39:
bb:cf:65:08:2e:03:38:f5:6d:6e:55:94:8f:fd:1a:
cc:19:80:48:55:bd:ef:24:58:fd:55:98:ee:20:10:
bf:da:3e:90:03:92:c5:89:92:50:3f:c9:28:4a:85:
1f:5f:ef:08:11:99:82:c9:6c:58:88:4d:11:c5:42:
56:67:2b:d5:cf:93:1a:17:f4:ba:f8:fa:c9:6f:35:
83:47:4f:65:8b:2f:37:34:d4:8f:8d:15:cd:11:91:
85:07:6c:29:ee:48:fc:59:f5:7a:ba:02:23:88:a8:
68:de:83:d4:7d:d8:99:82:9d:b7:d0:83:79:4b:7f:
9e:4d:e5:e8:8a:75:46:92:d4:d0:f0:93:9b:2d:62:
ca:99:15:98:29:65:9a:87:4c:4b:46:41:01:bb:5b:
4d:81:cf:dc:9f:57:9f:9b:fe:39:ea:c0:49:d7:6f:
7d:78:f5:a4:6f:5f:43:60:20:58:e7:1c:10:7a:80:
72:8a:c0:45:13:50:5d:81:56:22:47:64:e1:ed:23:
78:4d:67:d7:c6:91:e6:a0:2e:fc:e6:62:73:b6:ba:
5a:76:09:00:29:0a:c3:e9:e3:4d:e2:77:bd:5a:3a:
b0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:0F:C1:2B:13:62:0D:77:E1:48:D2:53:11:3E:99:7D:F6:EE:21:61
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:fc:fa:2f:4d:e1:8f:55:9a:0c:fd:f2:ed:bb:0d:9c:e5:b9:
f4:b6:4d:44:8a:e1:df:b9:68:e0:9f:5d:74:4e:e2:2c:b6:b6:
08:23:c0:53:95:ac:98:e4:2e:84:a5:cc:c1:55:83:91:18:ee:
35:3b:5c:3b:f1:f6:05:8d:a0:61:54:16:30:58:b1:10:f2:5a:
15:9c:79:9b:19:82:82:e5:cc:39:b6:45:ac:cd:82:8d:f6:b2:
5f:ac:72:f7:d3:c8:39:ad:52:3a:a4:04:71:07:c0:47:ef:92:
ca:20:be:07:29:1d:c7:1e:9a:19:c5:cc:df:7b:1b:93:7d:d8:
ed:5c:10:13:d4:c4:b3:a0:91:73:45:b2:3c:a0:ce:a6:2d:5c:
8c:ce:df:7c:69:ee:a6:d3:a4:0f:04:75:0f:99:b6:9f:76:67:
e0:b2:6e:1b:d3:1f:06:fc:ee:53:e7:e3:ba:9c:73:29:8e:8f:
60:35:52:37:64:dd:79:80:53:75:0d:99:48:c5:62:e7:f5:ce:
b6:91:46:93:3a:47:f4:55:44:64:41:67:af:b3:4b:ec:77:01:
cc:0f:64:03:24:76:31:4b:50:00:fb:cd:92:bb:8b:47:2d:4a:
fa:e7:57:33:0a:b7:c5:ae:58:59:62:8f:bf:6b:94:ba:77:7f:
4b:ec:df:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 01:11:16 2025 by rpki-client