Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: JYAg6uMgbzdUCl8AA12As0Y6bR2lx2TWhI64C1isUQc=
Subject key identifier: 0C:59:A5:1E:76:1A:D1:2B:4E:4A:4D:F2:3E:5C:90:C8:C1:E9:5E:C9
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 2CD5DFCE156D36D2D59972DABCBB199AB25BFBB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 04D7
Signing time: Tue 04 Nov 2025 14:57:34 +0000
Manifest this update: Tue 04 Nov 2025 14:52:34 +0000
Manifest next update: Wed 05 Nov 2025 18:15:34 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: jR8iCbdpY1LUtRSpKAca8IbGJmpCTQ8zV6qeSb/m6Qk=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 18:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:d5:df:ce:15:6d:36:d2:d5:99:72:da:bc:bb:19:9a:b2:5b:fb:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Nov 4 14:52:34 2025 GMT
Not After : Nov 5 18:15:34 2025 GMT
Subject: CN=0C59A51E761AD12B4E4A4DF23E5C90C8C1E95EC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:fb:be:4c:cc:ca:e5:bf:6b:d4:ec:e7:5b:c3:
58:e7:c1:2c:b9:ec:0e:72:a7:46:6e:17:34:ed:4f:
9b:7e:cd:1c:0a:7b:6d:af:38:bc:02:e9:6e:92:6d:
9b:17:1a:b6:02:2c:98:a2:ef:df:27:08:f9:6b:e2:
41:5b:d7:52:8f:61:2d:03:b3:d9:b7:61:97:83:46:
5d:01:2c:1a:a0:70:0f:7a:df:c6:6b:e1:e3:62:da:
06:96:34:83:28:0d:65:68:88:89:ea:51:53:46:93:
94:c0:4a:a9:93:09:28:5f:73:a8:a8:0e:e7:1c:bc:
79:32:5c:d1:44:e3:e9:82:e2:7c:c2:68:6d:b4:3b:
62:e2:1d:e7:13:bf:9f:a0:27:6f:c0:1d:c2:8c:71:
1b:8e:83:3b:37:a6:d6:ab:2e:d2:f4:a2:06:7e:d1:
a9:5e:03:cd:c6:08:49:e2:c0:96:33:35:18:58:c3:
92:bc:ce:b7:c3:63:9d:be:e7:6c:38:13:fc:84:ed:
9e:ca:e6:8f:56:58:1f:ae:ce:58:c9:4f:13:6a:2a:
3a:33:e8:ef:4e:ce:a8:92:dc:49:41:57:aa:8a:0d:
4d:e1:5f:94:03:c5:71:e3:65:52:a0:64:2b:f7:b9:
5f:1a:ae:20:ad:9e:61:e3:57:ef:7b:bf:f7:d1:36:
1f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:59:A5:1E:76:1A:D1:2B:4E:4A:4D:F2:3E:5C:90:C8:C1:E9:5E:C9
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:a4:e8:de:c3:3c:47:e1:cd:de:4d:ba:ca:ca:19:d5:1b:fc:
93:6f:f2:37:be:87:b9:2e:f3:32:5e:33:68:45:ff:c4:33:21:
73:cf:d6:91:31:dc:3c:72:8d:a5:59:78:50:08:d8:fe:9f:46:
2e:ab:4c:6d:71:99:b7:c2:01:95:5e:5a:38:c2:e0:a5:20:3d:
b2:9d:92:39:65:83:af:b5:8b:82:2d:18:69:70:96:42:a0:b9:
ad:17:a7:4e:23:18:67:b8:79:64:5a:ae:e0:fe:cf:3e:cf:de:
8a:cc:07:03:23:19:6b:62:21:28:5d:5a:5a:c3:b7:56:3d:c0:
a7:0c:b1:3c:aa:00:51:0e:67:13:c4:14:fe:44:3d:22:58:71:
9f:75:53:85:4c:80:36:9d:10:ee:2b:ca:91:38:c9:be:8b:fa:
60:6c:d5:af:15:33:af:e2:31:52:0d:2f:0e:cc:5d:16:02:a0:
48:99:b2:a9:69:c2:4f:69:1c:01:88:01:7c:0c:f4:e4:36:30:
50:4d:33:4e:62:66:47:61:9b:e2:71:3d:00:79:2c:cd:4a:4b:
b7:ff:18:cc:06:cc:98:79:31:91:c5:b4:25:09:12:ca:bb:90:
6f:f9:4e:7e:16:2d:58:5c:17:e5:5a:93:37:f5:86:6a:9c:83:
b6:e0:30:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:48:35 2025 by rpki-client