Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          3Gkf2xO55F9VDizPzqTdUkcfU1XyjIamrQFprv1sZyQ=
Subject key identifier:   44:E5:DB:58:1E:A8:0B:28:C3:08:49:FB:C4:71:F6:DE:0E:19:28:1E
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       018F53C9B93CA710FBB0C60D152E6D2CA9CC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          1159
Signing time:             Tue 07 May 2024 16:01:20 +0000
Manifest this update:     Tue 07 May 2024 16:01:20 +0000
Manifest next update:     Wed 08 May 2024 16:01:20 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: 03q+V+3kmtg8rH52YWSGe6WpodyWCzDz3HXWEOBwFOs=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 08 May 2024 14:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:53:c9:b9:3c:a7:10:fb:b0:c6:0d:15:2e:6d:2c:a9:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: May  7 16:01:20 2024 GMT
            Not After : May  8 16:01:20 2024 GMT
        Subject: CN=44e5db581ea80b28c30849fbc471f6de0e19281e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:6c:e3:4d:11:46:2c:b0:d3:44:c3:0f:d5:24:
                    21:ca:ad:6e:5f:2a:da:29:5f:60:7a:d9:04:96:f3:
                    d1:2a:43:0e:f5:a8:e8:d7:5f:df:47:3b:57:d6:49:
                    10:11:b7:6c:d6:06:c2:f8:8c:0e:fa:58:17:b7:c1:
                    23:57:4f:1d:5b:94:28:84:3f:61:63:1f:e3:bb:18:
                    31:c2:d7:c0:b8:01:19:fc:70:5b:6d:ab:75:6d:ed:
                    71:3b:3b:fe:f7:81:3f:b3:73:aa:25:db:b8:4d:8d:
                    47:e3:df:6f:37:0e:43:c5:fb:c6:2c:13:0d:03:1d:
                    e2:51:a6:93:15:db:5e:5b:54:a4:e3:5f:0f:40:09:
                    7e:09:d6:4e:72:84:0d:27:2c:e4:1f:bb:db:d4:eb:
                    6a:17:68:ac:47:72:51:5d:08:55:32:3d:64:d9:53:
                    89:3c:20:7f:9a:09:07:f9:4b:93:50:cd:1c:60:9f:
                    69:1a:cc:6e:1e:8f:80:6a:14:0d:a0:a8:3e:99:4e:
                    0e:0b:40:c6:1a:9d:d9:6b:e5:b1:46:ee:63:00:66:
                    8f:c8:20:58:2f:d1:eb:f3:79:05:6a:89:95:0a:f3:
                    79:2e:6e:e7:f0:05:ce:7c:30:88:16:97:3e:48:b8:
                    b6:a6:79:1f:76:f9:12:48:08:cc:00:71:13:80:69:
                    a9:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:E5:DB:58:1E:A8:0B:28:C3:08:49:FB:C4:71:F6:DE:0E:19:28:1E
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:cd:64:80:56:d5:a5:27:f4:59:d8:ba:81:8c:da:80:9c:e9:
         99:48:98:9d:58:c0:85:fd:fd:44:28:60:8f:2c:e1:c9:af:ae:
         db:d3:a0:62:50:a5:f8:59:1a:be:7a:11:ba:f2:42:f8:7c:b4:
         ef:d1:77:7f:83:83:62:35:db:cf:57:e9:90:e9:dd:f5:c9:54:
         a4:e9:f6:69:08:12:58:30:92:49:a9:46:df:01:b4:b5:6e:ba:
         ef:1f:e2:69:26:53:ae:e2:3a:16:e6:08:0f:a8:45:6d:18:40:
         d4:7b:bf:5e:79:3f:ed:de:1c:4c:7a:8e:7e:20:60:a0:3a:1b:
         c9:ec:ae:cc:54:a6:df:ce:6f:ac:35:c2:81:60:e3:7d:1e:74:
         f9:bc:85:04:63:f3:f4:9f:dd:8d:b5:71:95:b0:62:71:d0:00:
         3d:76:bd:1e:ca:0e:39:b6:d1:ce:85:bd:9d:f9:9c:f6:ba:1e:
         0d:e4:cc:7c:20:9b:71:b9:19:1e:6d:63:6d:a0:09:f4:83:47:
         2d:17:59:be:4b:da:1a:98:1f:2e:5d:9e:e3:8d:6f:6c:c5:be:
         60:0b:d7:f6:79:d7:63:45:34:87:13:6f:a1:ad:1f:af:31:7a:
         89:0d:37:69:9a:a7:65:68:9f:a6:85:74:9a:42:de:08:dd:05:
         76:10:d7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----