Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: swUpANVFEyNITIViOfC8eKcKEd32reJbbybjxY+Ecmw=
Subject key identifier: 68:5F:79:A7:F8:E3:A4:BD:F8:CA:C9:53:FD:53:08:2D:7C:7B:2B:3B
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 71BD6E6A149D5D3E243C5A2BCA20D4356375F99D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 04DF
Signing time: Mon 10 Nov 2025 18:02:46 +0000
Manifest this update: Mon 10 Nov 2025 17:57:46 +0000
Manifest next update: Tue 11 Nov 2025 20:00:46 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: bZE7+SRcQxDSw50gjOqsOB10yaG9j7QwdZT5+a1YQu8=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 11 Nov 2025 20:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:bd:6e:6a:14:9d:5d:3e:24:3c:5a:2b:ca:20:d4:35:63:75:f9:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Nov 10 17:57:46 2025 GMT
Not After : Nov 11 20:00:46 2025 GMT
Subject: CN=685F79A7F8E3A4BDF8CAC953FD53082D7C7B2B3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b5:53:77:39:61:90:29:30:5d:2c:bc:59:e0:
ce:c3:d9:3d:de:a1:2c:e0:0f:25:ab:ec:cc:dd:31:
c8:4b:56:a1:c9:85:3d:29:b6:ac:01:e9:91:b7:5f:
8b:26:ec:11:c5:5d:61:fe:d6:b8:2c:58:13:66:4b:
e8:39:8c:d6:16:a1:6e:99:50:65:bb:e6:32:16:d9:
7b:5c:e9:e4:3d:e7:06:11:64:5e:9c:fa:82:18:02:
5a:0e:42:62:90:8c:47:26:fc:d7:be:3e:74:ed:e7:
f6:56:06:b0:2d:15:d4:a2:fd:35:1d:ec:44:f4:62:
ae:9c:aa:1e:aa:c6:f8:3d:0a:e8:54:e8:40:6d:61:
56:30:07:48:e0:d9:89:77:3c:86:9a:77:52:a1:e8:
fd:9b:e4:77:e7:0b:f8:03:17:90:eb:7d:ae:a0:cb:
a5:f2:2a:52:03:e0:fd:ab:60:69:64:5b:2d:dc:d4:
6c:b6:3c:44:df:5a:b1:eb:74:44:85:78:95:b7:04:
fc:c1:55:c5:32:b7:17:d8:f7:be:20:e1:97:ad:76:
a5:70:d9:69:1f:84:73:26:d5:f5:77:82:40:52:57:
e7:5c:e9:ab:be:0f:9c:7b:94:7a:8e:77:5b:f3:7e:
ab:01:70:c6:54:6a:df:4a:47:87:e4:ab:da:3e:98:
c5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5F:79:A7:F8:E3:A4:BD:F8:CA:C9:53:FD:53:08:2D:7C:7B:2B:3B
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:7d:23:08:3f:12:c2:7a:07:5e:26:4a:8f:03:9b:56:c1:da:
dd:b6:98:1b:3f:f0:bb:74:46:f3:8c:ef:17:4e:2a:d4:60:55:
73:71:07:4a:7d:83:f3:3a:60:9b:c8:a1:12:c9:1c:1d:19:2f:
29:32:d2:9e:48:1f:99:40:89:25:f3:bb:e4:9e:bd:3c:f8:41:
8a:d6:60:bd:c1:23:76:f0:53:10:bb:32:21:1d:02:5d:95:ce:
40:9f:50:53:e9:67:1c:f6:a0:fd:6e:06:6c:d5:ab:8d:88:40:
62:e6:5f:94:3b:a2:34:0e:4c:7f:5e:25:42:61:71:99:53:84:
ab:27:9e:cd:3a:17:20:50:1f:49:d1:93:49:f8:4d:54:2f:9d:
72:50:a9:c3:98:7c:39:24:1b:b1:50:5d:42:c5:86:fd:20:f9:
fd:fc:32:4b:56:b3:29:df:8e:82:54:d7:67:98:3c:2b:2a:3a:
ce:c4:3e:7e:f0:56:37:ab:14:96:20:0c:dd:98:74:74:d7:97:
f0:c2:0d:e1:c3:75:9a:bc:ae:90:77:f1:86:ea:b7:89:07:56:
ff:b2:5d:e7:01:27:43:70:64:0a:94:be:cb:8e:93:da:db:88:
35:06:67:17:f4:97:3d:b4:6b:e7:8c:d9:63:fe:3a:fc:28:de:
74:a9:0e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:40:51 2025 by rpki-client