Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
File:                     YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft (raw, json)
Hash identifier:          8TTaNt4NQbQ4QgFcy8Hd9jkUj6hH8kQRSH92Awq2lb4=
Subject key identifier:   6C:8F:28:A0:C8:F0:DD:55:2E:16:42:A7:BE:77:C5:B5:A2:D2:A8:B4
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Certificate issuer:       /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial:       0195DFD92C6AD7EDCCAC4BB091888206E41A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
Manifest number:          14CB
Signing time:             Sat 29 Mar 2025 03:01:46 +0000
Manifest this update:     Sat 29 Mar 2025 03:01:46 +0000
Manifest next update:     Sun 30 Mar 2025 03:01:46 +0000
Files and hashes:         1: NRlbji1zgmp6wd1PjpDk0T2ZUGk.roa (hash: TKAQNNpSaY4TAI1TdJLCf/Ljbi9ccCQ85au2gXamNHA=)
                          2: YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl (hash: H3izo+rIyJyc877hGznUu93FEof4xtvxBzLkg9+Y+iQ=)
                          3: a-LdFc8kFHmTn2Z0Vu6JHLUtEY4.roa (hash: zTR8ty0nmJzU13XE2BvXWY2tGZYklQKm1YYaB327LpQ=)
                          4: el7j1J3bDKT27ieG83FPrQYbZJc.roa (hash: T0KRecSjSVtSKj2we6RG/6efDR4xy2f/rpalGX+ig90=)
                          5: od_NfkWMgnzZGkwU7wJ-RgWOeM4.roa (hash: OZscsQ8cir5jkIZyLY0FUkHozKmgjWJmCvTcbzJzQOg=)
                          6: tinXUk407KICO2MXsH1p4TReydw.roa (hash: linbqgFB5KTsziPayiqOokYdnyWHwGO4kAHLVkJgE3k=)
                          7: wxZtKKgCuX_XkT9wjC8PBIL2aLI.roa (hash: tIV+HptpEfjZ8DjgmHhOJU8c4e/cERhkwqc7ixWl0UI=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:df:d9:2c:6a:d7:ed:cc:ac:4b:b0:91:88:82:06:e4:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
        Validity
            Not Before: Mar 29 03:01:46 2025 GMT
            Not After : Mar 30 03:01:46 2025 GMT
        Subject: CN=6c8f28a0c8f0dd552e1642a7be77c5b5a2d2a8b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f6:fa:0a:bc:c4:5a:ab:bc:55:e7:bb:be:56:
                    3f:65:c5:c0:f8:2a:e9:dc:7a:07:d3:81:5d:1b:a9:
                    9b:3d:a6:52:5b:4f:67:89:0f:a1:de:de:6e:40:69:
                    52:31:87:65:45:60:6c:0a:43:77:2f:c6:39:a1:01:
                    3a:31:09:9b:67:87:c8:ac:8c:20:c4:db:14:e4:4e:
                    e9:89:bb:ac:f7:8e:84:81:f8:b0:48:9f:80:ea:9c:
                    30:85:f5:06:a5:f4:61:5b:d7:e7:55:bf:dd:cb:06:
                    74:b5:76:8a:2e:d4:e7:d2:95:20:c3:c1:26:e2:5f:
                    2e:4f:95:0b:a3:23:9e:c7:5f:af:e6:c1:38:7a:40:
                    98:a1:ca:b4:6a:cc:1b:51:da:09:1f:98:3b:1e:70:
                    63:be:50:b6:38:da:28:18:b0:ee:74:33:d9:03:f4:
                    93:63:17:22:1d:03:95:cf:b2:f3:aa:43:cf:a1:37:
                    4f:1e:df:ca:bc:ee:77:c3:ed:df:9c:49:b3:d3:d6:
                    d8:8d:f7:af:97:1a:d6:55:da:bd:5d:53:2f:b9:79:
                    0c:ac:f6:03:ee:74:82:bc:88:1d:e6:7f:a8:8a:94:
                    9c:d9:43:b9:b0:b6:14:c1:b2:a9:55:67:7b:f4:69:
                    e8:6c:66:9b:04:80:66:eb:f1:9d:d9:0c:ce:9e:dd:
                    2f:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:8F:28:A0:C8:F0:DD:55:2E:16:42:A7:BE:77:C5:B5:A2:D2:A8:B4
            X509v3 Authority Key Identifier:
                keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:ce:39:35:2b:8a:30:4b:6c:f0:3b:73:95:6c:6e:0c:c7:4a:
         1d:e7:88:6e:bb:53:b7:05:ff:b1:93:dd:74:95:82:5a:20:6d:
         cc:5a:d4:fa:89:80:46:06:70:57:8c:6e:c1:9f:8d:8e:d4:2c:
         0c:2f:6e:c9:1d:32:b7:fe:22:19:e0:1d:bc:a2:72:cd:44:32:
         7f:94:fa:3d:3f:3a:b9:67:af:4c:24:cc:c4:90:1b:c7:7c:27:
         5e:22:5d:f2:5a:c7:43:4a:f2:a2:1d:4a:19:74:85:dd:3f:e0:
         ef:e4:a9:0c:4f:5e:37:bf:39:3f:2a:ef:40:7d:18:75:0c:84:
         14:3f:37:28:66:5d:62:52:59:d4:ac:ba:00:6f:b6:2c:a6:70:
         c2:43:35:5b:4b:c9:b7:f6:28:63:af:fa:5f:83:eb:85:5a:24:
         87:7b:f2:99:36:c6:0a:11:f6:a7:81:c5:16:81:86:bf:1e:15:
         a1:b5:eb:a9:41:09:b3:3c:92:ee:23:e3:e7:d4:35:48:05:12:
         61:66:51:4f:11:5e:9a:3b:e9:1c:86:e5:d7:b4:c3:84:85:ed:
         78:99:d0:0c:1c:93:a7:fa:7c:1b:d3:46:50:aa:25:94:11:6f:
         2b:03:84:64:d6:76:54:6e:14:9b:1f:93:80:32:ed:b1:ec:52:
         44:fc:f3:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----