Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: f9lV0cvBKQwN8mc6mavTaKopmRWAjxbG6yzN/S+s6ZY=
Subject key identifier: B5:DB:E6:67:A8:0C:A8:C1:A8:3C:90:81:F3:B9:22:D4:C9:24:BA:DD
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 5A45FEE6D48294206442966741E64FA6AAEB68F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0488
Signing time: Sat 06 Sep 2025 22:01:55 +0000
Manifest this update: Sat 06 Sep 2025 21:56:55 +0000
Manifest next update: Sun 07 Sep 2025 22:49:55 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: tiUNJ9QKXJbSiyk2O3wUxo5isaKQKYyReEUsMAELzC8=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Sep 2025 22:49:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:45:fe:e6:d4:82:94:20:64:42:96:67:41:e6:4f:a6:aa:eb:68:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Sep 6 21:56:55 2025 GMT
Not After : Sep 7 22:49:55 2025 GMT
Subject: CN=B5DBE667A80CA8C1A83C9081F3B922D4C924BADD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:f6:b5:6e:6b:37:d4:79:b2:de:51:5d:11:
0f:18:e1:9a:43:8d:b1:5a:31:c6:ed:e1:26:5a:66:
4b:1c:92:97:dd:df:a9:f3:67:0d:98:e5:a3:1f:85:
14:2f:f2:f7:29:77:d9:21:c0:c9:f5:14:f3:cd:aa:
59:f3:ac:f9:89:b8:9f:cd:19:09:85:ad:7c:27:2d:
4f:69:4b:ba:e6:e1:31:94:be:34:5a:0e:ae:8c:fe:
37:a6:d9:6a:97:dc:e9:c2:a8:e0:a3:b9:ea:96:ff:
fe:97:7f:8a:3a:5c:24:00:cb:4d:e9:d8:f0:cc:bf:
72:b6:b3:18:2d:f7:94:4d:6b:c2:2a:d9:42:10:e6:
71:84:2f:b0:4f:73:33:0a:5b:30:37:6b:2b:f2:69:
80:5e:5f:52:50:38:2d:90:51:a3:36:93:40:1c:7e:
b1:5c:09:2c:f5:5f:7f:8c:7b:42:3d:f1:a1:af:60:
0b:e9:a6:3d:04:d8:b0:5e:10:18:58:00:9e:57:be:
bc:30:d0:c9:74:1c:8e:71:c5:aa:35:27:ca:4c:68:
a7:14:32:a6:22:56:f2:fe:33:89:4e:3e:99:c9:df:
9f:ea:39:ea:4e:96:58:88:60:14:b6:16:e6:b9:42:
f4:6e:22:d6:48:43:75:18:60:49:e9:00:7d:37:5e:
76:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DB:E6:67:A8:0C:A8:C1:A8:3C:90:81:F3:B9:22:D4:C9:24:BA:DD
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:0b:86:08:3a:40:0c:3b:06:09:4a:87:73:be:f7:e4:91:a4:
4b:03:4d:b6:eb:4b:47:87:dc:f1:cd:ad:e7:03:bf:58:5e:1f:
b2:f4:7c:b1:2d:d0:74:03:6e:60:18:41:e8:b8:57:a2:be:00:
68:66:cd:84:90:c9:eb:9e:11:6e:a6:e8:57:8d:24:cf:ad:30:
dd:00:d8:db:4a:a9:ba:c3:0e:94:7c:a2:8f:5a:c2:06:68:f5:
91:00:e8:b7:24:c1:d7:54:93:ef:c7:66:cc:2b:33:11:bc:4f:
d1:c8:54:86:ee:3f:b4:a8:4d:4a:1e:79:71:0e:09:b7:ba:39:
ca:c7:0f:3a:05:c6:3f:96:05:92:39:28:d6:67:a4:16:62:c1:
c6:16:6d:1e:73:cf:84:45:cc:49:a3:92:bd:04:c0:ea:59:5f:
eb:71:5b:9a:3a:fb:16:a1:98:e4:9b:5a:9b:82:5f:da:21:58:
3f:9b:a6:bd:26:07:43:bd:62:52:75:e8:0f:b9:06:bd:99:55:
df:62:37:a4:91:46:73:e9:8a:ba:7d:78:75:1d:4c:3f:6c:52:
7e:50:67:c3:dc:f4:5e:9a:a1:9b:2e:55:f2:31:22:2d:73:35:
15:68:66:0d:97:c9:58:ef:a2:60:d2:9e:48:36:ca:a8:4a:f5:
b7:48:e3:cb
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUWkX+5tSClCBkQpZnQeZPpqrraPIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNTA5MDYyMTU2NTVaFw0yNTA5MDcyMjQ5NTVaMDMxMTAvBgNV
BAMTKEI1REJFNjY3QTgwQ0E4QzFBODNDOTA4MUYzQjkyMkQ0QzkyNEJBREQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz0fa1bms31Hmy3lFdEQ8Y4ZpD
jbFaMcbt4SZaZksckpfd36nzZw2Y5aMfhRQv8vcpd9khwMn1FPPNqlnzrPmJuJ/N
GQmFrXwnLU9pS7rm4TGUvjRaDq6M/jem2WqX3OnCqOCjueqW//6Xf4o6XCQAy03p
2PDMv3K2sxgt95RNa8Iq2UIQ5nGEL7BPczMKWzA3ayvyaYBeX1JQOC2QUaM2k0Ac
frFcCSz1X3+Me0I98aGvYAvppj0E2LBeEBhYAJ5Xvrww0Ml0HI5xxao1J8pMaKcU
MqYiVvL+M4lOPpnJ35/qOepOlliIYBS2Fua5QvRuItZIQ3UYYEnpAH03XnZtAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUtdvmZ6gMqMGoPJCB87ki1Mkkut0wHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqQuGCDpADDsGCUqHc773
5JGkSwNNtutLR4fc8c2t5wO/WF4fsvR8sS3QdANuYBhB6LhXor4AaGbNhJDJ654R
bqboV40kz60w3QDY20qpusMOlHyij1rCBmj1kQDotyTB11ST78dmzCszEbxP0chU
hu4/tKhNSh55cQ4Jt7o5yscPOgXGP5YFkjko1mekFmLBxhZtHnPPhEXMSaOSvQTA
6llf63Fbmjr7FqGY5Jtam4Jf2iFYP5umvSYHQ71iUnXoD7kGvZlV32I3pJFGc+mK
un14dR1MP2xSflBnw9z0Xpqhmy5V8jEiLXM1FWhmDZfJWO+iYNKeSDbKqEr1t0jj
yw==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:31 2025 by rpki-client