Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
File: nz-YcVNtYL90vfaQYMkNVBB9jjg.mft (raw, json)
Hash identifier: qAhCtJuku1stHqFqRXu1EL7V4jk3Tpe4AntCtwix/GM=
Subject key identifier: E2:21:72:8B:9D:00:AC:F1:0F:8E:F7:A0:99:52:6F:66:31:8A:98:C7
Authority key identifier: 9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
Certificate issuer: /CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Certificate serial: 018F86364ED1A762E769F2B41D1F00B0A0B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
Manifest number: 09F6
Signing time: Fri 17 May 2024 11:00:57 +0000
Manifest this update: Fri 17 May 2024 11:00:57 +0000
Manifest next update: Sat 18 May 2024 11:00:57 +0000
Files and hashes: 1: fGS4Qm6bByFCPY6OBq6viKOXubc.roa (hash: wbYq/hZalUp/of08mx8csnnDXC37XPFhDtHcUlz3U10=)
2: nz-YcVNtYL90vfaQYMkNVBB9jjg.crl (hash: 9N6FRfnYMGGmp8kwEzF4V3RPFYsac/kUwXkr5dj6ao0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 May 2024 11:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:86:36:4e:d1:a7:62:e7:69:f2:b4:1d:1f:00:b0:a0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3f9871536d60bf74bdf69060c90d54107d8e38
Validity
Not Before: May 17 11:00:57 2024 GMT
Not After : May 18 11:00:57 2024 GMT
Subject: CN=e221728b9d00acf10f8ef7a099526f66318a98c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:15:c5:b8:c7:d8:5b:14:58:97:f8:86:4e:c3:
c7:5e:6f:f8:04:35:bd:2b:3a:e3:52:11:96:04:eb:
01:b8:85:64:5e:cb:c5:10:be:d9:9b:bb:d1:68:22:
3e:ef:83:bf:05:02:4d:03:8d:50:50:78:72:be:d2:
89:b9:fc:40:39:55:40:27:b9:26:3d:ab:88:2e:b0:
77:00:41:36:75:23:e1:ba:d3:1a:38:a4:ff:82:e3:
d9:df:03:6f:59:67:70:20:97:f8:7a:2d:6a:b7:a0:
f2:df:bb:12:2d:1c:52:9f:af:98:29:2b:74:fb:fc:
e3:4a:ea:8c:56:d9:ff:e0:63:a6:d8:c5:2a:17:f5:
26:35:01:cb:98:3e:ed:87:33:2d:b0:46:0d:f4:ae:
e6:db:4b:77:0a:ab:2d:a3:7a:0b:eb:40:c5:51:82:
0e:74:41:4e:cf:9b:dc:7f:3a:0f:b5:81:4e:54:2e:
11:8d:46:02:be:82:9f:8b:dd:04:66:61:7d:d8:8f:
a6:89:eb:fa:0d:cb:56:a6:59:71:e9:16:ee:fd:c6:
82:d3:fd:04:bc:2f:e6:4d:40:da:91:4d:2b:a3:7e:
94:2d:b1:48:ea:91:ac:66:2a:e1:5e:66:6d:5f:70:
b6:b8:bb:01:a4:1c:41:7c:05:a6:8d:24:9a:5b:c6:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:21:72:8B:9D:00:AC:F1:0F:8E:F7:A0:99:52:6F:66:31:8A:98:C7
X509v3 Authority Key Identifier:
keyid:9F:3F:98:71:53:6D:60:BF:74:BD:F6:90:60:C9:0D:54:10:7D:8E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz-YcVNtYL90vfaQYMkNVBB9jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f6bbd3-ae27-4dc7-b669-c5263b3303b9/1/nz-YcVNtYL90vfaQYMkNVBB9jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:f5:16:f8:3f:ed:02:03:e1:eb:6b:fd:d9:32:f5:f0:9b:ec:
