Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: HfMxfmPcBGKBNWJXfLTtwVLvt9BpVrsCM9ekdRA7PbE=
Subject key identifier: 6F:AC:47:02:EA:E9:40:ED:FF:C1:1D:35:E1:3A:7C:31:C2:2C:A6:6C
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 1F89323B0E0AE99A8884BE33C0D48D7DFD14ACFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 045E
Signing time: Tue 05 Aug 2025 23:23:47 +0000
Manifest this update: Tue 05 Aug 2025 23:18:47 +0000
Manifest next update: Thu 07 Aug 2025 01:43:47 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: UqJw251MeQSzu+0t5CT1PogTTy7dTaBY9Lsku/GuIFI=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 01:43:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:89:32:3b:0e:0a:e9:9a:88:84:be:33:c0:d4:8d:7d:fd:14:ac:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Aug 5 23:18:47 2025 GMT
Not After : Aug 7 01:43:47 2025 GMT
Subject: CN=6FAC4702EAE940EDFFC11D35E13A7C31C22CA66C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f9:35:da:c8:96:78:65:de:1d:35:89:87:d0:
32:f3:d4:fe:81:1e:38:be:83:39:80:67:a3:44:b8:
64:1d:01:16:3f:e0:80:4b:5f:75:bf:77:25:eb:54:
be:2b:dc:a0:01:dd:be:b0:db:04:f8:b4:6f:18:f7:
f1:c8:50:2a:9f:fa:da:87:16:59:7c:58:02:f8:99:
1c:eb:22:e9:14:63:5e:b8:74:e5:c9:a8:bf:bf:6c:
fe:c1:bf:ab:51:e7:51:ee:28:9b:c4:7a:d3:1a:25:
74:3c:e5:2a:c2:cb:c2:8a:04:04:9d:1d:f3:86:bb:
47:d3:c3:21:d8:60:21:b9:41:12:b8:ed:c6:9a:84:
4a:d2:02:de:dd:5e:82:d1:69:38:44:72:ea:22:29:
47:fc:2a:ee:49:42:77:e3:13:e8:72:bc:75:77:53:
eb:5f:66:48:4f:b5:1f:34:3f:0b:d0:fa:08:e9:88:
3b:6c:7d:c0:a2:a8:c9:b4:a5:e9:75:a1:23:79:01:
d4:bd:60:7f:42:fd:72:db:0c:61:0f:44:2c:3f:5a:
8c:5a:b7:4d:a8:14:5e:16:b6:cf:23:c3:83:3c:9c:
14:87:a6:6b:18:e3:da:90:25:ef:b3:22:c9:2a:75:
02:24:59:c3:d8:60:36:32:97:b5:1d:68:16:33:30:
79:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:AC:47:02:EA:E9:40:ED:FF:C1:1D:35:E1:3A:7C:31:C2:2C:A6:6C
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:b1:1a:61:3e:bf:a5:f5:47:cf:9e:e0:13:e3:8b:7c:9e:04:
1d:ea:b4:b0:bd:d1:11:e6:b2:e5:95:05:d3:0c:87:f0:7c:5b:
e7:57:3a:a6:23:dc:c5:3f:c3:4b:fa:ec:28:79:7a:8b:db:75:
2d:d9:33:e5:8c:50:43:eb:9e:b2:f6:ec:64:d0:21:a6:3a:95:
3f:9e:c0:b4:76:73:73:2f:6f:47:b4:93:dc:52:61:7a:cc:7f:
e6:9c:24:97:27:f1:4d:26:20:0d:3b:97:9d:3f:eb:b9:15:f0:
32:7a:97:b9:19:c9:a1:0d:fe:dd:5f:8f:83:fb:3e:c0:8b:da:
96:2e:df:a9:04:10:31:c7:4d:36:d5:28:b2:6a:bb:97:4a:8f:
aa:43:ef:df:66:52:93:db:c8:5c:71:4f:51:9b:b0:18:7f:b4:
26:89:49:49:8e:61:d1:1e:fa:0e:6b:fe:f4:74:ef:34:b1:d4:
32:44:c8:28:ab:5e:49:b9:46:5e:3a:e1:51:3c:93:e6:75:70:
b1:b2:87:d3:a3:75:3c:59:76:6f:0c:e4:0e:3a:d6:9c:6a:56:
c1:7a:56:a1:f6:38:11:93:7f:1d:cf:50:c4:db:53:37:88:02:
a7:04:fb:dd:dc:b1:8b:da:9f:92:f2:fa:c7:c9:51:e7:90:10:
71:bd:6d:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:59 2025 by rpki-client