Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: rN4pfJlI4ZVHOHuMRsShE+IrzRA3EOLJ9ci+HhtMvGY=
Subject key identifier: AA:D7:3E:04:48:EE:B4:A6:FE:3C:50:CB:DD:00:D1:09:69:D7:88:0A
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 7009D831C1A58904769DADC74292362A82F77DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0474
Signing time: Fri 22 Aug 2025 20:57:08 +0000
Manifest this update: Fri 22 Aug 2025 20:52:08 +0000
Manifest next update: Sat 23 Aug 2025 22:54:08 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: c+mIDRuPLdr7VMqs/UM9HnMucX6zlGPwQ27TOfy9Mmw=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Aug 2025 22:54:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:09:d8:31:c1:a5:89:04:76:9d:ad:c7:42:92:36:2a:82:f7:7d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Aug 22 20:52:08 2025 GMT
Not After : Aug 23 22:54:08 2025 GMT
Subject: CN=AAD73E0448EEB4A6FE3C50CBDD00D10969D7880A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:74:88:7c:37:db:3c:c9:ba:79:be:aa:59:6d:
7c:ed:0d:41:65:22:ca:04:ff:12:e0:f8:20:2e:a7:
00:73:37:b7:f2:17:96:ae:67:df:83:e2:0b:9e:e4:
0f:56:93:b9:06:49:ce:6e:ea:5d:d0:73:b0:b6:8a:
9b:07:2d:c7:c0:2e:6f:02:e1:11:e6:36:fb:32:1a:
11:60:a7:46:e1:fb:d8:fb:62:90:be:7e:d1:96:57:
6e:d9:ce:27:13:ad:03:50:24:d0:17:2f:b5:53:69:
be:b7:d3:37:4f:c6:f4:d0:e4:bf:a6:42:0c:75:02:
34:f0:8f:74:b1:4a:d5:ca:53:21:e2:f0:2a:15:1a:
f0:1c:df:69:e3:97:b7:16:01:75:d0:73:7e:33:62:
4c:1e:26:c7:f4:57:84:a2:da:d9:5f:33:4e:bb:47:
d7:80:33:14:b1:59:90:39:1a:c7:1a:3c:96:91:c7:
72:67:b9:54:a1:27:b6:d0:16:9f:5f:49:60:e8:8e:
0d:69:9d:a2:c3:25:27:67:12:2e:2b:35:87:2e:1f:
4c:87:32:28:a4:d0:d3:34:e4:ab:f8:c8:31:ca:64:
94:90:ed:72:9b:18:cf:67:fd:d6:53:fa:ba:5d:7f:
2c:91:b0:74:52:20:ad:ce:25:58:d1:1e:a5:2d:a4:
8a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D7:3E:04:48:EE:B4:A6:FE:3C:50:CB:DD:00:D1:09:69:D7:88:0A
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7a:ef:91:f9:2a:bf:b8:08:c5:51:14:a4:84:c4:ca:da:a4:
98:ce:2e:7b:aa:17:c2:45:b4:22:b5:b5:7d:44:32:63:49:9f:
af:bc:d9:64:96:9e:4a:ea:ad:be:3e:8c:54:31:24:63:a5:9e:
c3:d2:dd:97:b2:60:19:8c:4b:58:e3:a0:1b:55:06:5c:7e:cf:
8e:fc:30:6b:9c:50:cd:99:b0:81:29:5a:16:8d:18:26:c4:a7:
b6:3d:86:4a:f5:f4:95:0d:87:d6:1e:7c:1a:bd:d9:cb:5f:6d:
f4:c8:7d:0b:ee:da:6a:be:9a:5d:96:bd:d0:72:d6:e4:c3:32:
4f:33:2b:d3:ef:b0:3e:93:fd:0f:94:f4:d2:20:57:b7:b3:c3:
af:c1:f3:66:4e:12:c5:0b:7d:f9:f4:d1:cf:51:cc:d5:a1:25:
d7:62:ef:1e:38:a3:25:94:20:40:1a:7e:e0:8e:68:c9:e5:2f:
89:af:06:4f:ea:34:c6:32:55:8f:30:a3:f1:fa:34:3f:2e:c7:
0a:28:cc:cd:96:ef:64:5e:73:fd:ca:77:6e:2a:73:7f:bd:58:
5e:b6:4c:d8:61:9a:a2:2f:d5:34:c4:f4:98:10:c4:b4:69:a5:
a1:1d:6e:59:ad:e2:c2:22:d3:9c:f1:67:49:22:1e:bd:9d:78:
2c:4d:7e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:12:39 2025 by rpki-client