Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: QkJxQ+Au9nVqhM+bE6KRkDB87QK1xvo/r+elnV691f8=
Subject key identifier: 0F:06:23:B5:A3:FE:56:18:16:02:A1:C0:EA:25:0D:BA:09:9B:F4:AA
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 56B2A7557731C9B77DC7B748663AB4B100938757
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 05B5
Signing time: Thu 16 Apr 2026 12:49:19 +0000
Manifest this update: Thu 16 Apr 2026 12:44:19 +0000
Manifest next update: Fri 17 Apr 2026 13:08:19 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 62u+wGEX2RVfYWPlgMrexFAJQuGI7ytHDc/wZann2iA=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 13:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:b2:a7:55:77:31:c9:b7:7d:c7:b7:48:66:3a:b4:b1:00:93:87:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Apr 16 12:44:19 2026 GMT
Not After : Apr 17 13:08:19 2026 GMT
Subject: CN=0F0623B5A3FE56181602A1C0EA250DBA099BF4AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5a:69:30:26:35:9c:d5:50:30:0c:b2:c7:97:
34:43:37:e5:20:89:0e:68:97:f9:bf:65:4f:4e:2b:
50:69:b0:9e:f5:63:6c:d3:dd:03:c8:ac:5d:c4:18:
ee:0b:49:5e:2b:1c:9d:e5:de:a6:a1:98:e4:c0:fa:
51:3d:c3:15:ad:53:6b:9d:7a:06:bb:31:53:6c:80:
0a:a8:ec:99:b3:d3:56:09:a7:21:72:59:1e:b4:fa:
12:c7:3e:57:71:62:e7:b5:1d:e3:3a:7b:93:c1:eb:
fe:59:88:05:36:35:ad:1a:84:0e:b2:37:e6:02:4a:
ee:bc:53:c6:e8:a0:d6:a0:a1:ea:6d:68:d0:82:1b:
0b:75:31:00:a0:b9:66:90:1d:8c:63:b3:e6:d0:10:
b1:bc:3d:e6:a0:f3:20:81:c5:fc:7a:8b:91:21:6f:
32:57:6a:3e:7e:be:46:e9:d5:e8:57:2c:f3:b4:aa:
77:c0:4c:94:2a:6c:1c:f7:aa:0e:dd:2f:6d:13:1c:
1a:d0:5c:90:64:4f:bc:b3:53:c1:d2:fa:21:c9:db:
a0:be:f7:65:96:e7:11:b0:4a:d6:f0:0a:7b:fb:69:
82:ec:e2:71:04:de:b8:28:bc:9b:96:bc:0f:17:20:
b6:c3:ca:6e:6c:03:ea:30:db:58:c9:34:3c:d7:d5:
b3:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:06:23:B5:A3:FE:56:18:16:02:A1:C0:EA:25:0D:BA:09:9B:F4:AA
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:fb:8c:6c:d4:fc:c6:48:da:de:2d:6a:cd:5e:af:22:06:98:
b3:e4:4b:75:31:99:a3:3b:df:9c:ca:e0:1d:1e:d5:21:36:b6:
38:73:91:87:b4:cd:c7:b8:1f:53:b6:83:55:d2:97:ad:00:aa:
17:62:ff:76:bc:09:c7:6b:3f:9a:f4:15:8a:f5:55:38:ec:c3:
e5:e1:ab:e5:62:29:95:87:de:a8:b9:51:6e:5d:6a:91:bc:33:
c2:32:a0:2a:0a:69:fc:46:e2:82:00:ab:e8:44:7c:9f:05:e7:
40:d8:ae:ae:fa:aa:20:1e:35:60:61:b8:2d:14:fc:5c:68:3c:
4a:af:3d:ea:25:3a:80:6e:e8:d4:65:de:40:b8:ad:c0:cd:44:
68:3f:45:c2:15:2a:3f:e3:e7:37:53:c3:d5:ea:d9:77:2f:1a:
ae:81:d8:ab:87:b2:21:c6:3e:e7:c3:72:ba:19:59:1a:bb:f2:
6d:0e:03:cb:ad:73:40:7b:d6:bd:6e:b8:c4:32:10:17:04:bd:
fd:42:6c:c3:30:28:e1:00:89:74:51:ed:a0:9f:9d:93:7c:9c:
70:d0:82:d7:5a:5f:55:51:20:d7:bd:f0:f9:5d:c6:a3:c0:ae:
9b:88:a1:bc:59:a9:ed:9d:78:b1:fa:89:fb:2d:b0:f1:0e:95:
c9:60:4a:ba
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUVrKnVXcxybd9x7dIZjq0sQCTh1cwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNjA0MTYxMjQ0MTlaFw0yNjA0MTcxMzA4MTlaMDMxMTAvBgNV
BAMTKDBGMDYyM0I1QTNGRTU2MTgxNjAyQTFDMEVBMjUwREJBMDk5QkY0QUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMWmkwJjWc1VAwDLLHlzRDN+Ug
iQ5ol/m/ZU9OK1BpsJ71Y2zT3QPIrF3EGO4LSV4rHJ3l3qahmOTA+lE9wxWtU2ud
ega7MVNsgAqo7Jmz01YJpyFyWR60+hLHPldxYue1HeM6e5PB6/5ZiAU2Na0ahA6y
N+YCSu68U8booNagoeptaNCCGwt1MQCguWaQHYxjs+bQELG8Peag8yCBxfx6i5Eh
bzJXaj5+vkbp1ehXLPO0qnfATJQqbBz3qg7dL20THBrQXJBkT7yzU8HS+iHJ26C+
92WW5xGwStbwCnv7aYLs4nEE3rgovJuWvA8XILbDym5sA+ow21jJNDzX1bMXAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUDwYjtaP+VhgWAqHA6iUNugmb9KowHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZfuMbNT8xkja3i1qzV6v
IgaYs+RLdTGZozvfnMrgHR7VITa2OHORh7TNx7gfU7aDVdKXrQCqF2L/drwJx2s/
mvQVivVVOOzD5eGr5WIplYfeqLlRbl1qkbwzwjKgKgpp/EbiggCr6ER8nwXnQNiu
rvqqIB41YGG4LRT8XGg8Sq896iU6gG7o1GXeQLitwM1EaD9FwhUqP+PnN1PD1erZ
dy8aroHYq4eyIcY+58NyuhlZGrvybQ4Dy61zQHvWvW64xDIQFwS9/UJswzAo4QCJ
dFHtoJ+dk3yccNCC11pfVVEg173w+V3Go8Cum4ihvFmp7Z14sfqJ+y2w8Q6VyWBK
ug==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:33:06 2026 by rpki-client