Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: MCbt1SLLgKH5AXqdJoYOdj9qnHkuCpSJwZonUCcgRdg=
Subject key identifier: 5A:7B:34:A0:DC:30:E3:B6:A9:AE:96:D0:7C:B1:12:DC:06:51:AC:93
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 4CD3FFF3EA734E70498BC5E4125848B76099E5D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0579
Signing time: Sun 01 Mar 2026 21:06:08 +0000
Manifest this update: Sun 01 Mar 2026 21:01:08 +0000
Manifest next update: Tue 03 Mar 2026 00:59:08 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 9foanTH8AHVVPFdGZmPJV/6lszm+6Y29FlYOE4HX1cE=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:d3:ff:f3:ea:73:4e:70:49:8b:c5:e4:12:58:48:b7:60:99:e5:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Mar 1 21:01:08 2026 GMT
Not After : Mar 3 00:59:08 2026 GMT
Subject: CN=5A7B34A0DC30E3B6A9AE96D07CB112DC0651AC93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:0d:be:fc:13:95:bd:83:d3:17:09:0d:9d:95:
f3:e8:14:25:04:30:04:67:d9:8f:52:a7:6d:b6:41:
ab:36:2c:19:97:a0:65:f0:37:e0:8f:a1:1d:c0:7a:
27:19:ce:df:ee:24:c9:f0:ed:2b:95:30:b8:e9:95:
67:15:72:3d:01:72:29:7b:59:45:6e:3c:ee:d2:ae:
1c:54:1e:ca:ec:2b:75:dd:6f:ce:7a:8d:91:61:80:
61:71:0f:40:47:eb:76:c6:fd:a3:97:81:70:6c:51:
50:7d:75:d2:1d:83:e7:4e:54:40:63:d1:3f:7c:9a:
39:e4:84:13:ec:de:d6:1c:de:e3:04:6e:d0:aa:50:
20:b0:74:0c:e1:16:4e:13:22:ff:60:a0:93:9e:96:
8d:29:17:cf:41:a6:c6:0e:db:39:d3:08:8f:e6:8a:
c7:48:97:e0:7b:62:db:65:10:0f:bb:64:0d:95:d0:
ec:65:91:0b:f1:6b:ef:73:f6:07:49:5e:b8:b5:58:
7c:87:5f:1e:03:e2:1a:5c:df:7f:4c:be:bd:6c:44:
de:d8:a5:ef:2e:71:9f:9d:c6:d2:e7:b0:47:85:8c:
2b:40:37:02:d7:27:34:39:12:8c:e8:7f:14:af:2d:
20:20:ed:65:1b:a6:08:87:30:27:d2:00:59:df:12:
b9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7B:34:A0:DC:30:E3:B6:A9:AE:96:D0:7C:B1:12:DC:06:51:AC:93
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:16:3b:10:31:99:e2:83:58:d2:d4:f2:70:51:22:59:0f:ea:
43:75:ec:1e:6d:21:d2:20:33:10:2a:95:3c:e0:a6:b6:12:70:
72:58:0d:6f:8b:10:34:d6:f3:31:21:ba:f3:f3:de:28:48:00:
5c:ee:be:a9:21:46:d0:c2:bd:94:ad:c6:5b:c1:56:10:6e:e8:
dd:31:68:ae:c0:f4:e4:62:cf:70:72:38:c5:fe:c2:5b:1a:4d:
36:28:e7:d6:33:c5:13:97:a2:21:85:2f:f9:0a:6f:1e:c0:92:
34:1d:10:24:50:30:cf:07:76:2a:4c:dd:3c:ed:6e:36:0b:1b:
99:b9:e4:c4:17:9d:9d:69:8f:40:58:f5:b9:3b:a4:d4:17:7e:
c6:62:2c:24:6b:08:57:45:4e:f1:90:b9:dc:f0:dd:64:15:82:
76:95:68:7c:39:f5:9f:55:c9:75:9e:b2:7d:38:e7:f9:07:fc:
86:b8:e9:ff:92:54:d6:20:fc:40:fc:aa:b4:42:8c:08:51:5e:
98:6b:59:f5:aa:1d:83:63:15:c9:40:ab:c5:be:7e:9e:ee:20:
96:15:3d:1c:a0:fa:5a:09:bc:0e:af:e0:c3:d5:f5:50:fb:d6:
6f:dc:78:11:28:5c:a6:68:16:5d:70:d1:4f:0d:05:33:e9:68:
8b:5c:71:a8
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUTNP/8+pzTnBJi8XkElhIt2CZ5dAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNjAzMDEyMTAxMDhaFw0yNjAzMDMwMDU5MDhaMDMxMTAvBgNV
BAMTKDVBN0IzNEEwREMzMEUzQjZBOUFFOTZEMDdDQjExMkRDMDY1MUFDOTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxDb78E5W9g9MXCQ2dlfPoFCUE
MARn2Y9Sp222Qas2LBmXoGXwN+CPoR3AeicZzt/uJMnw7SuVMLjplWcVcj0Bcil7
WUVuPO7SrhxUHsrsK3Xdb856jZFhgGFxD0BH63bG/aOXgXBsUVB9ddIdg+dOVEBj
0T98mjnkhBPs3tYc3uMEbtCqUCCwdAzhFk4TIv9goJOelo0pF89BpsYO2znTCI/m
isdIl+B7YttlEA+7ZA2V0OxlkQvxa+9z9gdJXri1WHyHXx4D4hpc339Mvr1sRN7Y
pe8ucZ+dxtLnsEeFjCtANwLXJzQ5EozofxSvLSAg7WUbpgiHMCfSAFnfErnVAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUWns0oNww47aprpbQfLES3AZRrJMwHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0xY7EDGZ4oNY0tTycFEi
WQ/qQ3XsHm0h0iAzECqVPOCmthJwclgNb4sQNNbzMSG68/PeKEgAXO6+qSFG0MK9
lK3GW8FWEG7o3TForsD05GLPcHI4xf7CWxpNNijn1jPFE5eiIYUv+QpvHsCSNB0Q
JFAwzwd2KkzdPO1uNgsbmbnkxBednWmPQFj1uTuk1Bd+xmIsJGsIV0VO8ZC53PDd
ZBWCdpVofDn1n1XJdZ6yfTjn+Qf8hrjp/5JU1iD8QPyqtEKMCFFemGtZ9aodg2MV
yUCrxb5+nu4glhU9HKD6Wgm8Dq/gw9X1UPvWb9x4EShcpmgWXXDRTw0FM+loi1xx
qA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:50:21 2026 by rpki-client