Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: bVGCrRdShBEKapE9ZY4klf0YCoh0HRIhEwN8VS0BX+0=
Subject key identifier: E6:4D:AC:30:C9:F6:CB:7D:47:9A:A2:B7:3D:26:8A:92:18:56:4F:50
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 01976C2AE8997A273F18BE0845680F12A67C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 0E0E
Signing time: Sat 14 Jun 2025 02:00:40 +0000
Manifest this update: Sat 14 Jun 2025 02:00:40 +0000
Manifest next update: Sun 15 Jun 2025 02:00:40 +0000
Files and hashes: 1: cZq1EWW-Cck7oNh5z2nVrTYMRQM.roa (hash: ptcOLOBEIgDro10MJyiqeVzzPTgAas0GugoUSuUsWgQ=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: SS5u7F/JV4O4/Fs42gWiS4SkOFC+hVLfMlNulTnTxL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:2a:e8:99:7a:27:3f:18:be:08:45:68:0f:12:a6:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: Jun 14 02:00:40 2025 GMT
Not After : Jun 15 02:00:40 2025 GMT
Subject: CN=e64dac30c9f6cb7d479aa2b73d268a9218564f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:63:b1:49:25:ba:44:a5:41:a2:b1:41:f9:e0:
66:40:59:d3:5a:29:03:ba:8e:36:43:60:52:8d:76:
33:c0:ed:91:7f:31:3a:12:85:59:a6:ec:7e:50:2f:
95:9e:5d:4b:43:23:fe:a7:2a:86:19:41:85:bf:c1:
46:da:de:2f:ae:69:a1:13:df:b4:76:c2:14:a1:d4:
3d:a7:db:77:8b:0b:dc:4e:73:15:43:32:40:84:1d:
3a:c4:60:3c:9e:9d:a1:e5:4c:ed:c4:d9:d8:4c:eb:
c2:81:0b:2f:1a:f7:50:aa:fb:22:14:2e:8b:65:e2:
5d:c7:eb:98:08:05:92:43:18:45:07:45:44:f6:b3:
b1:8b:4d:49:09:0f:8a:50:45:42:56:a7:50:e9:e9:
b9:f6:84:0d:b3:9d:c4:7f:92:65:51:a6:ef:95:3b:
4a:e8:df:fa:25:25:df:da:02:5c:04:eb:68:16:8b:
0f:21:96:19:2f:29:de:3f:ab:57:87:7a:ab:b1:dd:
5e:d7:4c:f4:8b:a1:44:49:51:ab:26:5e:18:7e:b5:
85:b1:36:75:92:1d:1e:ee:41:f2:43:7f:a9:d5:74:
a6:dd:29:86:bc:2b:01:9c:af:a2:c4:22:62:3a:44:
02:5e:8c:95:52:cc:c7:2d:27:92:14:aa:f4:a4:52:
7a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:4D:AC:30:C9:F6:CB:7D:47:9A:A2:B7:3D:26:8A:92:18:56:4F:50
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:f0:bc:40:fe:67:71:72:cb:79:44:b3:d9:32:73:c6:1d:0f:
2b:2a:3f:76:6a:88:5a:d7:1b:8b:a7:0b:93:92:8f:92:29:9f:
89:d6:b9:29:73:48:32:74:4d:b0:8a:4a:a1:48:6a:16:a5:af:
bd:81:71:2f:61:7c:39:12:8d:17:53:8b:ae:dc:6e:ab:fe:5f:
a9:e9:54:e0:c3:b5:2f:6c:e8:7a:bc:fb:2e:02:27:01:51:dc:
de:90:c4:96:34:2b:81:e6:71:43:85:8f:5b:01:91:16:85:ac:
18:77:39:49:ab:4e:a0:97:47:3e:d4:a3:ab:a4:e5:e4:ad:63:
ae:f0:81:cb:7e:57:63:fe:29:cc:f2:52:af:db:da:13:fb:d6:
e1:9a:37:20:82:c8:41:b1:4c:35:68:02:23:d4:69:86:4a:d1:
84:34:37:02:62:b6:ec:61:74:00:aa:6e:15:7c:a6:9a:4f:eb:
a5:66:e9:69:b8:d7:a8:3e:28:35:80:42:63:12:49:1d:9f:08:
12:98:7f:8a:31:cc:fb:96:00:13:c0:07:ea:4a:4d:15:bc:5d:
54:3f:45:19:55:6d:1c:30:2d:48:f0:54:19:e7:69:45:e7:f9:
a6:8e:d5:fc:8c:34:f8:3d:ea:28:a0:85:7f:f8:66:2c:73:0d:
62:3e:86:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:44:55 2025 by rpki-client