Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: gfbp+c+62R+xSKxOQK5PR9joz07BDaJIUl6FtR+Mjyc=
Subject key identifier: F0:65:BC:6A:A6:0D:99:41:7E:A4:CB:22:B3:20:33:8A:8B:BA:4B:4A
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 550BA65C38255F4CB85EC4CD5F376E3CA7FF1150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0409
Signing time: Fri 06 Jun 2025 06:38:26 +0000
Manifest this update: Fri 06 Jun 2025 06:33:26 +0000
Manifest next update: Sat 07 Jun 2025 07:28:26 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: T1mKG1vV/qxmPTMvx0uQHC06LEknDqpjH/KolnKRyfA=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 07:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:0b:a6:5c:38:25:5f:4c:b8:5e:c4:cd:5f:37:6e:3c:a7:ff:11:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Jun 6 06:33:26 2025 GMT
Not After : Jun 7 07:28:26 2025 GMT
Subject: CN=F065BC6AA60D99417EA4CB22B320338A8BBA4B4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:42:60:af:cd:16:c7:12:7d:49:96:ca:90:64:
f0:f1:c6:95:8f:a9:e8:93:5c:ed:72:29:ba:a5:28:
77:f6:f2:86:b5:ae:62:dd:db:aa:80:d5:06:86:3a:
37:01:26:e4:6c:fb:bb:80:08:04:09:92:46:3c:22:
29:a2:81:c6:a0:d4:d6:2d:42:88:95:fc:a6:46:ff:
b5:0a:83:de:ee:f5:9d:7f:04:10:be:09:0c:f0:0c:
34:76:1d:09:4b:da:98:fe:d3:c4:fe:42:88:ca:37:
2b:84:de:a7:1b:c7:a8:42:54:48:b6:6d:6b:1b:22:
5d:d9:3a:19:5d:c2:3a:7b:fa:fe:fb:86:36:a5:d1:
74:db:a0:e2:a9:d0:59:a8:a5:83:fb:ee:9e:b9:fb:
e4:41:3e:e5:dc:5c:d9:1e:17:0e:e7:c6:09:23:66:
62:f6:20:a1:12:15:ce:48:88:03:fd:85:3c:b3:10:
af:15:5f:c3:19:51:11:8f:83:af:a4:07:20:5c:0c:
ec:71:08:94:9a:3c:97:81:03:28:01:5b:e9:1c:f2:
f4:53:ed:6b:9d:e4:e5:c0:3a:39:c6:fd:7a:9a:6f:
52:67:c9:e9:50:10:fe:13:0f:8c:7e:fc:d2:ac:31:
39:cc:ba:7f:14:75:c3:d9:68:5a:c4:de:e0:c5:a8:
16:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:65:BC:6A:A6:0D:99:41:7E:A4:CB:22:B3:20:33:8A:8B:BA:4B:4A
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:56:f2:f9:24:32:bc:03:7a:f6:98:80:01:63:1a:41:c1:76:
93:d8:41:f1:c3:47:d1:f3:ba:28:bf:ef:00:01:5f:41:73:d1:
8f:ea:a4:55:3b:40:f4:a8:48:3d:b9:e7:85:84:68:b4:06:ab:
46:9f:41:94:1a:8a:1b:06:30:3e:43:75:9f:3a:c0:ff:41:a3:
fb:17:23:48:7d:f5:99:d4:2a:c5:71:8f:fd:f8:c4:e3:b5:fb:
46:13:e9:aa:ab:2b:4a:8f:0b:2b:a8:91:eb:d2:2c:56:82:d1:
4c:d3:e3:c6:6d:5c:18:28:26:1a:02:b8:40:69:06:80:36:47:
b3:b4:d2:bb:f8:a6:85:09:2d:31:59:6b:c6:aa:63:f2:b0:aa:
0e:2b:07:ae:3b:eb:8d:de:09:47:ea:48:b3:8a:bf:62:ff:62:
72:5b:42:14:2a:29:30:da:11:97:ff:64:c4:1c:36:93:11:6d:
21:d9:a3:46:ee:56:79:b2:f9:ab:a8:1d:d8:38:f7:41:57:3d:
ec:90:db:03:9d:c4:6f:27:6d:73:bc:24:af:a5:41:a7:72:a3:
43:b4:4a:a0:c6:78:9b:6a:bc:fb:da:e6:ae:03:d3:4c:4c:6f:
53:6f:d7:d7:0e:70:01:e8:5e:41:c4:e9:fb:9f:00:8a:7f:3a:
07:fa:ad:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 22:36:17 2025 by rpki-client