Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: M3a0+GQgRHQPpP2qcWSzhuWoZFinyrYsKHMOAgamiEk=
Subject key identifier: B5:4D:DF:58:B5:57:F4:61:9E:2D:A3:2D:83:60:80:95:48:35:3C:2C
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 3C215E0D2CE0B26A1846B0DD89AF36CB3724D23A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0598
Signing time: Wed 25 Mar 2026 16:41:16 +0000
Manifest this update: Wed 25 Mar 2026 16:36:16 +0000
Manifest next update: Thu 26 Mar 2026 20:33:16 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: 4iUl6TihDNi1Yc5uH9B2MdnRmz0v+WQd2HOF0MkFKbY=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:21:5e:0d:2c:e0:b2:6a:18:46:b0:dd:89:af:36:cb:37:24:d2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Mar 25 16:36:16 2026 GMT
Not After : Mar 26 20:33:16 2026 GMT
Subject: CN=B54DDF58B557F4619E2DA32D8360809548353C2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:8d:b0:2a:11:8a:d7:8d:8e:b1:c4:8c:e1:
8c:2e:e9:93:5b:6d:8d:83:ce:b0:41:86:a6:98:25:
29:91:03:17:91:5e:cf:7f:22:f9:84:53:f5:28:ee:
ea:3b:d1:0f:d2:2c:79:8e:65:f8:34:e9:3e:87:c2:
8e:8a:58:d5:31:9e:14:61:0d:9f:1d:e2:45:02:0e:
be:97:9b:7d:eb:e4:aa:dd:96:b7:c4:cc:3e:a5:3e:
67:20:d0:33:0f:73:7f:07:75:c1:2d:ad:54:8f:78:
6c:7f:df:8f:23:86:bf:a4:ef:0e:09:5c:ca:72:c4:
24:8f:ae:80:4e:ed:67:56:ca:ee:57:c5:4e:2e:48:
ef:26:f0:47:0c:ab:e2:16:b4:bc:44:8e:60:29:52:
ce:34:b5:a8:18:16:89:27:3b:53:4c:70:70:e8:53:
12:5e:18:e9:36:cb:a9:a0:52:8b:4e:04:72:bd:3d:
50:c7:19:2d:00:78:43:fb:c7:dd:ef:f6:d1:b8:88:
09:ae:37:b2:2c:3e:fc:46:6e:43:f1:51:80:c7:71:
86:d8:98:c2:bd:00:43:2e:d6:0e:c5:86:4f:f1:c9:
66:fa:a2:77:ed:dd:24:d0:d2:3f:fa:2e:68:d2:18:
12:60:32:69:d6:62:91:51:ee:5e:ba:14:44:ec:e4:
15:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4D:DF:58:B5:57:F4:61:9E:2D:A3:2D:83:60:80:95:48:35:3C:2C
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:78:1d:44:b5:71:ef:f7:dc:6a:5c:0a:2c:94:62:f5:88:50:
ff:11:eb:cf:47:ef:8e:5e:4e:29:f2:a5:14:4c:0f:2e:a3:47:
18:98:5f:4a:08:25:b7:0f:9b:6f:94:59:8b:b9:78:2e:be:90:
63:c9:19:98:c4:c3:c7:9a:1f:ff:f0:e9:81:96:37:6f:d9:17:
d7:d3:e4:42:1f:c4:b4:db:77:af:47:3d:9e:f0:b8:20:49:3a:
f4:f2:fc:98:aa:b8:65:82:f4:8d:63:20:f9:86:96:af:5c:33:
05:8c:3f:70:6a:98:ab:07:e2:2e:a1:af:b9:0d:fb:e1:57:a9:
44:87:1f:cb:a6:1d:bc:7f:df:49:65:eb:32:92:39:66:ba:d9:
aa:e9:0d:2d:37:ef:40:69:77:1c:98:30:c9:d3:5b:69:eb:dc:
f2:87:54:8d:6c:2d:86:68:16:46:f9:16:6d:26:23:3f:2a:8b:
b2:12:46:1a:91:b0:26:8f:41:2f:d6:1d:c4:c3:6a:28:07:59:
60:a7:4d:11:9e:c2:c2:ab:97:04:c3:42:e4:3c:d5:da:48:33:
be:8c:ea:1c:03:7f:3f:18:20:6f:55:ca:33:5a:c0:ce:e9:20:
c4:95:3c:a9:8e:0c:21:ca:25:43:dd:99:e9:43:22:86:81:c1:
8d:2d:aa:d3
-----BEGIN CERTIFICATE-----
MIIFPTCCBCWgAwIBAgIUPCFeDSzgsmoYRrDdia82yzck0jowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl
ZDM2MzNlZTAeFw0yNjAzMjUxNjM2MTZaFw0yNjAzMjYyMDMzMTZaMDMxMTAvBgNV
BAMTKEI1NERERjU4QjU1N0Y0NjE5RTJEQTMyRDgzNjA4MDk1NDgzNTNDMkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDs42wKhGK142OscSM4Ywu6ZNb
bY2DzrBBhqaYJSmRAxeRXs9/IvmEU/Uo7uo70Q/SLHmOZfg06T6Hwo6KWNUxnhRh
DZ8d4kUCDr6Xm33r5KrdlrfEzD6lPmcg0DMPc38HdcEtrVSPeGx/348jhr+k7w4J
XMpyxCSProBO7WdWyu5XxU4uSO8m8EcMq+IWtLxEjmApUs40tagYFoknO1NMcHDo
UxJeGOk2y6mgUotOBHK9PVDHGS0AeEP7x93v9tG4iAmuN7IsPvxGbkPxUYDHcYbY
mMK9AEMu1g7Fhk/xyWb6onft3STQ0j/6LmjSGBJgMmnWYpFR7l66FETs5BVrAgMB
AAGjggJHMIICQzAdBgNVHQ4EFgQUtU3fWLVX9GGeLaMtg2CAlUg1PCwwHwYDVR0j
BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1
MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw
Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6
Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l
ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0
QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH
AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlHgdRLVx7/fcalwKLJRi
9YhQ/xHrz0fvjl5OKfKlFEwPLqNHGJhfSggltw+bb5RZi7l4Lr6QY8kZmMTDx5of
//DpgZY3b9kX19PkQh/EtNt3r0c9nvC4IEk69PL8mKq4ZYL0jWMg+YaWr1wzBYw/
cGqYqwfiLqGvuQ374VepRIcfy6YdvH/fSWXrMpI5ZrrZqukNLTfvQGl3HJgwydNb
aevc8odUjWwthmgWRvkWbSYjPyqLshJGGpGwJo9BL9YdxMNqKAdZYKdNEZ7CwquX
BMNC5DzV2kgzvozqHAN/Pxggb1XKM1rAzukgxJU8qY4MIcolQ92Z6UMihoHBjS2q
0w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:00:42 2026 by rpki-client