Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: G+VEwA3l1ls8uroP90YkfJUOVa6Ie+/JgHwIOyCSE1U=
Subject key identifier: 5E:02:16:59:2E:48:9B:0D:6F:4E:D2:45:11:B3:5F:18:53:D6:5A:5B
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 4AC4BEB87D7178C7E105C2E1C2D1372C08A37AC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 059C
Signing time: Sat 28 Mar 2026 17:34:14 +0000
Manifest this update: Sat 28 Mar 2026 17:29:14 +0000
Manifest next update: Sun 29 Mar 2026 20:44:14 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 17t9GwADSO7Bbo5iB2KSt7VCp1hyHJJPzv6/h1durbM=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 20:44:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:c4:be:b8:7d:71:78:c7:e1:05:c2:e1:c2:d1:37:2c:08:a3:7a:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Mar 28 17:29:14 2026 GMT
Not After : Mar 29 20:44:14 2026 GMT
Subject: CN=5E0216592E489B0D6F4ED24511B35F1853D65A5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2e:a4:ab:7d:c2:07:3c:32:e6:fc:78:df:b7:
7c:8b:aa:bf:a0:fb:62:49:57:37:0f:22:7f:f7:c8:
39:cf:87:15:c6:2f:c8:bb:e4:82:bd:69:86:a5:08:
ff:b6:cd:f9:fa:6f:85:60:8c:80:e7:01:4b:e1:cc:
d9:0a:58:ed:c2:e5:54:e2:06:80:59:82:ce:5c:ae:
fb:02:de:47:aa:16:48:c3:da:1e:63:95:19:65:f0:
76:93:3f:29:4a:1e:57:0f:d8:22:1a:4f:a4:65:04:
4b:0b:d8:b7:12:2f:f7:33:f9:33:0b:25:62:60:1f:
8a:11:b5:fa:f3:09:4d:2d:8f:59:67:aa:89:9c:06:
c8:b6:74:ee:e2:ef:87:73:ab:77:fd:b1:c3:59:b4:
79:67:14:f3:29:47:77:18:bb:2d:eb:63:69:92:b4:
f6:73:ec:d9:13:9e:bc:6d:21:37:71:14:b4:d9:ba:
0e:b4:34:4c:49:02:84:b0:74:f7:26:e4:3f:c7:ab:
33:46:db:1d:f4:83:9f:ba:d3:04:4f:b2:f7:b7:26:
37:54:9e:8e:6f:c7:95:b4:95:36:45:94:21:c5:b2:
18:1f:f9:d4:20:9a:bd:7d:b3:ca:a2:78:8a:cd:b7:
5e:8c:f2:ea:4e:5f:ee:6c:1b:21:e8:fd:59:b0:88:
40:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:02:16:59:2E:48:9B:0D:6F:4E:D2:45:11:B3:5F:18:53:D6:5A:5B
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:03:9c:d0:a7:a9:71:61:9f:1e:cb:74:40:e6:dd:7a:94:4d:
14:9d:75:55:91:d4:87:65:78:79:52:31:80:58:4d:f0:e3:00:
bd:17:06:92:bf:02:14:df:96:e8:d9:df:48:fa:70:a8:f7:08:
f3:54:34:65:d6:14:49:6e:67:20:ef:55:4b:03:b8:31:c1:36:
38:a3:4d:23:ac:57:43:e4:2e:57:8f:f1:8d:ee:52:da:45:c2:
c4:94:a4:7d:2c:b1:fa:d8:89:b0:53:f8:f4:85:ae:b1:c9:a8:
f5:7b:ef:9f:48:51:17:e9:8d:69:bf:a8:d1:b2:fe:02:24:42:
2b:f0:ef:2f:0f:0b:0e:04:19:5c:5b:fe:fc:3d:7d:18:b2:c8:
03:44:57:01:dd:7b:8d:8a:8f:d5:d3:de:56:45:8e:7c:63:a3:
c1:8b:4d:25:cf:21:61:65:8f:14:6d:c8:e9:e1:c4:de:81:8e:
f8:a1:d6:ea:f0:a2:96:09:e9:e2:22:0b:74:c4:88:97:d6:43:
ab:df:f9:ff:17:1f:de:4a:51:c8:bc:e3:e6:31:71:e2:1a:bf:
eb:3d:bd:be:2e:af:6f:db:b8:03:66:34:47:19:79:b9:48:5c:
d1:25:93:21:93:6d:27:2f:88:03:50:d0:ff:45:00:2f:a6:79:
8e:2e:5a:15
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUSsS+uH1xeMfhBcLhwtE3LAijesMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNjAzMjgxNzI5MTRaFw0yNjAzMjkyMDQ0MTRaMDMxMTAvBgNV
BAMTKDVFMDIxNjU5MkU0ODlCMEQ2RjRFRDI0NTExQjM1RjE4NTNENjVBNUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdLqSrfcIHPDLm/Hjft3yLqr+g
+2JJVzcPIn/3yDnPhxXGL8i75IK9aYalCP+2zfn6b4VgjIDnAUvhzNkKWO3C5VTi
BoBZgs5crvsC3keqFkjD2h5jlRll8HaTPylKHlcP2CIaT6RlBEsL2LcSL/cz+TML
JWJgH4oRtfrzCU0tj1lnqomcBsi2dO7i74dzq3f9scNZtHlnFPMpR3cYuy3rY2mS
tPZz7NkTnrxtITdxFLTZug60NExJAoSwdPcm5D/HqzNG2x30g5+60wRPsve3JjdU
no5vx5W0lTZFlCHFshgf+dQgmr19s8qieIrNt16M8upOX+5sGyHo/VmwiECNAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUXgIWWS5Imw1vTtJFEbNfGFPWWlswHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArgOc0KepcWGfHst0QObd
epRNFJ11VZHUh2V4eVIxgFhN8OMAvRcGkr8CFN+W6NnfSPpwqPcI81Q0ZdYUSW5n
IO9VSwO4McE2OKNNI6xXQ+QuV4/xje5S2kXCxJSkfSyx+tiJsFP49IWuscmo9Xvv
n0hRF+mNab+o0bL+AiRCK/DvLw8LDgQZXFv+/D19GLLIA0RXAd17jYqP1dPeVkWO
fGOjwYtNJc8hYWWPFG3I6eHE3oGO+KHW6vCilgnp4iILdMSIl9ZDq9/5/xcf3kpR
yLzj5jFx4hq/6z29vi6vb9u4A2Y0Rxl5uUhc0SWTIZNtJy+IA1DQ/0UAL6Z5ji5a
FQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:49:23 2026 by rpki-client