Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: 7Fy4fvOzsxvupiUlRO8hYw1YHJfLw6a06NeeK6Am724=
Subject key identifier: 22:D7:6E:B5:38:26:7D:C5:ED:8F:02:3A:58:F5:01:69:F1:24:92:42
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019E1F10EFF1F87270C603CC28DCCDED9D54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0AB1
Signing time: Wed 13 May 2026 02:01:03 +0000
Manifest this update: Wed 13 May 2026 02:01:03 +0000
Manifest next update: Thu 14 May 2026 02:01:03 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: 7kSlxev1LZA4GYXTBi/RtU5HQX1eIv2P/mOlKAB2kek=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:ef:f1:f8:72:70:c6:03:cc:28:dc:cd:ed:9d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: May 13 02:01:03 2026 GMT
Not After : May 14 02:01:03 2026 GMT
Subject: CN=22d76eb538267dc5ed8f023a58f50169f1249242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1d:8b:ea:14:a9:76:2e:9d:4f:f5:7e:95:5f:
1d:0c:eb:1f:2e:17:b2:e0:48:3c:1e:f0:b1:25:2b:
e7:3f:64:f4:3b:74:92:e1:ae:f8:cc:14:8e:c7:e4:
f2:71:f3:42:49:db:e8:4a:97:6d:f0:b0:26:a4:31:
f0:14:26:2e:cc:96:c1:40:44:6f:c0:2e:af:c7:86:
60:c1:df:44:f0:0c:6d:9c:8c:55:04:08:35:6b:89:
0e:a6:04:67:6b:10:0f:fc:12:96:a5:d6:d4:72:fb:
10:ae:be:37:af:f0:12:50:9c:20:ac:0d:77:7a:aa:
48:f9:81:b5:76:d5:2a:fe:bf:d8:5e:ab:60:4a:77:
63:b1:89:fb:75:79:12:b2:a4:64:32:dd:8a:3e:a8:
24:0f:da:fd:b9:ce:c4:c2:02:bd:2e:e1:98:87:83:
37:b3:33:12:3c:cf:27:27:33:a5:cd:91:2a:88:b7:
73:d6:43:04:b6:4b:b6:6e:3a:fa:4d:4b:bd:2b:76:
ae:9c:f6:c2:86:30:4d:dd:34:ba:80:8d:96:c0:ee:
78:46:b5:53:53:da:fa:96:77:2e:ed:48:2b:78:38:
f8:57:2e:38:71:c0:a5:98:32:66:cc:b3:bb:1d:a9:
5c:b5:27:3e:b2:8d:13:15:f9:44:ed:96:43:b7:ad:
bd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D7:6E:B5:38:26:7D:C5:ED:8F:02:3A:58:F5:01:69:F1:24:92:42
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:76:44:03:6d:10:53:fe:c1:68:90:af:2c:29:c3:ab:9c:16:
c3:ed:d5:8a:1e:be:85:51:e9:26:d2:94:77:da:fd:b2:78:83:
b7:a9:d1:03:a5:de:d8:1b:cf:e0:af:7a:2c:72:b8:ba:45:ac:
52:89:97:bd:7e:d3:81:fa:82:2e:90:40:93:64:ad:47:81:25:
76:1b:88:73:c0:9e:94:1d:60:f2:f4:90:84:19:06:b9:94:11:
6c:e4:d5:6a:5a:a1:86:37:4b:de:7d:6d:90:c3:50:a1:d9:c9:
44:ff:c0:9c:88:81:4c:6d:89:bc:0d:28:d2:6e:ee:84:88:b7:
59:c8:4e:83:06:a6:99:8c:42:79:a7:64:09:b6:e7:26:04:b0:
cd:e8:26:f5:d8:46:c5:22:57:9b:ee:88:fb:07:a4:c1:ee:a2:
49:01:99:99:ca:09:7e:84:25:23:1b:f6:af:73:bd:b8:1f:21:
26:93:e5:ab:18:d0:47:59:62:06:03:38:a4:84:78:16:4a:ef:
6a:03:d2:79:e8:db:3b:0b:3c:da:67:1c:c9:25:b4:e0:c9:0d:
2b:19:30:db:85:7d:cd:9d:66:2e:f4:73:24:a5:c1:6d:1b:cc:
28:46:8d:8e:93:da:ff:6e:e8:87:da:bc:bb:25:ee:57:6a:38:
a0:52:67:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:36:34 2026 by rpki-client