Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: s96xQuu2Dq67VGTzX51rBhh8KgoOdHVrHtHmeSIUY5k=
Subject key identifier: CC:20:23:A1:AF:9E:15:D4:5A:29:7C:F9:FF:6B:3A:29:E7:DE:F1:D2
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 019644B1C59CD154B7C9C8E9D8BE02E23F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 0D75
Signing time: Thu 17 Apr 2025 17:00:23 +0000
Manifest this update: Thu 17 Apr 2025 17:00:23 +0000
Manifest next update: Fri 18 Apr 2025 17:00:23 +0000
Files and hashes: 1: cZq1EWW-Cck7oNh5z2nVrTYMRQM.roa (hash: ptcOLOBEIgDro10MJyiqeVzzPTgAas0GugoUSuUsWgQ=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: laHPmu+Glnka0CEpKoSFoJsHhsJDO8Z/iyERHNjU97I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b1:c5:9c:d1:54:b7:c9:c8:e9:d8:be:02:e2:3f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: Apr 17 17:00:23 2025 GMT
Not After : Apr 18 17:00:23 2025 GMT
Subject: CN=cc2023a1af9e15d45a297cf9ff6b3a29e7def1d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:49:5b:de:01:79:5e:01:85:31:73:4a:3b:bd:
9b:41:d5:1d:96:a2:18:2b:74:50:8a:df:64:8e:87:
b4:6f:fb:51:1e:24:d2:de:ea:6a:c2:99:5a:59:a1:
f9:af:ef:10:b8:42:74:5b:fb:88:51:e0:da:a2:b6:
cd:6e:5e:10:f5:af:23:56:f0:8a:b4:85:75:55:2d:
76:a1:c6:3d:15:e4:ec:76:2a:26:e6:7b:2d:a6:c2:
6d:d5:7f:91:0f:46:52:f4:61:44:c5:51:c6:af:3a:
8d:b5:d0:26:2b:1f:74:0c:6b:87:43:2f:79:a4:04:
2c:42:30:70:7f:9a:3f:94:09:04:e2:e9:2a:4e:b5:
b3:74:8b:dd:f1:2b:5d:0c:f1:62:2f:7a:7f:27:8e:
3c:56:8e:d3:10:1e:5d:cb:a6:8a:36:f2:37:f7:65:
06:db:2f:a5:3f:ee:e5:bb:99:a6:a3:b0:a3:4c:4c:
78:f1:cc:22:95:5a:53:48:f6:03:b3:80:54:34:0a:
5b:55:9f:65:27:08:51:10:7e:51:26:7e:25:27:f5:
9e:b0:31:95:e4:d5:ba:80:79:5e:c1:42:22:83:63:
5e:70:fb:a9:fb:d0:6b:1c:41:1a:27:12:aa:0a:1f:
13:16:65:58:c6:3d:8f:04:1e:d5:f5:2c:03:9f:bf:
a9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:20:23:A1:AF:9E:15:D4:5A:29:7C:F9:FF:6B:3A:29:E7:DE:F1:D2
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:12:6d:b8:d1:ba:43:81:1d:57:70:0e:11:de:80:62:f7:e0:
1c:ad:3e:4e:bd:98:6b:e2:c5:b8:50:da:5a:45:14:5e:76:17:
03:2d:d3:32:77:88:e1:7a:e2:71:17:b3:5d:d2:b9:12:b2:b2:
4b:a6:32:2b:53:35:fa:70:4c:1c:61:21:04:bd:e1:9a:5c:92:
e9:3f:98:09:1b:36:8d:c7:4e:3a:7f:27:95:bb:22:a1:63:84:
88:ba:c6:b1:96:86:9a:00:4c:f5:88:d8:67:60:7d:bf:3e:dc:
2c:c1:31:4c:86:14:33:3f:c2:fb:ba:c4:e8:76:f3:da:47:c7:
14:18:d1:94:71:5b:ad:1c:4b:e6:81:3d:f0:fc:83:d2:a4:1a:
07:7b:1e:99:46:e9:1a:1c:61:d8:bf:2c:f2:ee:5c:35:6e:e9:
d0:d6:1f:75:df:95:81:6b:c1:c3:65:02:e5:b1:b6:bc:c1:e5:
b9:c8:b8:a9:db:c4:bf:15:e2:c7:07:c1:14:59:3a:0d:6e:2d:
6e:a1:f5:d3:17:2b:ce:71:7a:a8:18:4d:34:63:05:60:96:6e:
bf:96:2b:23:01:ef:84:98:6d:fe:99:a3:58:f5:30:4d:40:b9:
6b:c6:f3:92:f0:9b:bb:ac:14:45:2c:82:ae:3d:f8:6c:37:64:
90:e8:46:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:43:46 2025 by rpki-client