Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.mft
File:                     VtFg2vlmDA45ix44Sf4NQIImY_M.mft (raw, json)
Hash identifier:          tw4+chkp1GavIUA1g+HI97rhH719V+GwXtdQ6FTon3M=
Subject key identifier:   AE:CE:F9:83:83:E7:DD:2D:02:CC:10:33:73:A6:E3:04:52:07:01:18
Authority key identifier: 56:D1:60:DA:F9:66:0C:0E:39:8B:1E:38:49:FE:0D:40:82:26:63:F3
Certificate issuer:       /CN=56d160daf9660c0e398b1e3849fe0d40822663f3
Certificate serial:       0193579BC7CCB7A6C0E20FEBAFDF637920E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VtFg2vlmDA45ix44Sf4NQIImY_M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.mft
Manifest number:          0182
Signing time:             Sat 23 Nov 2024 06:00:47 +0000
Manifest this update:     Sat 23 Nov 2024 06:00:47 +0000
Manifest next update:     Sun 24 Nov 2024 06:00:47 +0000
Files and hashes:         1: VtFg2vlmDA45ix44Sf4NQIImY_M.crl (hash: fa9NMUyNnrNBufoKDha+LocxavYVofkwmTXFuYF8Y9w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VtFg2vlmDA45ix44Sf4NQIImY_M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 00:17:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:57:9b:c7:cc:b7:a6:c0:e2:0f:eb:af:df:63:79:20:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56d160daf9660c0e398b1e3849fe0d40822663f3
        Validity
            Not Before: Nov 23 06:00:47 2024 GMT
            Not After : Nov 24 06:00:47 2024 GMT
        Subject: CN=aecef98383e7dd2d02cc103373a6e30452070118
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:31:ee:63:ee:4d:6e:d2:2a:24:b9:c3:4d:2b:
                    43:1c:34:e1:d1:1a:ee:c6:9d:52:64:65:90:ed:ad:
                    0b:4a:c2:d4:58:5d:f8:76:b2:45:77:76:7a:c9:1d:
                    5f:7a:bf:e9:e0:66:c1:ab:54:ee:72:ec:39:0e:7e:
                    29:31:74:9c:7f:f7:d0:3d:cd:7c:96:69:be:02:c1:
                    c1:c1:b2:66:b9:e4:3d:67:c7:d5:b8:46:83:fe:de:
                    f0:6f:6b:bd:15:fe:dc:a7:bd:61:53:81:01:dc:29:
                    09:25:1e:99:98:4c:c2:45:1a:4b:b9:8a:25:ff:c1:
                    92:fb:40:ed:44:17:21:83:c5:2f:f0:45:98:92:9b:
                    99:c6:eb:b5:34:18:ef:24:94:df:52:c7:e8:28:41:
                    db:bb:dd:9f:30:8c:74:bb:83:4e:de:6f:cb:33:0c:
                    16:b2:89:85:63:7a:19:d6:4c:40:81:52:e5:3d:12:
                    bb:c4:de:0a:89:02:c2:06:9b:e6:2d:fd:25:fc:f0:
                    de:26:53:83:88:0a:fe:d2:98:8b:49:21:4e:0c:b4:
                    3a:0a:c3:db:4b:7e:4a:c3:44:cd:1e:be:50:b6:84:
                    3f:50:fb:31:46:59:88:fe:49:79:4f:2c:4d:89:ab:
                    34:69:4e:92:75:41:49:6d:30:16:bc:ba:dc:a8:28:
                    3f:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:CE:F9:83:83:E7:DD:2D:02:CC:10:33:73:A6:E3:04:52:07:01:18
            X509v3 Authority Key Identifier:
                keyid:56:D1:60:DA:F9:66:0C:0E:39:8B:1E:38:49:FE:0D:40:82:26:63:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VtFg2vlmDA45ix44Sf4NQIImY_M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/40e24d-1208-42d3-b399-9de8d5cb0c7d/1/VtFg2vlmDA45ix44Sf4NQIImY_M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:c5:1b:c5:e1:3d:dc:05:e9:8b:f8:53:7c:67:fc:09:71:56:
         b6:97:3a:8c:7c:3e:87:d9:0b:ab:44:3c:85:27:c5:b6:7f:f9:
         83:ec:d5:f4:c5:ff:44:df:e3:a2:d8:06:fd:92:96:70:dd:09:
         d5:ae:e8:61:e1:3e:b5:65:2e:21:a2:d0:0d:16:51:aa:29:55:
         4f:3b:6b:1e:fe:bd:fb:af:04:9f:7f:dd:bb:61:ca:94:52:dc:
         a5:68:05:88:e7:83:dc:36:d8:57:17:18:97:5d:09:dc:ab:47:
         ee:98:5c:3d:30:5c:66:80:63:d8:ad:5b:4e:fa:d2:8c:4b:79:
         99:c3:ce:0a:27:70:59:fa:5f:c0:75:e0:0d:ed:f8:ec:df:95:
         0a:64:08:74:6d:f3:f7:b7:2f:27:5b:f3:58:f0:31:08:11:98:
         7f:98:50:f6:b6:a2:b6:aa:85:83:c3:cb:f1:6a:ad:37:76:99:
         57:d6:87:e9:5c:73:30:94:76:18:12:53:67:40:58:d5:51:6b:
         07:68:51:4b:53:1b:89:8d:ed:7b:b2:16:49:10:2d:e6:ab:e0:
         d0:f8:7c:07:15:28:4d:b7:8c:09:a0:ef:05:68:30:32:88:0b:
         b8:3f:8a:94:87:02:38:a8:eb:03:fe:cb:75:16:f3:c2:67:bf:
         b3:10:93:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----