Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: rK7sfK2V3U+i2ZPVW644uKZj0D/RX4cBjBTNcKWhdI4=
Subject key identifier: B5:87:10:81:98:83:A5:51:95:E8:C5:4A:46:29:41:78:17:48:2D:3B
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 0197CACC9166A2C4E68FE9612C3F2A047444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 0E3F
Signing time: Wed 02 Jul 2025 11:01:33 +0000
Manifest this update: Wed 02 Jul 2025 11:01:33 +0000
Manifest next update: Thu 03 Jul 2025 11:01:33 +0000
Files and hashes: 1: cZq1EWW-Cck7oNh5z2nVrTYMRQM.roa (hash: ptcOLOBEIgDro10MJyiqeVzzPTgAas0GugoUSuUsWgQ=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: rLlf++9WMeZwd8oQ909lU7A8tp5EhgqNApBEi49lnf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 11:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ca:cc:91:66:a2:c4:e6:8f:e9:61:2c:3f:2a:04:74:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: Jul 2 11:01:33 2025 GMT
Not After : Jul 3 11:01:33 2025 GMT
Subject: CN=b58710819883a55195e8c54a4629417817482d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:7f:df:70:ea:28:dc:17:d2:48:e8:99:90:b7:
64:a6:c9:20:05:2f:e2:72:cd:38:fd:45:e7:f9:40:
1a:92:bb:43:3f:bd:5e:ba:c1:1b:ca:a4:d7:0b:10:
26:b9:3a:3a:75:a9:d5:a5:ee:ce:99:ad:ee:0e:8f:
43:7c:c6:8c:fa:a7:bc:5e:18:1f:7b:79:3c:37:60:
3d:c0:3e:7e:43:b7:40:6a:4e:e2:23:fd:29:38:08:
4c:bf:63:23:32:12:07:fa:fe:35:97:4a:a4:57:04:
d4:c7:b1:06:0f:56:66:2c:4a:b5:32:d9:80:fc:15:
cd:eb:f3:50:19:bb:01:a7:cc:ed:d8:b4:ba:b9:68:
34:1f:df:02:8b:2e:7b:2a:8d:31:17:b4:da:c4:cd:
f4:49:af:54:84:f2:79:63:b3:cb:bf:76:d8:e8:04:
f1:45:1c:d9:66:99:13:14:ad:83:e9:a7:ed:77:8b:
7b:cd:7b:4f:c1:30:e1:08:d2:1c:64:ea:f3:2b:3b:
61:7b:7d:2d:30:11:2b:8d:f7:82:50:4c:70:34:e0:
3d:f0:62:a7:db:3d:e3:f1:52:0f:ab:f8:10:11:7a:
29:e2:02:1f:0c:d2:71:60:d0:f7:96:79:98:9c:89:
0f:6f:47:c8:d7:46:74:d7:0c:3e:99:9a:3f:81:cc:
62:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:87:10:81:98:83:A5:51:95:E8:C5:4A:46:29:41:78:17:48:2D:3B
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:a5:19:2e:1f:41:96:05:93:3d:76:2c:5d:17:3b:3b:51:77:
68:25:d6:4f:00:9a:83:62:63:65:55:cd:6c:be:28:20:1e:90:
d4:1d:9d:53:6f:fc:f2:72:3a:ed:a4:20:ac:81:1f:8c:43:e3:
cd:1f:b6:c7:27:c1:4b:c4:3f:30:58:dd:38:0f:91:b2:52:0e:
69:be:28:26:cd:c9:70:51:40:1b:79:00:84:d2:be:3b:7c:4e:
c4:5e:d6:34:bf:1d:e7:91:f8:a6:27:05:64:8a:e9:bc:3a:95:
d4:4b:da:78:44:51:3b:f2:21:84:db:06:e6:a8:4d:ae:65:3a:
bb:20:52:13:5a:c6:91:26:58:67:ba:61:bf:1b:80:e8:f5:d8:
76:e4:ec:cb:42:19:83:f4:81:03:f4:e8:f4:cb:e2:ab:26:51:
c5:47:70:0d:83:e0:aa:76:6d:cd:7f:c1:47:6b:e7:aa:2f:d4:
af:37:44:01:63:72:1e:7c:05:a0:95:b5:1c:66:3e:54:63:ab:
fc:93:78:66:cd:d9:32:a6:0c:a8:82:bb:0e:a2:a6:bb:78:c7:
e2:b7:28:b6:0a:a5:51:d6:f6:2e:04:8c:7b:bf:46:c4:e6:12:
08:f2:03:4f:5f:fd:7d:2f:e0:a6:79:06:96:2a:e8:c7:5e:09:
e4:8c:c0:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 16:07:12 2025 by rpki-client