Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
File:                     orEujfOr1VWfnPloCvZd0WWJ3oY.mft (raw, json)
Hash identifier:          /b0z8a6ndKeJhcVkaBPKjlOM8Ks2e2Ns9kUQw6io5fE=
Subject key identifier:   79:15:01:F4:04:15:F7:2B:B2:36:13:6D:18:EE:A6:E8:23:0B:17:69
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Certificate issuer:       /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial:       019913BE09FEA25E3819FD1BAAE6716F4C5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
Manifest number:          169B
Signing time:             Thu 04 Sep 2025 08:00:45 +0000
Manifest this update:     Thu 04 Sep 2025 08:00:45 +0000
Manifest next update:     Fri 05 Sep 2025 08:00:45 +0000
Files and hashes:         1: 1gP7laimXwOtYI0TDdvjNAZSDA0.roa (hash: 8Xqi4yRc4nERbnab0H1thViYzL4oL0Ulg6zO3qwk1tY=)
                          2: 3_QUX0Y1KroB5F1-NPC5TQvpgnc.roa (hash: wdKwymD7k75WY4rShVLqlSlWCtmlMYlcDUveKBoGB2A=)
                          3: 68Je14HfbMGCfCmnq9F6n7nsxV4.roa (hash: HRQSDiqtMhKBvSd4tKgyQpXDDx18X6TpMnJXOBZsI9k=)
                          4: 6LT2Fmx2AvdvAyPEavcIF6YNISU.roa (hash: xQkludjOvnIvi3sBuHQZGgH+sEIqNW8a2/OpVWjIvBU=)
                          5: 7Tkoy4lojAeiPcSkXajHe26fQC4.roa (hash: kvNhfuNmRwiDvsVRjUcYOz9LMArG+Y7eQaS5KgCSjUg=)
                          6: DyWWOZN8ZTBRhf1Fm0u0zqt0jfg.roa (hash: JdiiPOalyZBqTA3/ZOTpeoS0RQEBs3JtiLIYPTkerfM=)
                          7: Eg2Wkq8DXFb0BZXy9FUsIMRvg0E.roa (hash: mk4cMuO6kmXayUvhQtWdcbVLZPOO5EQ4SMdROMAza2M=)
                          8: OcAvtCfGeHAKogvTrE4zVIYXhXs.roa (hash: ytTb8Vp57MsWC+qg8DRVK13nEW8nfvpJJgza5MGPgYA=)
                          9: QmFH5JvM3VC_JAbySWgAPqV6UHI.roa (hash: l6Fwra+B7GrB2tJFkxbVnW9ZuL62WOg2AUF3u0rUSgw=)
                          10: SDCXJRx9t-reL4bUfwMKb-d-1i4.roa (hash: 2Gg2H/tNKWSSCtlp3H67jpnMKBrH5KntZDcE5+4ZVrQ=)
                          11: W8RLhMRyvdfsKzFleWXe_i4i7JE.roa (hash: tJ8yRnMqQTHOLrrRT7uxmUewK9qaLT5zqMo4qVvP0fw=)
                          12: XACqnewxbRgjHxKsLaFopimZHeY.roa (hash: MIusKXphk72DRohBPHiq5YJIV9C9zTT6OGYs8zxk85A=)
                          13: ZDGQAv9QxZxlIAXGTSfjJC7zfq4.roa (hash: TUyDO366CQ4555rPQj40EOj67l7lgmGcdeXigo9fn2w=)
                          14: ZgFUKtoAGiNjKUo9XcPEn1qeAFc.roa (hash: TDQBb/Bd8P97rUcBMKsWbYhMoJ4eNE0/rZeeqnamWwY=)
                          15: aEWr6-EqtkKVBn1aiC7rHdjKt8Y.roa (hash: crXyg1I0M6v1iZUeG0Vpk1mS5J8AlR2ziEDMO6PLwNs=)
                          16: cZ35CSPr-e6s9ZzZ1cCpKSrcsxQ.roa (hash: Q+tgir+fUPA3KtG37Q+v+2DT+F3gXFs+ldjurtDdJms=)
                          17: dzR6au3FLXSUL6wnu3sGMtx5vuE.roa (hash: TycFADlFb4vyHMprwY7RZeMmn+iT/ePeH0EO+pcdo8k=)
