Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.mft
File:                     KxRai98ryhUPJe1Uone49lPv2z4.mft (raw, json)
Hash identifier:          dk9QlQmTc6vSp0z8RExXqZ4/L7ZppMegMVDMu93bgdw=
Subject key identifier:   CE:62:42:22:B6:AA:D1:85:57:81:6C:DF:31:8F:85:EF:B3:3C:14:D7
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Certificate issuer:       /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial:       018EFE61E9B2783A0B04E5B7414EF08C28AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.mft
Manifest number:          08F8
Signing time:             Sun 21 Apr 2024 02:00:13 +0000
Manifest this update:     Sun 21 Apr 2024 02:00:13 +0000
Manifest next update:     Mon 22 Apr 2024 02:00:13 +0000
Files and hashes:         1: 2oQ6OJeMPFxNRYZuirFRK11PFc4.roa (hash: 3RKYu26oRFdKcoqtDIw6pKj+0uzjBxKgPxk0OO9s/lA=)
                          2: AeTSAcejn8lbaSO2JjoYbXuDK4c.roa (hash: pQ9xbGK2moEn3IfuKTBko2h5GfLKBplW+0iaUz3mx4I=)
                          3: Au6YhOckxXKm83TU1SCm8QmoS0I.roa (hash: xkdM9qtmwVDxqCcLLseP5k1iAcS5yge3LABwySYUQjo=)
                          4: B4Y2FHA1Lvmy8M5JP3LRgQKE_oE.roa (hash: PLwPXLjWjDK1O7fUKxvefVQAmcv9qNXXMSKcYv5BP5c=)
                          5: D5oPAAmD5ByypKLeDyO1Nz0HGQw.roa (hash: vPqMg8jyM3FAvV6mydCXT5qVW5GRyv9raN2ZIN8UYVA=)
                          6: G6DPjeY_9qav4ZQjtAxmr4sCCCk.roa (hash: T39rWQmJNE70lldr0pTcOGxN7CB18wByjccPAU0MZM4=)
                          7: HeERyIm7-22QxngFzHU3quyj-JU.roa (hash: HNPCtM6YReH4+ftd8Y7g8lOwga/W7n6N3Nr9TuogWns=)
                          8: HlhGwox0aJb61kfrs7BuaHN-VF8.roa (hash: nRY8bcQaWh/p9xvzrHmxNhz/hf9aCkl2wUIjrSIMcQ0=)
                          9: KxRai98ryhUPJe1Uone49lPv2z4.crl (hash: MmFkprIN1K9ptoijBbMbp4BCDHCLh7KGA0rg1RFPwh4=)
                          10: MLLuWCsw8gXQ4Pda3Sf9CtSuioY.roa (hash: PFz1gf/oEYsn/ZKET5vcjhlwTkCR8updlURoP4JxD2U=)
                          11: OMiyhPplRHkt9YoTrgktuy91CnI.roa (hash: X+05qQ5SdlYh7nnt9vMTHCMCxBNPKCmT1hAd5v49DBM=)
                          12: OeC2mKxdppI7CNdBAWN8tYpFeQg.roa (hash: drKkoHdZXgSJkzVjrQIT5Fkk3JhI7immksZLt2fCsYc=)
                          13: RrIM0EYcHdgxu1lWdrevEHj-Hqo.roa (hash: 1Q9RQ2UexCUHpfpqf1dI+ZPEx0sqLqmYAyGcT/wH/PI=)
                          14: UzcEcSoQN5I84zI7NjV23frCT1Q.roa (hash: BAdUepfvPtF7nusCXo+GN6vnkbTWVcdzgLfeKF7xkN4=)
                          15: W9usx42TEgcgZCKwPQ2mu_akMeg.roa (hash: QktvNEqaqcl8FkW4q9eOrZpVqVwfFsD4iltoOooXlBU=)
                          16: WQ-RzHJGHl0L5rOYEVqrfqbHzGs.roa (hash: 8QInsJEHQOKg2G51+dyLy04B1gRuxdluGOwGuZqcHW8=)
                          17: f1rTv_IThnKFCb1aBgyKclbpYww.roa (hash: 0l3/QRiN5Bjf1+H4l72sOlSy4RSkPa3MDqTG4rhZcsU=)
                          18: jxF6JrhxGTXaRE0yiIgcn19LCtg.roa (hash: 5RsZhlFsw8Yz67xN4L9UibzcEmzkFFfPAYSnqz4iY98=)
                          19: k1I5LKerBjqrx2OT9VblwXHXPKk.roa (hash: 8boRgeVtN8opDbZed62EjIoKXgldbzgTf/F9hIlF5jw=)
