Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
File:                     TnxZtb-73klP0T13jm8i3adJYsE.mft (raw, json)
Hash identifier:          v9CKVGG3S5o+mo9CmXOn8J4S+xkfgrlJKebmG7nKeOc=
Subject key identifier:   7B:09:92:5A:F5:C0:C8:DD:54:E9:A9:3E:A6:11:6F:00:A0:B6:49:6C
Authority key identifier: 4E:7C:59:B5:BF:BB:DE:49:4F:D1:3D:77:8E:6F:22:DD:A7:49:62:C1
Certificate issuer:       /CN=4e7c59b5bfbbde494fd13d778e6f22dda74962c1
Certificate serial:       019358797046C9947FE0BE24150AAC70600C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
Manifest number:          06B4
Signing time:             Sat 23 Nov 2024 10:02:53 +0000
Manifest this update:     Sat 23 Nov 2024 10:02:53 +0000
Manifest next update:     Sun 24 Nov 2024 10:02:53 +0000
Files and hashes:         1: TnxZtb-73klP0T13jm8i3adJYsE.crl (hash: dHKccfz/uLLJ5AW1ExgxhH657Ch/i0wqS4RIhht4Oh8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 06:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:58:79:70:46:c9:94:7f:e0:be:24:15:0a:ac:70:60:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e7c59b5bfbbde494fd13d778e6f22dda74962c1
        Validity
            Not Before: Nov 23 10:02:53 2024 GMT
            Not After : Nov 24 10:02:53 2024 GMT
        Subject: CN=7b09925af5c0c8dd54e9a93ea6116f00a0b6496c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:4d:8e:e4:51:3d:57:d2:ca:70:6e:9f:a4:25:
                    53:2e:c7:aa:0c:8a:41:8d:3d:53:6d:87:33:d9:a2:
                    1d:64:f1:a9:87:8b:96:87:f1:9b:44:60:dd:c6:6f:
                    c8:ad:11:59:24:ab:28:8c:5a:ce:e4:03:16:bb:4c:
                    7c:81:94:6f:34:ab:de:ee:6e:70:51:da:e1:9b:20:
                    5c:af:4d:95:d5:5a:de:1e:21:c9:82:57:0a:c3:f4:
                    9d:74:be:54:a5:82:c2:b4:fb:c9:03:02:85:a0:9f:
                    dd:06:f5:1b:4f:6b:da:12:01:d3:44:33:8f:e7:20:
                    03:47:4d:db:96:3c:16:92:5d:ee:03:06:21:38:3f:
                    ae:09:02:b8:8f:d7:3f:49:7d:b5:4e:c6:96:99:7b:
                    36:9f:6f:0d:8f:3c:d6:2a:cb:3b:cf:a7:b4:f7:14:
                    9b:89:60:e2:59:fd:c1:b4:b5:34:9a:84:bc:45:c0:
                    b8:bd:68:b6:58:31:c7:b5:2d:67:44:ff:01:1a:2c:
                    40:32:69:07:92:04:86:d4:6c:15:4d:47:e4:34:4d:
                    18:9d:e5:56:ff:b4:f1:65:66:97:b5:c3:52:96:5e:
                    91:c4:29:dc:13:99:2f:61:35:da:08:cd:c3:15:3b:
                    a2:c3:9b:95:23:06:11:b8:c7:cf:15:13:45:ec:15:
                    55:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:09:92:5A:F5:C0:C8:DD:54:E9:A9:3E:A6:11:6F:00:A0:B6:49:6C
            X509v3 Authority Key Identifier:
                keyid:4E:7C:59:B5:BF:BB:DE:49:4F:D1:3D:77:8E:6F:22:DD:A7:49:62:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnxZtb-73klP0T13jm8i3adJYsE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/f30602-5fa2-4ab8-99e7-c07f6c5a0aa7/1/TnxZtb-73klP0T13jm8i3adJYsE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:48:fc:e5:86:4a:44:94:74:10:04:41:8e:89:a1:ad:b2:c8:
         d5:ee:7c:93:79:45:ea:25:1f:e3:42:27:1a:0d:cc:ae:5d:03:
         9b:00:d6:fa:22:1a:f5:ce:76:23:ba:45:a8:5f:9b:df:79:fa:
         6c:27:ef:d7:20:70:e8:96:1f:c2:69:76:17:0f:95:73:48:7d:
         a6:82:43:68:6e:6a:80:10:ca:4f:3f:15:9a:43:4b:4f:12:43:
         83:ef:c9:23:22:35:a1:57:a3:38:9e:44:93:53:c4:60:cc:08:
         42:fb:ee:43:56:ee:0e:c9:2e:e3:04:9c:90:0e:66:c7:b8:72:
         87:d3:9f:42:ed:87:cc:b2:75:d2:7c:b2:52:1e:b0:c6:5b:75:
         6a:ce:86:9f:e9:60:7a:e4:8b:af:55:d0:66:c9:cb:34:b5:d1:
         a5:d9:a8:d0:d9:a3:d0:d5:69:74:5c:b8:a1:1e:ce:ce:2a:2d:
         73:7c:23:16:7d:90:87:86:cf:3c:55:fb:b1:f3:1a:70:c8:58:
         ee:11:82:d6:60:7b:5f:94:7a:29:7b:4f:0d:88:3a:59:35:e9:
         7a:f0:5b:39:54:66:53:cb:de:c5:3a:78:ee:7e:91:9d:4f:4b:
         31:23:25:fb:a2:02:38:e2:58:9e:5e:b1:bc:81:91:4c:69:e3:
         ad:60:29:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----