                          18: hT48KCBTZZmgjWNR0omilLv1234.roa (hash: RA3O16mDot75n7YV1dkz8IBPV2SpMqJkQ3E7/vV2VHo=)
                          19: hnuqfuqQFfls7WsQI7eQEfSUik0.roa (hash: 4glBckXjWMe5XR/kJnErYQjsYivbggBDZAVbZrhZteQ=)
                          20: l0OkrdC46OXcFrAyK1efk-4Xsw0.roa (hash: e6GLkxVIdJGeVoL8lxi6pYki19y1uXIM73RCaOWJKXc=)
                          21: m30AM2TdwhKzdf1N10cQP_Viy_c.roa (hash: CM1Hu68gDxVweB/504GwCoDAaC8vSBSM1qlN7Xy5w+M=)
                          22: nExuetV9MCMJWIoZU5Vd2o1iylU.roa (hash: 63bmpu0+5SyyRA291GX6DBZPH4lWBzWa267jOBa6cug=)
                          23: orEujfOr1VWfnPloCvZd0WWJ3oY.crl (hash: 7sjfaNklpfYEox+C8K+7s4ppYm9OW7RU2dHfwjZwZck=)
                          24: qKhGSn-anlVBbLwa8kuLCuYeIg4.roa (hash: GMbSoeO7Bt68N/Bj/6mj7uVPJ/WZKmJE6Cg5RyuDqEs=)
                          25: wWFdhMIO6v61Bc3PDCCNPDokWKM.roa (hash: LD5hJmV8+HaeLOGo6OUg1n5/lZTU/SRfQzXJm/qTJc4=)
                          26: xHLyst5rCdhKq_xr6fZrDygY9Wk.roa (hash: VJ+zSPGIh9+rBSHp3km7AYwrj4kH0AH2TBHOvWDDO7A=)
                          27: xY8O1HQcthonbf03hVZUJttA-3k.roa (hash: VnV3WEcdTaUx8HFdXjrg5qMNEOniv+q8hPyCeb+p72M=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:13:be:09:fe:a2:5e:38:19:fd:1b:aa:e6:71:6f:4c:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
        Validity
            Not Before: Sep  4 08:00:45 2025 GMT
            Not After : Sep  5 08:00:45 2025 GMT
        Subject: CN=791501f40415f72bb236136d18eea6e8230b1769
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:8b:56:f4:6c:cc:28:aa:d3:57:52:35:59:b1:
                    45:97:92:ac:fe:2e:0a:18:d2:1a:d1:ce:c8:6e:fc:
                    12:1b:6d:b5:cd:41:3a:fa:3b:b1:cf:30:5a:f5:04:
                    5b:f0:b3:6a:59:10:6f:1d:5d:94:2a:43:35:1e:e0:
                    99:10:49:e3:4c:2b:f6:0a:cb:5e:b8:f7:93:64:5a:
                    af:b6:58:c2:ed:ae:bd:45:a3:a7:a9:66:1f:1a:c5:
                    59:1d:2b:7a:fb:a9:2e:7a:90:9e:06:2e:da:80:12:
                    64:c9:44:dc:96:8c:cb:70:b4:c1:48:c5:9d:2d:d4:
                    59:da:14:eb:f9:e8:fb:ff:8e:b2:d7:09:30:3e:d6:
                    ce:eb:f7:e5:8f:ac:8b:26:cd:9a:0e:9a:3f:a0:26:
                    75:1d:46:73:93:a1:61:be:b8:d7:a0:d7:65:26:14:
                    c8:84:55:ae:7b:df:03:23:35:db:20:68:2a:76:94:
                    84:6f:ab:a5:f7:ee:cd:67:aa:c2:3c:83:7d:b0:b4:
                    56:af:5e:04:4b:e8:75:f2:99:60:33:2b:d3:1a:a3:
                    bf:5d:19:d3:66:af:7c:2f:c5:5a:71:a2:35:2a:65:
                    eb:c4:2e:06:c2:34:cc:e8:dd:02:40:20:09:1c:eb:
