Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: H+b20wfla0Q78x+HgfuveRd/5vECrQbkqNgwZcU8bnY=
Subject key identifier: 35:30:32:6A:BF:0C:AA:20:D7:97:05:21:D6:73:B6:67:1C:CA:65:6B
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 01935764ED08E8E154D6C177E60F7FBF811A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 0BF0
Signing time: Sat 23 Nov 2024 05:00:52 +0000
Manifest this update: Sat 23 Nov 2024 05:00:52 +0000
Manifest next update: Sun 24 Nov 2024 05:00:52 +0000
Files and hashes: 1: fGS4Qm6bByFCPY6OBq6viKOXubc.roa (hash: wbYq/hZalUp/of08mx8csnnDXC37XPFhDtHcUlz3U10=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: /RfNvBxi1ududV2unx5szvyFIIUpcBesk3gXAcO2hEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 05:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:57:64:ed:08:e8:e1:54:d6:c1:77:e6:0f:7f:bf:81:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: Nov 23 05:00:52 2024 GMT
Not After : Nov 24 05:00:52 2024 GMT
Subject: CN=3530326abf0caa20d7970521d673b6671cca656b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:84:89:46:b6:e6:53:ee:8e:c1:be:f3:4a:d0:
33:e6:b3:8e:66:c9:88:92:0c:cd:63:9d:0f:14:18:
e6:b5:52:d8:a2:08:39:7b:b9:1e:fb:71:f1:3e:0b:
07:29:aa:d7:54:78:40:20:3e:c9:ba:4f:86:20:b3:
03:93:62:10:30:45:9e:05:b5:a0:92:fa:f0:9d:16:
03:fc:c0:89:bd:4e:eb:e2:aa:16:84:db:c0:7f:54:
f3:56:a9:d4:17:73:d0:2b:77:b6:e3:d6:ef:d0:1c:
43:3d:70:38:53:44:11:6f:22:c5:e4:91:00:7b:81:
92:bc:8c:39:0a:a7:96:97:e3:52:e7:74:a9:b9:26:
49:cf:a1:98:20:bd:b1:9f:68:e2:31:ef:ea:bd:9c:
ae:86:8e:24:7c:ee:6d:78:ba:80:ae:06:74:eb:3b:
13:0c:34:66:19:0a:91:50:27:9d:4d:6e:91:1f:c5:
29:04:48:7b:55:3f:47:34:da:3f:ed:48:8a:5e:c6:
ac:4c:fb:8e:9c:ff:c8:a5:21:31:f4:c6:4b:d1:e1:
0c:5a:4b:10:49:b8:ed:04:19:8b:70:a3:3b:12:eb:
8f:22:77:d8:f3:39:b1:bf:82:fb:d2:dd:34:89:a0:
cf:da:0f:7b:0d:c7:5a:c1:e4:52:77:9c:e5:a3:0f:
e8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:30:32:6A:BF:0C:AA:20:D7:97:05:21:D6:73:B6:67:1C:CA:65:6B
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:09:e9:da:f8:64:d2:03:7f:10:80:81:72:00:c6:7f:0a:10:
b4:08:53:42:58:04:a4:7f:0f:b6:a5:cd:72:f7:24:35:26:da:
f5:20:5c:1c:46:93:73:ce:7d:62:cc:4f:18:fb:a7:6c:47:0d:
6a:ef:aa:da:b7:55:c9:92:0c:13:f5:c5:c9:b1:d5:16:95:a5:
0f:96:56:b4:e4:6c:da:14:b9:87:2d:63:5d:db:39:fc:50:05:
f8:6c:b6:61:04:26:8d:e1:82:ec:b2:0d:2c:94:aa:90:49:55:
c8:75:74:b5:24:af:ea:ae:7f:1b:e1:7c:10:9c:80:02:85:d7:
c5:e6:3f:c0:e8:0f:a5:30:2f:37:2f:db:81:92:c3:3e:99:6d:
71:0e:2c:33:7f:77:31:02:8e:dd:dd:f6:cd:39:cd:ba:a2:bb:
02:bc:d5:f1:63:89:93:87:38:6c:97:80:fd:6c:2d:cb:79:90:
5b:56:8e:69:0e:43:29:c6:08:4f:bc:6c:28:22:ae:fe:bc:4a:
cf:77:b7:97:c1:8b:44:f3:9a:fd:9b:60:1e:16:bd:3a:12:64:
44:76:f9:bd:e9:c9:72:d8:62:a5:c9:99:44:cc:05:cb:d6:27:
fb:62:76:2c:b1:11:7e:15:d5:03:49:15:96:53:9a:0f:c1:01:
1f:86:61:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:05 2024 by rpki-client on console-fra.rpki-client.org