Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
File:                     kdDHjDCaPpncmrdPLNwEhIWedTA.mft (raw, json)
Hash identifier:          d34qN0XxV31F7bIG2mgyFQpc4IVFsgk/qFXxMNPKjBw=
Subject key identifier:   AB:CD:01:D6:71:F8:E9:58:70:2E:BA:BE:1F:46:36:F8:40:1B:7B:2F
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Certificate issuer:       /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial:       0195E0EB6B4BC6395E8E6E748ED58DB95D57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft
Manifest number:          0FD7
Signing time:             Sat 29 Mar 2025 08:01:19 +0000
Manifest this update:     Sat 29 Mar 2025 08:01:19 +0000
Manifest next update:     Sun 30 Mar 2025 08:01:19 +0000
Files and hashes:         1: 1-W_ixXGYX8sPaJagj-AVwFiwChc.roa (hash: L0D3lIfkN9efhBw5T+b3u9NkdIMxDqZ5UXxZUhgRWOs=)
                          2: 7W9sev3L-VQWc6oeKqV7bwg_M78.roa (hash: iACOPZzpZ14qCk65ni/pYA1L4ve/ow82nu3m+eaX/rg=)
                          3: D9OViOUA1-461O4zttxUuu7lHv0.roa (hash: 2itBNaHzhENVRyOefdMh6N1RENcyUMqY/eAvQKNqorQ=)
                          4: b_UNR9Xj_ycfuOSMA48F_QSRqts.roa (hash: V/FK04zH2Za3Nwu+0PjyuAuPUrWk9vHEnkwAOnyhoAs=)
                          5: gLTw3SxVghFrqUXLXX9aVQWSJyY.roa (hash: X6SiVIHlGA+Slf3SaSpTUzg9Mrw9ENcILtCCgSUB+W0=)
                          6: kdDHjDCaPpncmrdPLNwEhIWedTA.crl (hash: MfxdgWjcV4FEfXzPFP0ThYcoiP4GggtyxyFG0neso10=)
                          7: vUVcdpzXr2JQGsu1xtXoOvW_LHU.roa (hash: 2iN03nQJUllsMqRJ1fP7+P4h4U6MeEk1ERszIuxQ8MY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:e0:eb:6b:4b:c6:39:5e:8e:6e:74:8e:d5:8d:b9:5d:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
        Validity
            Not Before: Mar 29 08:01:19 2025 GMT
            Not After : Mar 30 08:01:19 2025 GMT
        Subject: CN=abcd01d671f8e958702ebabe1f4636f8401b7b2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:fe:b1:63:3c:48:b6:d4:96:24:e5:6a:10:b7:
                    da:8d:5e:44:10:a0:79:10:2f:3f:8a:ac:5a:f3:e5:
                    6b:d5:17:66:86:b2:1c:5a:a6:43:c9:97:60:32:a0:
                    b5:93:6d:22:50:62:6b:ec:fc:29:02:e7:8d:54:4e:
                    d5:83:1d:8d:39:6f:8e:0a:c8:1b:1c:e2:86:c2:71:
                    5b:a0:07:3e:29:05:72:80:93:72:65:a3:d6:cc:c0:
                    ec:6e:54:da:42:f6:53:89:f5:e5:b8:1d:b3:96:b5:
                    af:dd:c4:60:0d:96:7b:e4:71:ed:f2:7b:73:11:3b:
                    8a:6d:8f:5e:b6:9f:a4:b0:49:a5:43:b2:13:87:52:
                    58:32:59:90:8f:99:0c:12:86:59:3a:6e:36:ab:df:
                    8b:33:e1:3f:50:5b:ca:aa:95:ab:76:26:82:60:62:
                    4b:7d:1f:a6:40:a2:d7:0f:4a:38:d6:66:dd:20:9f:
                    ad:e2:4a:8b:7e:78:cc:aa:8f:b8:94:f1:1a:4f:8b:
                    18:09:25:4b:38:35:f1:01:1d:8e:3d:33:b2:c6:78:
                    d5:1f:63:2e:40:97:cc:98:9f:d5:01:bb:d8:ad:a7:
                    b2:d1:9d:88:db:dd:30:b3:0a:4d:43:50:33:0f:e2:
                    8e:83:b9:9f:b9:56:ba:68:78:48:05:0d:dd:25:b8:
                    ae:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:CD:01:D6:71:F8:E9:58:70:2E:BA:BE:1F:46:36:F8:40:1B:7B:2F
            X509v3 Authority Key Identifier:
                keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:d5:12:43:f3:c2:a3:7e:a3:4c:26:77:94:d6:95:fd:e4:f3:
         9c:9d:9a:70:0b:c3:74:06:26:1a:0a:77:a8:7a:3a:9a:1d:55:
         4b:7a:b6:c7:09:ad:3d:cf:db:6b:ab:b3:44:18:ce:e7:a2:7c:
         27:01:84:4d:a9:bd:25:c7:ee:f8:55:7e:d1:41:2e:76:51:fd:
         b2:96:9a:70:4d:14:ab:be:d7:23:10:f0:fb:0c:87:02:0a:aa:
         ad:d4:0e:db:ad:31:c6:5e:d3:c5:89:78:89:16:96:a1:a5:d1:
         53:3f:b6:6d:fe:ed:9d:9b:30:f2:e2:b3:e8:bc:32:12:57:64:
         6e:67:24:23:54:cb:fc:47:3a:d4:99:b9:22:7f:08:e3:c7:5d:
         ba:3d:f8:30:e7:56:7f:a2:59:51:f8:49:32:00:bf:5c:46:31:
         56:f9:73:61:ed:e2:b7:db:25:79:aa:71:52:dc:ec:41:a9:41:
         2f:98:48:f6:ab:f3:3e:98:ec:6a:aa:fe:4d:34:e3:30:24:c4:
         93:db:7d:25:1c:0c:01:c0:9b:e3:56:cf:5c:c7:4a:04:71:dc:
         ad:8e:01:0b:39:d9:aa:94:0f:8a:23:51:97:f6:65:45:2b:40:
         cd:39:36:c0:55:6e:81:af:77:16:e6:e3:5e:7b:dc:24:64:e3:
         c6:44:4c:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----