Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json)
Hash identifier: uZZxJqxXNaF0huvVAHNkz+oF+QvxP4/ske2tcDjIjHM=
Subject key identifier: E0:0C:33:B9:A4:E6:00:0B:F2:CB:98:BE:C7:5B:8B:3B:1D:DA:F8:E3
Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee
Certificate serial: 665D9939084C2CFAB1F34CF8C7578D5497F90373
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
Manifest number: 0427
Signing time: Sat 28 Jun 2025 05:59:41 +0000
Manifest this update: Sat 28 Jun 2025 05:54:41 +0000
Manifest next update: Sun 29 Jun 2025 06:40:41 +0000
Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: vuFLjAEmRCf/KH0a7WouSHNlHjFehmhiCc2Ht13Zs9w=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 06:40:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:5d:99:39:08:4c:2c:fa:b1:f3:4c:f8:c7:57:8d:54:97:f9:03:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee
Validity
Not Before: Jun 28 05:54:41 2025 GMT
Not After : Jun 29 06:40:41 2025 GMT
Subject: CN=E00C33B9A4E6000BF2CB98BEC75B8B3B1DDAF8E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:aa:82:c7:b6:04:98:ac:d0:f0:db:1c:b0:19:
48:bc:c9:d0:c2:83:6f:9b:4e:90:bb:46:d5:e7:a7:
07:30:54:0f:dc:64:49:1c:2d:b3:4f:fd:b5:6c:e3:
03:01:3b:74:b7:2f:78:90:57:35:a3:b6:6b:23:5e:
5c:37:bd:03:80:b3:8f:b7:77:f3:78:99:16:59:6f:
88:aa:03:76:52:f9:b6:e5:20:8d:c3:eb:f5:da:61:
82:64:5a:7d:02:7f:d8:71:cf:e8:92:91:0d:13:11:
10:dd:d9:6a:d0:88:ce:94:50:ec:9e:21:2e:9b:2f:
da:1f:13:63:66:11:47:56:98:bd:0f:2b:c0:20:c9:
d4:70:b1:7b:b1:25:35:89:9c:d3:62:25:af:5f:a8:
9f:20:64:d2:7d:2c:6b:2a:df:5a:1e:62:10:e8:77:
ec:ac:65:a3:b6:53:58:e3:d7:5f:58:0c:87:c0:b5:
6d:f3:dc:48:e3:8e:df:0e:0c:8a:f4:59:2b:6d:4e:
14:2a:5e:61:21:f0:7d:e8:e4:52:14:0c:82:1e:78:
48:7f:bc:ed:c1:3e:24:17:c8:5b:ed:e9:97:f5:77:
72:4c:6e:14:0c:e3:2c:dc:83:a1:77:51:5f:cf:71:
fc:6d:00:fb:65:2e:17:f3:1f:e4:de:5d:f4:e9:c6:
9b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0C:33:B9:A4:E6:00:0B:F2:CB:98:BE:C7:5B:8B:3B:1D:DA:F8:E3
X509v3 Authority Key Identifier:
keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:5a:bb:61:e7:cf:9a:bd:d1:80:89:16:ac:71:17:b6:66:da:
11:c6:8b:ea:94:a0:24:0b:a0:39:b3:8f:88:0d:80:ac:eb:3e:
60:10:4a:82:77:70:fb:3c:20:c3:3f:d2:46:86:a6:d8:1d:7b:
2b:92:04:32:34:58:69:7c:88:8b:83:fb:b8:ac:b9:0d:33:a3:
da:a2:46:26:04:92:ff:25:31:6f:0e:6b:51:17:b3:a7:34:da:
fc:d7:21:9e:94:d8:b3:4a:19:72:39:ee:a9:16:58:30:02:91:
97:95:80:d6:0b:66:3c:76:b8:09:aa:4c:b7:63:f3:77:bd:34:
42:96:3d:b4:f6:68:5b:5a:c6:ae:b0:87:0f:bf:6e:91:6b:39:
87:a8:b9:c2:7d:40:fd:c8:4a:3e:d3:4c:52:1d:4f:40:3b:10:
4b:f4:66:25:87:00:eb:2d:5e:78:b5:92:d7:91:47:e1:e3:ca:
4a:14:bf:a9:86:57:53:08:5f:04:92:2a:f7:7e:f9:c0:3a:47:
4a:20:47:d3:07:9c:6b:c2:19:25:96:f0:c5:3e:21:6a:a8:85:
06:e1:d0:41:3a:63:b8:ae:84:37:11:32:84:14:63:78:89:59:
77:dd:b8:30:da:a9:5f:9d:fb:5a:54:a7:70:9c:b6:b5:66:37:
2a:b8:33:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:42:09 2025 by rpki-client