Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: cXcqNsxJnMDRs9EKMgYWZP5b+pj2zSBYLEGLuRpC8bM=
Subject key identifier: 88:D6:59:7F:41:24:0F:9A:77:0E:4D:44:F0:0A:E3:C6:6D:4A:B7:7D
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 6C530E07D894F1674CCD692CB2D09274706516BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0415
Signing time: Sat 14 Jun 2025 22:48:47 +0000
Manifest this update: Sat 14 Jun 2025 22:43:47 +0000
Manifest next update: Mon 16 Jun 2025 01:02:47 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 9KtBjUKAOYOSR4tUYUJeY6J3svm8Gi2aaOi0DZ7Qag0=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:53:0e:07:d8:94:f1:67:4c:cd:69:2c:b2:d0:92:74:70:65:16:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Jun 14 22:43:47 2025 GMT
Not After : Jun 16 01:02:47 2025 GMT
Subject: CN=88D6597F41240F9A770E4D44F00AE3C66D4AB77D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:93:27:a1:83:0f:fb:8d:45:41:91:09:4f:c1:
13:cf:d2:bb:92:f6:90:14:b9:db:91:1d:db:85:a7:
f0:0a:ab:e3:f4:8e:a2:90:21:ef:eb:e6:61:2f:56:
37:dd:5d:b0:84:02:98:40:4d:86:78:6f:79:60:84:
0a:a6:02:ce:96:f3:c9:31:73:31:7d:a0:24:43:e6:
6e:f1:5d:52:d7:65:94:36:12:85:c5:84:30:b6:00:
56:97:b6:4c:92:48:00:62:62:b7:f7:05:94:31:17:
d6:63:69:1c:a7:56:5b:11:b5:4c:1f:14:72:ce:0d:
17:50:00:cd:46:e5:77:ca:30:5a:00:17:94:1d:69:
34:85:6b:61:44:4b:f2:79:ee:df:5b:a1:80:f9:20:
37:0e:0e:03:f7:e4:58:46:d0:9a:5a:a7:37:a5:33:
cb:9d:7e:46:e2:4e:7a:89:24:af:ce:a8:73:6e:36:
0e:1d:1d:a6:82:85:a0:48:55:c7:99:c5:7b:ac:a4:
77:40:f6:de:13:95:62:a4:dc:87:1e:20:c5:b0:df:
d6:63:16:1e:ae:6a:e7:6d:79:d8:58:b2:a5:ed:d4:
63:0e:d8:a1:85:8a:b8:0f:6e:e8:4f:aa:ec:71:1f:
3e:89:e0:8b:4d:04:c8:b9:ae:0e:90:b4:74:28:d7:
e2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:D6:59:7F:41:24:0F:9A:77:0E:4D:44:F0:0A:E3:C6:6D:4A:B7:7D
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:58:45:c2:9f:46:41:18:2c:d0:71:e4:90:6e:93:d1:d5:d9:
11:a0:7f:4e:ef:0a:a1:82:76:dd:5d:51:be:bf:ba:c1:c5:e9:
b2:b9:dc:77:98:1f:68:39:f6:7a:aa:4b:7d:f5:2f:bc:60:8b:
ac:d8:dc:00:30:ce:63:63:e0:2a:4b:be:52:95:43:f7:da:9e:
7a:cc:59:27:07:e9:b7:4c:f6:8b:e9:62:09:de:1e:ac:52:5e:
a5:73:3c:06:e5:72:6e:b2:7d:b3:a9:61:79:b1:09:23:a5:63:
51:5e:78:e9:0a:e8:f9:46:bc:85:6e:55:d9:e1:e1:03:97:73:
54:dc:24:1e:21:5a:41:2b:e2:4d:79:c2:da:c6:94:7f:68:14:
af:d8:96:bb:49:3f:e7:cc:38:33:ed:0a:2e:04:83:e2:72:0b:
5c:d4:ee:38:8d:9a:f4:0a:99:0a:26:4f:f2:08:1b:2d:fe:3c:
0c:aa:8a:60:7f:73:ca:68:a9:54:f0:c0:2f:6c:31:01:1d:7f:
24:f8:8e:ed:91:1a:c4:2c:fd:21:32:58:6b:a9:2b:72:14:d0:
ec:34:dd:83:3b:00:01:08:04:a7:22:55:2b:7a:e2:88:59:89:
2a:06:24:06:55:66:ec:40:45:7b:ed:58:59:3a:e3:62:71:56:
e3:e9:a0:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 08:56:54 2025 by rpki-client