Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: mRFTYgcdbCGRW6ysG823jzZGT+IUBl+gob2qt0A9H9A=
Subject key identifier: B8:76:96:70:7F:5F:40:31:CE:8D:E5:67:75:1C:55:0A:26:4E:7C:07
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019E3072772167965496C08388D327F23052
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 0ABA
Signing time: Sat 16 May 2026 11:01:08 +0000
Manifest this update: Sat 16 May 2026 11:01:08 +0000
Manifest next update: Sun 17 May 2026 11:01:08 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: tEG0iYIdAh4b5i4Jqm1xPbHhqjllkub9WYzz5g14FYY=)
2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:77:21:67:96:54:96:c0:83:88:d3:27:f2:30:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: May 16 11:01:08 2026 GMT
Not After : May 17 11:01:08 2026 GMT
Subject: CN=b87696707f5f4031ce8de567751c550a264e7c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fe:2a:09:f9:01:13:d5:c9:01:ed:d6:43:c7:
85:35:bc:41:9a:d1:83:7a:09:7d:db:ea:08:13:88:
b5:47:cc:82:b1:3e:2a:94:c7:1a:57:1f:b7:07:78:
8a:20:be:26:ff:44:24:47:32:6e:99:ba:9c:8a:16:
18:b6:6e:bb:56:29:ec:44:26:c2:80:1a:83:14:b5:
7a:9c:54:8e:b2:cf:17:a3:94:74:c2:9a:95:c5:56:
97:11:f6:ed:ea:fa:d6:48:0d:ef:3a:45:8c:b1:10:
32:83:66:c2:72:1c:9e:18:60:50:be:37:1a:83:d7:
14:32:fb:90:c0:d5:2a:8b:1d:d4:cf:d9:6d:19:87:
3f:4b:1a:49:3b:3f:2c:2b:c3:c4:1f:12:0e:69:f5:
af:b9:a5:6b:9c:e8:d0:92:57:41:1e:13:b0:c4:4f:
fb:63:81:b1:b8:cf:d8:3a:61:00:6b:3d:3f:46:84:
d8:c6:27:c1:62:7c:32:7d:6b:3e:61:1b:5d:23:8e:
63:28:5d:43:2a:0a:34:c5:65:2f:71:c1:f8:70:6f:
b4:09:33:2b:5e:87:32:40:3c:96:23:51:5d:68:8f:
41:22:25:1b:01:bb:aa:4a:c2:69:3f:0d:6f:2b:b4:
3e:33:26:48:ee:93:2e:a2:de:76:48:48:16:11:6e:
95:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:76:96:70:7F:5F:40:31:CE:8D:E5:67:75:1C:55:0A:26:4E:7C:07
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a6:dc:65:e2:1f:e0:e8:99:af:de:83:64:1d:2f:ef:19:81:
60:75:a7:64:bc:e9:b2:94:d6:6a:a6:32:13:d3:bc:b3:8c:1f:
0e:bd:18:10:43:ad:72:f0:c4:ff:fb:2b:50:da:14:a7:80:9d:
52:05:fe:e5:21:6a:2f:57:b8:7b:6d:02:3c:06:f6:99:9f:c8:
a9:b5:ef:fe:2d:d4:e2:72:55:75:17:7f:27:c1:73:48:b6:89:
7f:1a:3e:07:a1:c5:bf:9a:2f:a9:2b:f6:10:46:6a:ed:d9:15:
36:a4:09:5d:05:2e:8f:c3:67:10:73:49:05:49:de:bd:53:82:
b9:06:db:bd:83:b9:b3:b6:45:4c:2c:52:0d:97:4a:28:15:9a:
42:10:5e:d1:f4:af:fb:7e:37:08:4f:14:11:49:4b:fe:d9:cf:
cf:e3:fd:e7:fb:ba:2b:34:9e:3c:0c:27:6e:aa:62:79:0d:d2:
62:02:f9:4c:38:d4:55:60:b0:25:fb:28:67:b3:c8:b1:a3:49:
6e:cf:b1:4e:3e:27:9a:76:8e:e9:7f:55:ac:7a:1c:32:eb:a9:
41:d5:76:69:5a:25:43:36:5b:49:97:65:98:54:5d:7b:d2:60:
c0:90:06:09:ff:2a:85:cb:24:e4:e4:67:ce:a2:a9:dc:c6:c6:
36:9f:6d:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wcnchZ5ZUlsCDiNMn8jBSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy
NGM0MGYwHhcNMjYwNTE2MTEwMTA4WhcNMjYwNTE3MTEwMTA4WjAzMTEwLwYDVQQD
EyhiODc2OTY3MDdmNWY0MDMxY2U4ZGU1Njc3NTFjNTUwYTI2NGU3YzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqf4qCfkBE9XJAe3WQ8eFNbxBmtGD
egl92+oIE4i1R8yCsT4qlMcaVx+3B3iKIL4m/0QkRzJumbqcihYYtm67VinsRCbC
gBqDFLV6nFSOss8Xo5R0wpqVxVaXEfbt6vrWSA3vOkWMsRAyg2bCchyeGGBQvjca
g9cUMvuQwNUqix3Uz9ltGYc/SxpJOz8sK8PEHxIOafWvuaVrnOjQkldBHhOwxE/7
Y4GxuM/YOmEAaz0/RoTYxifBYnwyfWs+YRtdI45jKF1DKgo0xWUvccH4cG+0CTMr
XocyQDyWI1FdaI9BIiUbAbuqSsJpPw1vK7Q+MyZI7pMuot52SEgWEW6VuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLh2lnB/X0Axzo3lZ3UcVQomTnwHMB8GA1UdIwQY
MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt
ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2
LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe6bcZeIf
4OiZr96DZB0v7xmBYHWnZLzpspTWaqYyE9O8s4wfDr0YEEOtcvDE//srUNoUp4Cd
UgX+5SFqL1e4e20CPAb2mZ/IqbXv/i3U4nJVdRd/J8FzSLaJfxo+B6HFv5ovqSv2
EEZq7dkVNqQJXQUuj8NnEHNJBUnevVOCuQbbvYO5s7ZFTCxSDZdKKBWaQhBe0fSv
+343CE8UEUlL/tnPz+P95/u6KzSePAwnbqpieQ3SYgL5TDjUVWCwJfsoZ7PIsaNJ
bs+xTj4nmnaO6X9VrHocMuupQdV2aVolQzZbSZdlmFRde9JgwJAGCf8qhcsk5ORn
zqKp3MbGNp9t6g==
-----END CERTIFICATE-----
Generated at Sat May 16 19:32:25 2026 by rpki-client