                          20: oDwSFcY0odLaDJKrXT16RvMwb2M.roa (hash: 7sVdyhFq647I09oqD5tpRmlyARqgKc1mDDYvbygl3WM=)
                          21: tH54a5u8InlwFx3uoH0av8rprKs.roa (hash: W+A0CAQJXLGWRwH0wHfGcN3s8kCCYsoo0Iy+7Ii/InA=)

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8e:fe:61:e9:b2:78:3a:0b:04:e5:b7:41:4e:f0:8c:28:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
        Validity
            Not Before: Apr 21 02:00:13 2024 GMT
            Not After : Apr 22 02:00:13 2024 GMT
        Subject: CN=ce624222b6aad18557816cdf318f85efb33c14d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:85:7a:fe:cb:9a:6d:52:fe:79:b4:af:c0:fc:
                    6c:b5:3b:34:0d:d0:bb:47:3e:86:05:aa:42:6f:b4:
                    8d:09:82:c5:94:13:18:15:98:4d:75:5e:84:6c:4b:
                    e0:99:47:ce:23:f8:a7:82:b6:de:5b:ef:43:a9:b4:
                    c4:02:b3:8a:6e:cf:6c:32:2e:11:68:6b:3f:a6:d4:
                    cb:39:ca:81:b2:92:20:67:28:d8:06:8d:a1:b8:eb:
                    fc:1e:d8:e8:7c:b1:fa:9e:5c:b6:9b:86:d7:2b:73:
                    3f:63:e3:1f:8c:cc:36:dd:98:f9:1d:62:2b:b7:65:
                    e3:be:32:04:73:b2:e4:15:ca:1e:26:c4:07:02:58:
                    06:02:77:82:87:52:c9:44:48:07:df:42:fa:16:d2:
                    78:de:ca:ce:69:d6:2c:cf:aa:50:91:e5:74:85:7c:
                    de:62:b6:9c:5f:0d:94:25:3c:42:f4:49:16:53:83:
                    ed:c7:5b:d7:97:62:f1:39:9d:ad:ca:8b:86:71:09:
                    f2:b2:ea:d5:f2:5a:53:03:c9:38:c2:c4:e2:7d:db:
                    0c:b6:46:f9:04:d2:02:da:53:08:2c:c5:c2:42:07:
                    c3:3e:04:55:91:19:a6:b7:e1:6b:4f:60:bd:de:36:
                    7e:8a:1d:09:e7:5b:e8:63:ac:35:d8:98:08:07:e7:
                    41:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:62:42:22:B6:AA:D1:85:57:81:6C:DF:31:8F:85:EF:B3:3C:14:D7
            X509v3 Authority Key Identifier:
                keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:0f:16:15:18:43:f0:33:4d:31:c8:a5:b4:0e:c1:a4:31:a2:
         50:31:0d:b5:54:e9:52:a8:3f:79:b9:9e:0d:e5:e9:28:40:4b:
         e0:79:c8:dc:d6:0e:d9:2e:36:0f:18:31:b4:54:d4:c5:da:66:
         b4:28:82:a8:9d:2e:bb:9b:79:2d:04:68:7c:ff:94:78:30:7e:
         18:71:dc:40:50:ef:2d:9e:a6:c8:3f:23:b0:29:7c:01:81:23:
         1f:2d:9c:04:e7:7a:e6:5d:6f:cb:6a:f3:d8:11:eb:bf:15:0b:
         a1:01:69:1e:99:a2:46:27:66:96:14:95:fb:05:ed:9e:5c:0e:
         ce:b4:e3:b0:50:10:25:c8:37:94:99:74:01:06:bc:91:18:cc:
         e3:fe:58:f8:39:55:3a:b5:74:0e:9f:f8:3a:3c:fe:a8:0d:76:
         44:ba:3d:7f:cd:71:88:71:9b:96:d3:17:8a:2c:2a:19:74:c1:
         cd:84:40:e4:fa:e9:3f:80:60:6e:33:9a:6d:04:cb:56:15:cc:
         c9:0b:f5:24:e0:73:a8:bd:e4:ac:14:dd:04:79:14:84:1c:6d:
         d9:90:f0:0b:f1:5f:9c:11:8a:6c:f0:36:a0:9a:64:7a:2d:4b:
         b2:b6:27:84:bd:05:10:95:14:63:94:f9:8f:68:68:e2:f0:06:
         f0:91:aa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:47 2024 by rpki-client on console-ams.rpki-client.org