Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: vWGDvvXIcXQ/RUNHmtjlo4B6qqZbxbSb5XpvoZ7FU8Q=
Subject key identifier: D7:7C:34:27:EA:BD:A9:52:F0:0F:EA:67:90:CB:5B:6B:F0:8E:54:0C
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 019EC18024016B129B89E09D8C00B08007E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 11DB
Signing time: Sat 13 Jun 2026 15:01:00 +0000
Manifest this update: Sat 13 Jun 2026 15:01:00 +0000
Manifest next update: Sun 14 Jun 2026 15:01:00 +0000
Files and hashes: 1: PYDato-ASu6UXDdHs5gP0K32nY4.roa (hash: yQRUA3xyuLF4WYI3cv0hMQ5bIo4W5JbDMtC9jfgPPDQ=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: rKDpzo7bwkciQh8/Vsdr8RrujI0IYJQKVLVJsVtjZqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:80:24:01:6b:12:9b:89:e0:9d:8c:00:b0:80:07:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: Jun 13 15:01:00 2026 GMT
Not After : Jun 14 15:01:00 2026 GMT
Subject: CN=d77c3427eabda952f00fea6790cb5b6bf08e540c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:0d:1f:c8:67:cb:7b:1b:cd:cd:a1:3d:87:
c0:af:28:d1:d1:22:9b:83:6b:57:de:30:63:a7:34:
4e:97:d4:7a:7d:6a:ef:a8:71:f3:f4:ec:ad:0f:71:
4c:03:c2:71:29:d5:72:41:ad:c7:d6:12:89:76:8e:
94:f0:4a:8d:2a:76:03:7c:7c:28:a4:ab:fb:37:a2:
f2:99:61:f2:1e:9a:bb:16:90:5a:6b:b1:10:88:e6:
5a:72:c4:7d:d7:51:9a:d5:ee:19:f6:5b:bd:f7:6e:
d4:b6:6b:00:3d:19:15:e4:a6:e4:39:01:71:2c:7c:
bf:0e:1f:fc:6f:c7:cf:8f:45:55:1c:f8:68:71:90:
bf:a9:21:5c:e8:bc:05:6e:bc:3e:33:87:54:25:a0:
81:40:71:10:c6:2f:22:be:10:82:91:3d:44:37:de:
03:23:4b:1e:c6:f7:b9:d9:d3:58:f0:5d:2d:21:ec:
9e:79:c7:07:f3:33:1d:95:05:da:98:5b:23:75:79:
6e:6d:b0:79:6f:b1:05:8b:b3:33:9b:73:c0:9c:7a:
8c:a0:f1:6c:3f:4e:a8:e3:1e:32:e3:e8:57:39:78:
47:a7:53:3d:37:1a:15:65:09:9a:01:f7:93:71:b1:
8b:17:a1:65:e2:25:10:ee:5d:cd:db:e7:82:df:8f:
a3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7C:34:27:EA:BD:A9:52:F0:0F:EA:67:90:CB:5B:6B:F0:8E:54:0C
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:ce:a7:b1:c4:29:ac:4c:eb:86:b9:f4:1b:8d:5d:8f:4c:f6:
15:da:36:46:e4:e7:f7:81:56:40:95:37:b1:38:4e:b8:3b:03:
45:e1:48:8a:18:37:a5:44:26:fc:9d:a6:20:d9:c7:65:c7:cb:
42:2a:b6:bf:aa:37:31:cd:82:5c:f6:57:0c:8c:c1:e3:65:20:
89:3d:e6:6d:98:03:46:b5:58:fd:77:80:92:45:18:2d:1c:27:
eb:36:c1:e3:98:cf:16:63:9d:3f:f4:d2:24:27:67:da:9a:e2:
74:39:6e:eb:e5:b7:2a:0a:6b:9b:35:60:d7:b8:27:11:2c:14:
fb:a6:a0:e5:ae:8a:fa:49:b6:45:42:ff:d8:d9:35:c4:22:d4:
95:c2:ff:41:1e:d6:1e:7e:ab:d9:41:99:1e:bf:75:b9:ea:d7:
0e:84:ad:10:94:c7:41:7a:86:59:3b:7c:53:17:13:34:f6:bb:
d0:3b:b2:bd:76:0e:e1:21:09:ad:2d:bd:9b:f9:3e:6a:e4:8d:
b6:27:5f:2e:6e:28:47:e4:15:41:5e:b3:80:d5:57:c8:93:27:
5a:6b:c5:95:9c:5b:5a:7a:97:e7:17:2a:7f:ca:0d:ba:50:7d:
d2:f9:fc:c3:b2:db:07:c4:a2:4a:42:59:1c:50:6a:4c:c5:b2:
54:61:96:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:31:37 2026 by rpki-client