Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
File:                     GhREUllzKqZzbCSCNEZZR_wjdNA.mft (raw, json)
Hash identifier:          MMkm9oRdi/8u0/Da650YFWiEnNGTvZKMhy1D4tIIHY4=
Subject key identifier:   0F:45:CE:81:19:DE:9C:05:24:75:3A:2E:62:75:4E:C7:5E:A8:CD:ED
Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
Certificate issuer:       /CN=1a14445259732aa6736c248234465947fc2374d0
Certificate serial:       0195E158DF55A0FC4EA4A26892667432AF84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft
Manifest number:          0B3E
Signing time:             Sat 29 Mar 2025 10:00:52 +0000
Manifest this update:     Sat 29 Mar 2025 10:00:52 +0000
Manifest next update:     Sun 30 Mar 2025 10:00:52 +0000
Files and hashes:         1: 6Usb3ratYZ6D0Zaywu3zy7asyBM.roa (hash: mvJx8LQJM9rCQnMcKS37JkzCfYNP4MvGhPiFvu4e4PM=)
                          2: A8mHxLEXrqAFOW8BcAYBSd_XzeI.roa (hash: I8bAl/t+XgVEF3PHnvvr21l0GKu6zhVZ0Hhxzvtle2M=)
                          3: GhREUllzKqZzbCSCNEZZR_wjdNA.crl (hash: cYWq7l/2/GR/3+k5oJkA8ouOXhTAfKsbI4hrhKXOZkY=)
                          4: KPfcL3irOKeFnGKTIjqaXWtdJTU.roa (hash: 7sW3Ga16GFJniEHMt07dxCSlWmJVaB2HF6PzWi2CMu4=)
                          5: ScAFpN6HXhn2d-9KA3-XrhqvKKI.roa (hash: w5/z2L8qqgjYAxUqeC/hEc2RLTI0t7JTiIhe8154Qcw=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:e1:58:df:55:a0:fc:4e:a4:a2:68:92:66:74:32:af:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a14445259732aa6736c248234465947fc2374d0
        Validity
            Not Before: Mar 29 10:00:52 2025 GMT
            Not After : Mar 30 10:00:52 2025 GMT
        Subject: CN=0f45ce8119de9c0524753a2e62754ec75ea8cded
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:03:2e:9b:65:97:78:e0:b2:96:ec:b2:33:b8:
                    65:d7:90:a3:03:97:3b:ea:ea:74:8b:7f:b0:10:35:
                    ee:69:e5:7f:fa:09:15:90:0d:e8:73:aa:e1:62:de:
                    95:d2:6b:f7:5b:17:a3:ae:d3:ed:15:09:12:35:9a:
                    fa:a4:b4:21:41:19:4d:af:0a:7a:ec:05:ff:a1:30:
                    08:07:2e:17:89:d6:52:3e:0e:97:5b:80:3d:93:58:
                    90:26:d6:9a:7b:a7:d4:d5:6f:2d:e4:14:eb:37:01:
                    08:fa:f8:28:a2:51:5b:7d:9b:b2:91:c0:e6:ec:d9:
                    fb:ac:42:70:3e:14:61:60:1e:a9:06:dc:e7:18:42:
                    f6:82:b2:c0:cd:7d:7d:24:9f:d7:bd:02:42:b2:58:
                    49:e0:f7:8d:33:a4:59:10:d2:44:be:34:cc:9b:52:
                    e5:72:f1:53:5e:54:98:61:cc:2d:7f:3e:ac:b1:a6:
                    4d:93:08:b6:1b:cb:e2:ed:9b:e9:9f:4c:a6:de:9b:
                    20:97:4f:dd:aa:2a:41:80:d7:d2:11:08:51:41:15:
                    ff:71:d3:e8:8c:1a:96:83:e8:54:d2:a5:10:d9:8c:
                    4e:fc:8d:e5:09:36:62:c7:04:f4:df:22:14:5a:2b:
                    73:ba:9d:4c:05:9e:84:b3:7a:c0:86:83:66:d4:e5:
                    36:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:45:CE:81:19:DE:9C:05:24:75:3A:2E:62:75:4E:C7:5E:A8:CD:ED
            X509v3 Authority Key Identifier:
                keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:31:12:3b:cb:c9:f3:27:6a:84:41:76:8b:e5:a4:6c:b4:d1:
         62:76:e2:5f:55:4e:98:3a:f2:8e:64:fe:d3:20:f7:19:ed:8e:
         3e:ec:ba:f6:69:01:4e:b6:45:55:5f:6d:49:68:fd:a2:73:87:
         be:00:28:ab:fb:84:de:73:09:2e:3d:51:0e:41:b1:1e:dd:eb:
         94:3c:a9:a9:44:42:a8:17:6a:ea:08:1b:2b:c3:d1:e0:15:01:
         55:a9:b9:28:b2:18:92:10:14:ee:1c:dd:6a:8f:8d:45:e8:8d:
         52:41:1c:3f:d7:32:a7:21:c1:2e:94:c3:ae:14:ad:73:34:27:
         3b:9e:e6:54:93:66:e7:f3:b9:a2:e9:a9:c1:47:cb:e4:bb:79:
         3a:5a:39:6a:46:bd:9c:4b:bb:b3:34:b4:bd:3a:0d:fa:4f:0c:
         0c:d5:4e:f4:f7:aa:90:f1:4f:ab:0c:1e:d2:21:2c:6e:ed:5b:
         58:14:36:2b:7c:4a:e2:e7:c1:fe:8e:81:50:10:6f:e9:8a:0b:
         bf:e9:50:fb:a3:a9:08:44:b9:2e:54:c1:7d:3b:de:b9:b7:4b:
         03:67:23:ee:0e:d0:a0:4f:69:61:6d:01:7f:e9:99:1e:54:f8:
         0c:15:90:9e:76:d5:12:b9:fd:6f:8f:47:0b:e9:42:fc:98:9e:
         62:c3:a2:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----