Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: C/CiRFer2ujGic208EvTyHpmJXkfdARPDiVwMvV00sE=
Subject key identifier: 0C:94:AD:6E:6A:09:59:66:39:39:E9:11:3D:21:A4:F7:F9:35:12:B1
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 2B2783DCF6E45EF46E958ACEF6E9E0D0345185FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 03C8
Signing time: Fri 18 Apr 2025 21:14:10 +0000
Manifest this update: Fri 18 Apr 2025 21:09:10 +0000
Manifest next update: Sat 19 Apr 2025 22:25:10 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: oA2Iqt+eMs4KjxyP6Z7sLM7e+vnsE+4pSvLoxy63LY4=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:27:83:dc:f6:e4:5e:f4:6e:95:8a:ce:f6:e9:e0:d0:34:51:85:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Apr 18 21:09:10 2025 GMT
Not After : Apr 19 22:25:10 2025 GMT
Subject: CN=0C94AD6E6A0959663939E9113D21A4F7F93512B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:52:36:70:f8:d5:4c:92:65:82:75:92:80:05:
48:d7:e9:60:9e:06:b6:7b:46:67:6a:23:f0:9b:93:
70:7a:47:5b:92:dc:37:16:b7:b5:55:3b:81:1f:c3:
a7:bb:b6:9b:a1:8b:b5:b8:ed:e3:58:24:e5:d2:a3:
7b:49:0a:3a:b5:92:79:1e:c7:5c:09:e3:48:b2:b2:
59:d0:58:50:05:31:81:e4:f4:c6:3d:dd:95:22:7d:
5d:a9:a5:c8:d5:fc:60:c1:35:f8:a1:6f:44:32:9f:
38:93:e5:c0:0d:d4:52:5b:4e:95:12:50:3e:74:28:
f2:bd:87:5b:1f:16:85:fe:c2:7e:35:ed:d4:64:36:
21:bf:9f:0e:48:95:cd:86:51:4a:18:ce:dd:1c:9b:
3f:67:c4:21:85:57:d9:0e:67:e7:62:ff:31:91:3a:
72:d8:b3:71:26:86:15:c2:e3:d8:41:49:d1:80:0a:
c7:79:7d:75:8c:e9:68:f4:f4:e8:7d:e1:07:e4:11:
09:0e:70:84:19:b2:b9:50:91:7b:77:d2:0e:d2:93:
6b:4c:1b:90:42:99:01:45:0e:54:3c:07:c5:97:87:
04:99:ab:05:5c:4d:bb:95:b4:41:b6:41:d4:51:87:
29:90:9f:9a:94:90:80:29:9e:05:1b:e8:2c:87:06:
ff:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:94:AD:6E:6A:09:59:66:39:39:E9:11:3D:21:A4:F7:F9:35:12:B1
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:e5:7e:d1:c1:f7:c4:ab:4a:9c:3c:31:d6:31:7b:7d:c1:93:
94:c3:11:49:3d:37:b5:13:6d:cb:7a:3b:ba:45:7c:5c:35:0a:
58:51:bf:50:c4:84:f7:48:4d:d4:95:93:34:91:fc:e1:29:c4:
18:4a:5e:c6:f0:69:ba:73:bf:19:3e:39:d7:c8:65:eb:ab:5a:
c0:5b:5c:83:b9:c5:34:47:be:47:b4:ce:d6:08:93:c6:84:8b:
48:19:20:1e:d0:9a:b7:ab:73:a3:7e:b5:90:9b:c7:7a:d2:18:
0c:80:e0:f1:a0:ea:be:67:4a:d0:04:a1:97:1d:fa:0f:4e:88:
11:2f:b4:d0:ab:f6:65:6d:ee:01:bc:1d:91:77:b4:2a:4b:13:
b6:5e:ac:d7:17:54:ce:56:e5:61:fb:26:58:ba:e1:18:ea:3e:
f0:6d:99:ed:8a:a9:bc:1d:a5:b9:77:f9:e2:43:d4:b1:1d:60:
ee:69:2e:80:c3:91:ef:3b:df:f8:7e:57:72:bf:13:44:0f:1f:
33:62:c1:46:39:ce:3b:8d:75:08:b2:1c:5e:bc:22:bb:01:1a:
ff:ee:16:c8:2b:e7:9f:9f:7a:10:74:ee:7f:57:7c:1a:e9:31:
8d:ce:93:c9:63:fe:3c:5d:cd:cd:0c:5c:bf:0e:60:64:77:a6:
c2:be:68:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:46:22 2025 by rpki-client