Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
File:                     pzfikBac_OajOKZrykXP5jXRVEY.mft (raw, json)
Hash identifier:          zLncA1g7b+BKuPS8FI0koCJZ3Znf7xTwYDY50EQ1NG4=
Subject key identifier:   2C:34:5D:7E:46:29:7A:28:64:E2:12:F6:69:02:F3:CA:EA:CA:2E:D4
Authority key identifier: A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46
Certificate issuer:       /CN=a737e290169cfce6a338a66bca45cfe635d15446
Certificate serial:       019780FB01D0C9697340DDEF9BDB430DDC55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
Manifest number:          1596
Signing time:             Wed 18 Jun 2025 03:00:22 +0000
Manifest this update:     Wed 18 Jun 2025 03:00:22 +0000
Manifest next update:     Thu 19 Jun 2025 03:00:22 +0000
Files and hashes:         1: pzfikBac_OajOKZrykXP5jXRVEY.crl (hash: EN94CmNE42K57P4mVIPlD99sjfb2SagplBKteruiy4U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:80:fb:01:d0:c9:69:73:40:dd:ef:9b:db:43:0d:dc:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a737e290169cfce6a338a66bca45cfe635d15446
        Validity
            Not Before: Jun 18 03:00:22 2025 GMT
            Not After : Jun 19 03:00:22 2025 GMT
        Subject: CN=2c345d7e46297a2864e212f66902f3caeaca2ed4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:3a:a9:d9:7f:db:ca:3e:8e:24:55:1a:78:69:
                    8f:d8:f9:c8:31:32:b5:6c:b5:8b:17:88:10:50:34:
                    79:ae:19:e4:4a:5f:21:58:c1:d5:b0:3a:54:23:82:
                    0b:e6:81:b0:fd:43:2a:ef:2f:6f:e4:a3:c0:5d:e5:
                    60:77:8a:8c:69:29:db:45:2b:a7:3e:8f:50:a2:0f:
                    30:71:fe:95:90:f0:74:af:be:6a:ae:88:e4:b2:94:
                    b8:dc:2c:91:1b:ac:36:eb:02:55:b5:fa:5f:45:69:
                    ae:56:fc:f6:b5:3b:d2:0f:bd:07:22:27:36:af:1a:
                    30:3a:bb:f2:6f:81:7f:33:fd:bd:a8:70:f7:a1:23:
                    3a:51:c7:69:e8:8d:3c:5b:67:a3:87:83:0a:e7:c7:
                    7f:cc:86:27:a4:3a:18:4b:2e:71:3e:e8:9c:2e:4a:
                    fc:b4:50:7f:f6:a1:36:da:ff:60:03:df:24:41:8d:
                    f3:d3:39:2a:52:ff:c3:36:4b:89:fb:70:90:80:a0:
                    44:7d:ce:6c:fa:ea:e1:d2:db:23:b0:90:7a:b2:ff:
                    df:e4:86:26:a9:6e:32:66:2c:ee:7d:d1:48:c5:58:
                    77:81:9d:5a:ee:80:3c:63:f9:93:77:3f:6e:54:58:
                    24:cc:c8:47:b8:8d:64:71:67:da:13:ec:22:84:b2:
                    a6:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:34:5D:7E:46:29:7A:28:64:E2:12:F6:69:02:F3:CA:EA:CA:2E:D4
            X509v3 Authority Key Identifier:
                keyid:A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:12:a9:bc:b7:28:2b:54:2f:fa:c4:fe:81:3a:c7:ef:83:d6:
         f8:ea:ac:43:4e:d9:00:37:ec:a9:85:f3:b2:dc:5a:34:97:31:
         49:08:00:b5:50:da:b7:a7:7c:f2:26:23:01:01:3c:98:d4:af:
         7e:00:7f:16:c9:13:c1:8d:7e:f3:29:15:12:3e:9e:97:4f:cb:
         3d:a4:40:ed:e6:b7:c6:f4:e6:df:ad:84:49:23:cf:b8:c1:fc:
         38:02:e8:bc:5d:7e:74:58:39:01:05:94:46:5c:d2:39:06:93:
         81:a5:4e:9d:cf:5e:03:b2:d5:7d:2b:a1:67:fa:00:6e:ac:08:
         b9:03:81:01:8a:41:74:fb:d6:24:2c:7c:e8:9a:b6:c2:55:72:
         53:db:e1:fa:0e:bd:cc:90:95:c1:b7:aa:e5:46:37:29:08:eb:
         1b:69:32:88:6f:01:d9:07:1f:7b:0a:29:be:30:73:a5:c2:19:
         e9:96:b6:6a:d4:8b:1e:e9:bf:e7:48:fd:e6:c7:0c:50:7e:42:
         f8:1f:7f:94:bd:88:68:a6:63:24:09:2b:ac:38:f0:99:c0:40:
         a1:6e:7e:16:05:63:14:d1:a4:bd:1b:8c:d6:fd:0e:34:22:dd:
         82:b5:0f:88:16:80:da:d4:4e:8a:55:3e:7b:e0:ba:dd:b5:5d:
         aa:0f:d3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----