Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: 4Rj/wW5ZhpAgpgQZD6ovoR357GLLh/LWnv35PCSO6/w=
Subject key identifier: A2:BC:E3:CA:C1:0C:AF:E2:33:15:A3:05:59:DE:8D:4A:4A:40:18:3D
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 019A4C2A164E9C3011F8648299201C8B9049
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 08B6
Signing time: Tue 04 Nov 2025 00:00:17 +0000
Manifest this update: Tue 04 Nov 2025 00:00:17 +0000
Manifest next update: Wed 05 Nov 2025 00:00:17 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: fqss+7zge9S+XgO9mmpesCY+TPCWdP3np6Gt3CvySoA=)
2: nHuVyjc3KMoSX7dk6oCcJzZC7yI.roa (hash: 8kNlY4DAN29iBV2YoNVORKEQ7cx+NbbKiFTFq2jo6ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4c:2a:16:4e:9c:30:11:f8:64:82:99:20:1c:8b:90:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Nov 4 00:00:17 2025 GMT
Not After : Nov 5 00:00:17 2025 GMT
Subject: CN=a2bce3cac10cafe23315a30559de8d4a4a40183d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:57:22:02:0f:4b:50:78:ac:c7:87:d1:ae:c2:
01:b4:87:fe:00:46:a9:ad:44:73:05:f1:40:af:9d:
de:16:58:ca:2d:a8:22:72:ec:48:87:29:1b:89:6e:
53:5d:f3:3e:47:26:6c:c6:e7:25:82:19:06:30:8a:
9a:a5:c0:a4:9d:ed:1f:65:9f:67:fe:74:4d:cb:80:
68:3f:76:4d:b5:48:31:fa:21:4c:b4:95:04:16:8d:
c9:31:92:5e:68:49:37:a9:f1:2d:b5:a4:3a:c6:93:
f2:ca:54:49:9e:70:83:13:b0:72:8d:27:ec:52:c6:
9d:e7:73:cf:ab:e4:bb:c1:e7:64:99:36:82:a1:8d:
bc:0d:2d:3e:54:e6:6f:19:64:fd:61:80:79:96:92:
fb:15:87:c7:0b:a4:7b:92:84:5b:bc:0e:ba:86:fb:
6d:e3:2a:82:27:a1:85:1a:45:6c:61:fa:6d:79:4a:
32:6c:e8:09:80:28:c1:06:62:27:d5:8c:6c:71:86:
10:14:db:b9:41:71:a6:e5:9d:49:e7:2c:d8:3f:31:
21:c0:17:51:1e:4b:1d:d0:23:f6:68:5a:de:16:17:
49:14:84:76:97:01:f9:7f:e6:7b:39:74:40:78:f8:
b5:cf:c5:24:d2:08:cf:da:bc:3b:56:e1:0f:74:cc:
c8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BC:E3:CA:C1:0C:AF:E2:33:15:A3:05:59:DE:8D:4A:4A:40:18:3D
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:8a:39:3e:1d:d5:5e:0d:d8:1b:58:bc:07:af:0d:f9:f6:f3:
19:c3:73:21:7d:4d:54:c1:07:0a:2e:6a:b4:d9:79:7e:6d:32:
c1:17:94:21:7a:dc:1d:3e:08:f2:dc:c7:2d:69:98:9d:c6:d5:
c2:d3:7f:cb:e6:30:3a:8b:f3:07:9c:74:9a:7e:ee:0d:68:62:
90:c5:5d:38:0b:20:d3:58:1a:15:4e:6f:3e:bf:f6:ab:63:47:
a5:43:b2:7b:c1:99:12:05:07:4c:8f:36:18:1e:21:64:8c:f8:
ce:47:d2:11:ce:48:c8:66:8e:93:3f:12:20:9b:f8:29:0c:21:
86:bd:b6:ea:c2:49:f1:47:41:ef:ff:94:ad:4e:b5:63:3b:ac:
e6:4b:70:a3:57:dd:eb:93:6f:f4:6b:0c:89:45:0e:5f:70:c2:
bd:39:bd:b2:6c:76:76:fd:96:90:7b:4b:b7:19:e4:11:2b:34:
e0:61:08:25:4b:5c:5b:d3:71:c3:05:4f:e4:0d:c8:c6:39:4e:
38:77:57:d1:2e:46:ea:36:ca:7d:27:ee:72:6a:69:76:ab:f0:
c0:6e:10:50:ee:3a:0c:e2:1c:33:a6:f6:84:ef:27:a1:5f:97:
9f:77:74:12:87:8a:6a:df:93:1b:2d:97:f7:8d:76:a3:01:d5:
ac:5e:40:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 08:59:52 2025 by rpki-client