                    38:c6:f9:27:2c:2a:c0:9f:29:18:63:83:63:cc:8d:
                    ec:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:15:01:F4:04:15:F7:2B:B2:36:13:6D:18:EE:A6:E8:23:0B:17:69
            X509v3 Authority Key Identifier:
                keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:66:ec:a6:31:83:dd:c0:54:2e:7e:c4:ed:2e:36:3f:cb:ca:
         46:7b:55:8e:b2:5b:e4:0a:6f:f0:6a:4f:63:48:08:ca:45:7e:
         0d:3c:d7:50:82:43:3a:a4:46:24:60:17:27:b0:a3:78:2e:f6:
         df:17:e5:45:9e:55:00:e5:ce:78:93:d4:bb:e9:6a:34:e9:1e:
         06:01:31:f2:c2:6e:67:3a:de:7e:bc:76:4f:09:21:c8:61:ab:
         f8:ea:df:15:26:b5:0f:ed:bb:fc:50:59:bd:74:a2:78:97:54:
         ea:5d:2d:6b:6c:d2:a0:db:6b:04:25:9c:5c:c1:16:eb:7a:c2:
         7a:fa:f7:e2:c1:13:bf:50:43:43:2f:0d:95:3b:a6:12:22:d3:
         40:49:9b:c5:f1:3e:02:d6:0f:6e:42:cc:1e:33:45:7b:2c:8b:
         08:dd:46:85:6c:6f:96:f9:84:ce:9b:ce:81:31:4e:68:df:ff:
         a9:1c:e2:b6:bd:61:76:71:4e:ff:78:fa:57:e4:e3:c6:ae:f1:
         05:b3:e8:3a:b5:78:52:0f:ff:29:8c:a2:9d:06:8d:03:7d:11:
         9e:56:a5:8c:c9:19:cd:d9:6c:b6:60:72:71:2c:bd:40:40:74:
         dd:48:c6:1f:63:f4:01:2e:00:2f:9c:c2:44:a4:c4:5a:ad:f3:
         d2:d6:74:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkTvgn+ol44Gf0bquZxb0xdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYjEyZThkZjNhYmQ1NTU5ZjljZjk2ODBhZjY1ZGQxNjU4
OWRlODYwHhcNMjUwOTA0MDgwMDQ1WhcNMjUwOTA1MDgwMDQ1WjAzMTEwLwYDVQQD
Eyg3OTE1MDFmNDA0MTVmNzJiYjIzNjEzNmQxOGVlYTZlODIzMGIxNzY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4tW9GzMKKrTV1I1WbFFl5Ks/i4K
GNIa0c7IbvwSG221zUE6+juxzzBa9QRb8LNqWRBvHV2UKkM1HuCZEEnjTCv2Cste
uPeTZFqvtljC7a69RaOnqWYfGsVZHSt6+6kuepCeBi7agBJkyUTclozLcLTBSMWd
LdRZ2hTr+ej7/46y1wkwPtbO6/flj6yLJs2aDpo/oCZ1HUZzk6FhvrjXoNdlJhTI
hFWue98DIzXbIGgqdpSEb6ul9+7NZ6rCPIN9sLRWr14ES+h18plgMyvTGqO/XRnT
Zq98L8VacaI1KmXrxC4GwjTM6N0CQCAJHOs4xvknLCrAnykYY4NjzI3sfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkVAfQEFfcrsjYTbRjupugjCxdpMB8GA1UdIwQY
MBaAFKKxLo3zq9VVn5z5aAr2XdFlid6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEt
YjRjYjYzN2RhOGMzLzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEtYjRjYjYzN2RhOGMz
LzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATGbspjGD
3cBULn7E7S42P8vKRntVjrJb5Apv8GpPY0gIykV+DTzXUIJDOqRGJGAXJ7CjeC72
3xflRZ5VAOXOeJPUu+lqNOkeBgEx8sJuZzrefrx2TwkhyGGr+OrfFSa1D+27/FBZ
vXSieJdU6l0ta2zSoNtrBCWcXMEW63rCevr34sETv1BDQy8NlTumEiLTQEmbxfE+
AtYPbkLMHjNFeyyLCN1GhWxvlvmEzpvOgTFOaN//qRzitr1hdnFO/3j6V+Tjxq7x
BbPoOrV4Ug//KYyinQaNA30RnlaljMkZzdlstmBycSy9QEB03UjGH2P0AS4AL5zC
RKTEWq3z0tZ0rg==
-----END CERTIFICATE-----