Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
File:                     MNWOQMbZHzcp5X4zRNMItZkv5G4.mft (raw, json)
Hash identifier:          UuwI0IDEhECLPf1TD3hGZIMSX8KVYqca1/iZfwwysp8=
Subject key identifier:   5D:65:B3:37:C4:B6:EB:19:1A:D7:F8:AD:D8:EE:4C:F2:B8:D7:40:C9
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Certificate issuer:       /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial:       0195DFD8B88B323E88DA07CED5B3540D47F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft
Manifest number:          09B9
Signing time:             Sat 29 Mar 2025 03:01:16 +0000
Manifest this update:     Sat 29 Mar 2025 03:01:16 +0000
Manifest next update:     Sun 30 Mar 2025 03:01:16 +0000
Files and hashes:         1: BhR4gh6niMuAg5TJ32ur0BjKaqs.roa (hash: Zv2rwkQ5zJHX1INCUgBx9oQ77dKwpoY1KIJrtlNZemo=)
                          2: MNWOQMbZHzcp5X4zRNMItZkv5G4.crl (hash: ogOp8j8vLDI41e1J8fzq0eYBiwS6MGBx1QI3Lk57bSY=)
                          3: XXRk-2utC2qSFmq343z5VXrm2u4.roa (hash: ytRglwlu3WOrTr72XPTW+Woc0VzZSF5e3VxmBUNFs3g=)
                          4: Xp6Av0k8Jw85tGpea19kV0rC7zU.roa (hash: HoTKGzCgPJaXTFRgn8HDd9Uw/rl7lFS8MklAEJByUKE=)
                          5: uaxf2AGptn0k5nSChIQ5U9I-OzM.roa (hash: bH20ytgUK7nqS56x69xVlTEkEDFzbypHFv+jFwf5Z1I=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:df:d8:b8:8b:32:3e:88:da:07:ce:d5:b3:54:0d:47:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
        Validity
            Not Before: Mar 29 03:01:16 2025 GMT
            Not After : Mar 30 03:01:16 2025 GMT
        Subject: CN=5d65b337c4b6eb191ad7f8add8ee4cf2b8d740c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:42:32:9f:03:c6:6e:9b:29:58:e4:8c:bc:e8:
                    59:32:b6:7c:50:e4:7c:e4:68:4b:75:20:44:09:1b:
                    ad:de:de:96:a6:41:61:67:72:01:f8:81:f1:f4:9a:
                    ec:1f:fc:a4:55:38:97:f5:bc:0c:ca:78:9f:2f:00:
                    31:a3:9d:99:37:46:b1:84:8a:11:d6:16:a8:20:d6:
                    03:2d:0b:18:14:93:9a:08:1c:43:94:94:3b:7e:47:
                    5c:11:9d:c2:32:dc:db:c3:71:e1:94:6f:5c:7a:2a:
                    a2:d9:ce:d2:b1:24:12:29:13:a0:4d:03:6d:3b:c2:
                    8d:39:d5:c4:db:ac:d8:d7:d5:16:aa:a7:bb:54:c4:
                    29:57:a2:51:05:eb:26:7e:72:64:d6:6f:44:d0:75:
                    1e:87:1f:c6:12:e5:28:36:97:2b:56:47:46:1a:76:
                    5b:12:1b:09:5a:b5:c4:dc:ca:22:ee:52:fb:d5:99:
                    d1:c1:68:25:bb:2c:6b:da:3d:97:53:91:32:a5:fd:
                    0a:4d:2b:45:91:4c:e5:03:0f:1d:b8:b2:b9:d2:2d:
                    26:4b:19:65:16:3a:92:2e:61:f9:48:c4:d8:d6:c3:
                    e7:8b:f9:23:f3:f0:00:cc:7c:67:31:36:86:e6:1b:
                    46:6f:ce:59:ee:53:13:45:08:28:03:c0:fc:e8:c3:
                    1b:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:65:B3:37:C4:B6:EB:19:1A:D7:F8:AD:D8:EE:4C:F2:B8:D7:40:C9
            X509v3 Authority Key Identifier:
                keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:59:1c:07:91:77:56:41:e6:75:6e:57:53:80:50:1d:26:6a:
         4e:10:46:7a:12:44:9d:70:50:66:85:89:db:e8:6a:7d:7a:5c:
         15:7e:7f:81:14:4d:e3:bb:2a:c8:96:1b:91:fc:83:dc:a0:d4:
         80:5a:1d:a2:4a:7c:5d:1c:f4:57:72:73:8b:eb:70:ab:7c:67:
         60:e1:6e:d6:37:51:e5:59:39:a8:57:48:7b:ed:2a:ce:84:b1:
         60:5c:ad:64:c9:dd:a7:c4:ee:73:a4:60:25:2b:b6:50:10:32:
         6e:7e:ce:71:78:d7:d8:74:25:23:de:f8:dc:f6:2c:34:51:65:
         03:bb:1d:9c:ea:ac:35:d1:e9:44:ad:a1:b6:63:34:0e:0a:77:
         23:47:98:74:a4:8f:8f:ad:89:c5:16:16:f1:cb:f5:2b:55:04:
         6b:65:f7:ec:79:78:ae:15:40:df:ab:08:f5:9a:00:ea:fa:23:
         78:09:72:4a:49:b7:99:61:aa:87:a4:65:60:92:58:bd:d2:34:
         17:6e:22:57:4e:4f:f0:a3:f4:24:66:50:bc:d9:34:c4:9d:cd:
         ca:2a:81:c5:d4:97:52:0c:cf:50:87:5a:22:c3:65:b6:b3:7c:
         4c:86:7e:7e:da:a4:b4:db:cd:27:13:75:05:23:c9:2d:71:4e:
         7c:ba:8a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----