c0:7b:c0:ce:2a:70:de:aa:61:cc:e4:b9:21:96:80:d8:99:90:
88:e2:48:03:13:ae:39:fc:bb:36:6b:2d:01:8b:1c:92:97:68:
f1:74:53:49:85:01:5d:23:e8:70:b8:22:ab:17:11:73:fa:46:
6a:b8:28:3c:44:72:7d:d0:32:c9:1d:1a:f0:c6:8a:96:e4:69:
d1:49:39:90:bd:d1:a2:ba:7d:37:07:5c:6c:ab:b7:f4:e4:8e:
39:41:d0:17:a5:ef:a4:38:fd:88:af:d1:99:0f:e6:a9:a0:c1:
ab:73:bc:3a:c1:7c:87:f6:27:0b:79:e0:05:19:4f:51:5e:00:
bf:5f:1f:8d:77:3d:cb:5c:d6:fd:3f:3b:41:ef:80:34:c1:4d:
86:cc:44:01:9b:73:4b:02:38:02:7b:f0:a1:e5:20:ca:21:d1:
d4:c2:b6:31:60:70:2d:32:98:a2:9d:a1:85:a9:a7:71:3f:f7:
51:ab:ea:d8:70:ed:3e:9b:96:e4:6d:97:59:d5:19:81:7e:d7:
03:81:12:c8:dc:1c:59:52:99:1f:fe:93:99:c1:05:fb:82:eb:
36:d2:0a:be:38:1a:fb:41:95:e1:54:93:fc:21:0b:fe:50:02:
7e:12:51:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+GNk7Rp2LnafK0HR8AsKC5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmM2Y5ODcxNTM2ZDYwYmY3NGJkZjY5MDYwYzkwZDU0MTA3
ZDhlMzgwHhcNMjQwNTE3MTEwMDU3WhcNMjQwNTE4MTEwMDU3WjAzMTEwLwYDVQQD
EyhlMjIxNzI4YjlkMDBhY2YxMGY4ZWY3YTA5OTUyNmY2NjMxOGE5OGM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRXFuMfYWxRYl/iGTsPHXm/4BDW9
KzrjUhGWBOsBuIVkXsvFEL7Zm7vRaCI+74O/BQJNA41QUHhyvtKJufxAOVVAJ7km
PauILrB3AEE2dSPhutMaOKT/guPZ3wNvWWdwIJf4ei1qt6Dy37sSLRxSn6+YKSt0
+/zjSuqMVtn/4GOm2MUqF/UmNQHLmD7thzMtsEYN9K7m20t3Cqsto3oL60DFUYIO
dEFOz5vcfzoPtYFOVC4RjUYCvoKfi90EZmF92I+miev6DctWpllx6Rbu/caC0/0E
vC/mTUDakU0ro36ULbFI6pGsZirhXmZtX3C2uLsBpBxBfAWmjSSaW8a58wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIhcoudAKzxD473oJlSb2YxipjHMB8GA1UdIwQY
MBaAFJ8/mHFTbWC/dL32kGDJDVQQfY44MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnotWWNWTnRZTDkwdmZhUVlNa05WQkI5ampnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNmJiZDMtYWUyNy00ZGM3LWI2Njkt
YzUyNjNiMzMwM2I5LzEvbnotWWNWTnRZTDkwdmZhUVlNa05WQkI5ampnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNmJiZDMtYWUyNy00ZGM3LWI2NjktYzUyNjNiMzMwM2I5
LzEvbnotWWNWTnRZTDkwdmZhUVlNa05WQkI5ampnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcPUW+D/t
AgPh62v92TL18JvswHvAzipw3qphzOS5IZaA2JmQiOJIAxOuOfy7NmstAYsckpdo
8XRTSYUBXSPocLgiqxcRc/pGargoPERyfdAyyR0a8MaKluRp0Uk5kL3Rorp9Nwdc
bKu39OSOOUHQF6XvpDj9iK/RmQ/mqaDBq3O8OsF8h/YnC3ngBRlPUV4Av18fjXc9
y1zW/T87Qe+ANMFNhsxEAZtzSwI4AnvwoeUgyiHR1MK2MWBwLTKYop2hhamncT/3
Uavq2HDtPpuW5G2XWdUZgX7XA4ESyNwcWVKZH/6TmcEF+4LrNtIKvjga+0GV4VST
/CEL/lACfhJRqw==
-----END CERTIFICATE-----
Generated at Fri May 17 17:58:55 2024 by rpki-client on console-ams.rpki-client.org