Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: JzMX2FJX2aoAizn+uyW8Pi8lIOFc1xrAhhAFpRzLCYY=
Subject key identifier: 34:54:4B:C0:CB:5E:A0:36:D7:21:C0:D7:1D:B6:B9:D6:71:9B:A0:F0
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 0D076837BD99AEA80BD3F854C0583E15F949F7CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 03DE
Signing time: Mon 05 May 2025 04:19:58 +0000
Manifest this update: Mon 05 May 2025 04:14:58 +0000
Manifest next update: Tue 06 May 2025 08:00:58 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 7cw8BX19v4Cbpb3QcLKEczA+moLo0S+v8qCMa1HEzoc=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:07:68:37:bd:99:ae:a8:0b:d3:f8:54:c0:58:3e:15:f9:49:f7:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: May 5 04:14:58 2025 GMT
Not After : May 6 08:00:58 2025 GMT
Subject: CN=34544BC0CB5EA036D721C0D71DB6B9D6719BA0F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:61:2f:2c:a9:48:74:8f:bf:f4:74:28:85:
fc:46:c5:63:2f:8a:dd:d5:ab:ef:d5:d2:be:52:f8:
41:95:6f:c9:b2:e8:a9:85:bb:c9:7c:3c:e7:59:4d:
ea:05:63:92:44:20:38:05:dd:69:9b:a9:82:d6:02:
04:80:a8:44:60:18:f3:a9:28:39:ef:02:32:91:40:
f6:9b:d0:11:95:33:73:19:63:7f:66:3a:27:e1:85:
46:75:b7:94:75:c4:d9:7b:86:c9:85:f0:e5:94:d8:
7b:8e:23:fe:9a:0f:a9:3d:65:ac:a9:89:a1:87:25:
5b:ca:94:0c:f0:ef:3b:b4:f6:a2:43:c7:9b:fd:0c:
7b:9c:42:10:f3:04:57:78:d6:db:14:a9:ed:5b:83:
1a:41:23:a9:84:fb:d7:f4:77:8d:d5:58:83:f0:08:
6c:fd:c8:cf:49:4c:d2:e6:94:60:40:7d:d8:c4:28:
bc:37:16:09:8b:c2:a2:53:e1:b9:7c:6a:41:32:32:
7d:b8:d8:1f:28:6d:0f:f4:f1:90:31:74:d3:c2:1f:
4a:d4:11:60:46:1f:65:85:7d:b4:65:16:82:35:ae:
77:26:fa:c1:a1:0c:3c:7c:70:13:1f:04:3b:32:5e:
59:48:fb:61:55:16:96:ce:43:eb:e7:9f:5d:69:a8:
61:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:54:4B:C0:CB:5E:A0:36:D7:21:C0:D7:1D:B6:B9:D6:71:9B:A0:F0
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:d8:87:14:9c:ac:70:cc:86:1c:a1:60:59:f4:4b:95:e1:51:
1c:9c:d7:47:33:d7:6b:48:b2:92:14:0d:32:a6:1c:98:67:13:
23:10:42:c4:8e:60:93:68:58:d4:0d:08:91:eb:ac:e5:1c:49:
d9:47:ec:7d:b3:ed:29:e2:2a:12:ab:0a:c5:66:9c:c1:d1:61:
1e:28:68:bc:57:d0:66:13:ae:c6:f5:b3:5d:60:9d:3f:a6:b4:
3d:a4:71:40:a0:47:07:bf:be:78:c3:ec:b0:53:5d:b8:24:55:
d9:ea:bd:66:9e:00:a6:d3:d2:2d:10:2d:a9:4d:5d:ea:26:e9:
f1:61:05:07:83:51:b8:5c:71:3f:d2:58:04:20:23:9f:4f:34:
06:e6:87:8c:c7:14:85:1f:71:47:16:42:06:71:57:ad:43:25:
b2:cd:e4:55:18:bd:d1:12:e2:9f:3f:b0:08:69:4b:2d:92:19:
5d:b9:31:7c:dc:8b:ec:49:b7:ce:32:ad:da:04:90:7f:3e:4a:
5a:c6:21:00:fc:35:c9:4e:b6:12:17:59:44:3a:f6:7a:53:fa:
27:8e:5a:d5:80:ed:0f:a4:89:94:20:78:e1:c1:1b:cb:58:bc:
e5:d3:d8:04:6d:f2:ea:3f:00:08:cf:8d:2b:dd:07:c4:19:36:
85:dd:65:58
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUDQdoN72ZrqgL0/hUwFg+FflJ98wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNTA1MDUwNDE0NThaFw0yNTA1MDYwODAwNThaMDMxMTAvBgNV
BAMTKDM0NTQ0QkMwQ0I1RUEwMzZENzIxQzBENzFEQjZCOUQ2NzE5QkEwRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcAGEvLKlIdI+/9HQohfxGxWMv
it3Vq+/V0r5S+EGVb8my6KmFu8l8POdZTeoFY5JEIDgF3WmbqYLWAgSAqERgGPOp
KDnvAjKRQPab0BGVM3MZY39mOifhhUZ1t5R1xNl7hsmF8OWU2HuOI/6aD6k9Zayp
iaGHJVvKlAzw7zu09qJDx5v9DHucQhDzBFd41tsUqe1bgxpBI6mE+9f0d43VWIPw
CGz9yM9JTNLmlGBAfdjEKLw3FgmLwqJT4bl8akEyMn242B8obQ/08ZAxdNPCH0rU
EWBGH2WFfbRlFoI1rncm+sGhDDx8cBMfBDsyXllI+2FVFpbOQ+vnn11pqGElAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUNFRLwMteoDbXIcDXHba51nGboPAwHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1NiHFJyscMyGHKFgWfRL
leFRHJzXRzPXa0iykhQNMqYcmGcTIxBCxI5gk2hY1A0Ikeus5RxJ2UfsfbPtKeIq
EqsKxWacwdFhHihovFfQZhOuxvWzXWCdP6a0PaRxQKBHB7++eMPssFNduCRV2eq9
Zp4AptPSLRAtqU1d6ibp8WEFB4NRuFxxP9JYBCAjn080BuaHjMcUhR9xRxZCBnFX
rUMlss3kVRi90RLinz+wCGlLLZIZXbkxfNyL7Em3zjKt2gSQfz5KWsYhAPw1yU62
EhdZRDr2elP6J45a1YDtD6SJlCB44cEby1i85dPYBG3y6j8ACM+NK90HxBk2hd1l
WA==
-----END CERTIFICATE-----
Generated at Mon May 5 09:09:14 2025 by rpki-client