Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft
File:                     Vu9y3nfRt-K0RwW2y85jlCHam-8.mft (raw, json)
Hash identifier:          YyUWOjVpkLgleOeooPOnSovp7sL87sapJlR9SETDsRI=
Subject key identifier:   08:CA:5F:5A:F8:63:FC:BB:76:AD:8F:A9:B1:77:2B:6C:80:07:B3:39
Authority key identifier: 56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF
Certificate issuer:       /CN=56ef72de77d1b7e2b44705b6cbce639421da9bef
Certificate serial:       0191FB59EEE1DFF2B911CF62C7BEBC937337
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft
Manifest number:          FF
Signing time:             Mon 16 Sep 2024 15:01:00 +0000
Manifest this update:     Mon 16 Sep 2024 15:01:00 +0000
Manifest next update:     Tue 17 Sep 2024 15:01:00 +0000
Files and hashes:         1: Vu9y3nfRt-K0RwW2y85jlCHam-8.crl (hash: iyQTc2nixqxD4YIYj1iha+6ipAodn8WEH0BfmFjwqmk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Sep 2024 14:20:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:91:fb:59:ee:e1:df:f2:b9:11:cf:62:c7:be:bc:93:73:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56ef72de77d1b7e2b44705b6cbce639421da9bef
        Validity
            Not Before: Sep 16 15:01:00 2024 GMT
            Not After : Sep 17 15:01:00 2024 GMT
        Subject: CN=08ca5f5af863fcbb76ad8fa9b1772b6c8007b339
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:30:2a:56:56:f8:ce:91:7b:fa:9f:b1:fa:93:
                    1b:b4:1b:d5:70:d2:56:43:1c:c8:9e:a8:4f:bc:f7:
                    18:96:43:bd:ed:41:59:74:3c:0c:ac:40:cc:f8:d6:
                    27:cf:68:8b:ce:03:4c:b0:fb:14:f0:db:23:d4:02:
                    42:9e:48:9b:f0:d1:78:9f:0b:49:b7:c6:0f:f7:cb:
                    55:1f:ff:13:db:00:b3:c4:b6:d4:e5:81:59:45:49:
                    eb:50:67:9b:f1:d3:a1:57:9a:4a:78:62:35:c3:12:
                    11:9e:0b:0e:ef:1a:48:c8:aa:46:87:0a:6f:df:3c:
                    6d:63:30:d5:58:98:ff:a5:fd:4e:2c:20:72:2a:c8:
                    ed:9f:be:c4:8b:f2:45:b8:c4:06:98:60:32:a6:7a:
                    f3:c1:f3:e8:c8:30:54:54:c4:79:54:28:9d:d6:d6:
                    af:3d:00:b5:cb:2d:0c:23:7f:88:f7:ff:75:1a:bb:
                    c8:c4:98:56:eb:27:6a:3b:de:a6:c3:09:a5:f6:f7:
                    f2:d6:d0:51:a1:1e:04:57:c3:10:e0:91:48:96:95:
                    e7:ef:d7:05:19:f8:47:28:20:4f:4c:96:ee:81:a3:
                    c7:22:83:ab:c3:4d:03:60:e7:39:40:ba:23:0b:0a:
                    38:8c:21:12:1f:0e:5b:f1:f9:13:be:b8:ff:bb:9a:
                    f6:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:CA:5F:5A:F8:63:FC:BB:76:AD:8F:A9:B1:77:2B:6C:80:07:B3:39
            X509v3 Authority Key Identifier:
                keyid:56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:00:80:4d:39:3c:fd:f4:a4:a7:f5:8b:72:1d:45:96:4b:79:
         88:02:18:31:c6:38:22:c1:9b:1b:63:50:06:29:55:2b:7d:66:
         b7:48:0b:c7:21:31:48:4a:d8:7b:22:41:56:4c:90:90:a5:92:
         fa:d5:a6:be:26:aa:2b:04:19:cb:7a:90:1a:76:dd:58:d1:1f:
         50:ab:d0:94:55:45:3d:3f:80:c5:d4:47:42:43:aa:ce:67:76:
         87:fa:55:f2:e8:07:c0:40:85:89:82:cb:fa:4d:90:f6:c5:75:
         ea:25:39:11:97:04:d4:0a:59:61:c4:2b:cc:e4:fc:e8:15:a7:
         b8:f6:5a:dd:ea:9c:51:50:43:92:bf:3f:bc:e8:b0:6a:6a:35:
         1b:4d:d8:34:03:2c:b3:2d:ae:0e:68:05:e3:28:d6:1d:60:4e:
         41:92:9f:03:d6:9b:7d:0d:38:03:1e:da:41:e6:53:fe:87:36:
         31:8b:cf:d6:e9:fa:2d:b5:58:4b:46:8c:b6:4f:31:e6:5f:c4:
         d9:e7:f4:42:6f:25:77:49:5b:84:51:50:16:32:2a:40:4b:7a:
         9b:6a:26:2f:2f:55:e2:9e:e2:0e:ac:90:88:c8:22:34:82:3e:
         20:f8:f7:b2:6e:ed:7c:95:11:15:22:6e:2d:7a:04:04:fb:98:
         52:eb:ff:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----