Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: VBmP4/kC1bncTt4pobHtkBvSnAeLsT3tfSsPilG2MlU=
Subject key identifier: 81:E7:28:29:B9:49:53:41:73:C0:3F:C9:E0:38:D3:72:1F:08:06:25
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019D37533E1E80FE0132B6EAC2C98542A480
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0A39
Signing time: Sun 29 Mar 2026 02:01:35 +0000
Manifest this update: Sun 29 Mar 2026 02:01:35 +0000
Manifest next update: Mon 30 Mar 2026 02:01:35 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: u9xRZJaTf9AwWs7tpxE5WTvTgVXTkpjY0h1UCDhqbVQ=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:3e:1e:80:fe:01:32:b6:ea:c2:c9:85:42:a4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Mar 29 02:01:35 2026 GMT
Not After : Mar 30 02:01:35 2026 GMT
Subject: CN=81e72829b949534173c03fc9e038d3721f080625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:15:16:9b:78:4b:b5:4d:f0:57:e7:c6:05:33:
81:a0:4d:7d:05:28:28:a7:97:f8:c6:5c:b9:4e:e4:
7c:19:8a:f6:7c:3b:8c:b5:e4:b4:ed:1b:74:7b:89:
b9:15:62:3e:e9:95:4e:5c:66:a5:c1:61:bd:5c:b5:
82:bd:11:9e:06:7e:7b:d5:4b:e3:31:ba:09:7b:b4:
20:70:fa:c6:14:f4:0d:25:29:53:3d:78:95:e5:41:
30:c6:ae:9b:80:d3:1a:32:1b:c6:76:d2:61:8d:28:
81:71:f6:d7:5b:7f:82:38:14:eb:b9:c0:09:fd:15:
ac:3e:29:87:10:2c:cc:0b:d9:bd:84:f2:b6:5d:99:
fb:b7:05:dc:d8:1c:9b:7e:3b:e8:28:3e:d1:9d:ad:
16:d9:96:13:2f:cd:e1:7b:d0:ce:cb:8a:7b:74:19:
e0:19:d9:31:4b:13:82:d6:74:8f:15:f6:a1:8b:f2:
36:f5:38:73:38:50:75:d0:60:bf:24:f0:f8:28:4a:
c6:38:ce:31:73:19:93:90:b2:68:40:35:f6:fd:09:
99:ea:b3:dd:74:4f:b9:74:c6:26:30:c4:67:b4:32:
dc:93:ee:4d:c8:02:4f:24:86:17:19:c6:91:da:68:
58:87:4e:78:08:5b:e9:36:4e:b5:0b:46:c3:1f:f2:
a3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E7:28:29:B9:49:53:41:73:C0:3F:C9:E0:38:D3:72:1F:08:06:25
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:06:33:9a:62:b9:59:79:a6:cc:89:b1:42:54:b2:b2:62:0f:
8f:0b:81:a6:40:d5:e8:3d:9e:8d:48:55:90:f0:42:23:b8:f2:
0f:66:6d:44:e2:8e:80:1d:93:ef:a8:0f:f6:ee:d4:1d:41:e5:
6a:b9:ea:1a:30:29:a1:5e:4d:5b:87:12:a9:76:31:d1:9f:e3:
8d:84:3c:a7:7d:23:b1:d0:c3:d5:80:ad:24:d9:1d:4f:7d:c7:
5a:e8:ca:c9:5e:fb:2c:f1:a5:10:2f:8e:91:10:92:24:14:78:
cb:01:cf:b8:ce:4e:a1:88:40:61:a4:d0:90:5f:eb:a0:d5:23:
ae:40:25:f8:37:43:36:02:08:c9:6f:50:a7:96:36:7f:e9:51:
9a:b7:8b:b2:39:c6:d9:e4:7b:06:d4:48:8c:ce:6d:ca:b4:16:
72:88:d4:29:58:eb:06:6c:9d:56:f1:96:7d:49:99:99:dd:67:
46:05:02:6c:cc:0f:12:e5:47:6b:4e:e2:f2:2f:65:41:88:9a:
14:c7:7a:85:aa:cc:60:fe:ff:27:a1:e4:25:aa:95:81:f9:ba:
df:f7:41:13:71:bf:66:f7:d5:52:aa:ad:71:77:20:ea:08:1c:
0f:9b:c5:10:b9:e4:55:a0:01:0a:7c:41:d9:65:73:38:30:e9:
5e:2e:54:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:38 2026 by rpki-client