Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
File:                     XTnRW9L8yEdxumqimqVEKLIc72A.mft (raw, json)
Hash identifier:          C8Ip2x/l3yx3TkCl7G3ngyq3AFy0+U2w+AIdwbggqYU=
Subject key identifier:   A1:A5:F7:2B:94:60:F3:F1:B2:59:04:7C:BC:57:71:5B:F4:12:5B:F5
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Certificate issuer:       /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial:       0195E00FCC09C740661B307E5AABAC0616E4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
Manifest number:          14EC
Signing time:             Sat 29 Mar 2025 04:01:26 +0000
Manifest this update:     Sat 29 Mar 2025 04:01:26 +0000
Manifest next update:     Sun 30 Mar 2025 04:01:26 +0000
Files and hashes:         1: XTnRW9L8yEdxumqimqVEKLIc72A.crl (hash: xSnlKnKXGnZMi2xdLJemwo3tkonErTIZyZ0a22j2SsY=)
                          2: ePJeWVTAdZT_Wr3OYR6GjKSITgU.roa (hash: klWWeDelEbUTnfh8FrnhieoEbxuIBTXbZQXnpDFAChk=)
                          3: f-vg02HpReXjcRCHCnuRFWno74c.roa (hash: NkCDR8DJVgOIturlqfX7bbNHy0aLhC+5p7VwdPkOrrQ=)
                          4: yMB3sTLlHGgzRzhu5Z0FSdJpMGA.roa (hash: CBdf1cYZj25l/4J6kJgnhiGt2UR1zv1wzzfHJdJTVR0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:e0:0f:cc:09:c7:40:66:1b:30:7e:5a:ab:ac:06:16:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
        Validity
            Not Before: Mar 29 04:01:26 2025 GMT
            Not After : Mar 30 04:01:26 2025 GMT
        Subject: CN=a1a5f72b9460f3f1b259047cbc57715bf4125bf5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:7f:1c:47:eb:32:a2:24:a8:03:a1:65:c8:0d:
                    92:07:0b:57:76:06:e2:c2:92:0c:74:b4:b2:07:8e:
                    26:96:6b:34:19:fb:ca:84:72:cf:c4:1e:e4:9d:98:
                    ea:b7:00:85:a2:9f:5f:dd:cf:fb:5b:11:a8:e5:c9:
                    3d:5d:92:f0:a0:6c:20:0c:fa:c9:c3:b9:ea:a0:eb:
                    46:29:8b:80:71:36:1d:f7:da:d4:90:f0:a2:d4:62:
                    4a:7b:31:d3:97:ce:84:50:b4:76:d8:3b:ca:b9:a0:
                    b6:69:4b:44:b7:e2:99:c0:1f:c8:09:33:41:5e:4a:
                    1a:21:48:ba:e5:b9:64:c9:bc:97:c5:73:2e:bb:b3:
                    68:2d:c0:85:f4:1f:c5:5b:ed:19:f5:29:3b:d4:0f:
                    0d:a8:57:e0:d3:a5:0e:cc:ec:c0:58:b9:dc:a0:7e:
                    4f:dc:fe:b1:9d:24:98:1f:a1:8e:59:8c:9c:e6:0f:
                    3b:f1:78:8d:46:95:e1:ff:05:88:3a:1f:e0:7b:bd:
                    2b:dc:02:eb:4e:b7:0c:a1:9a:c3:53:84:72:1e:9c:
                    e5:ed:f1:f2:32:73:12:c1:9c:18:00:65:ab:56:90:
                    11:57:05:41:f9:e5:43:be:43:ab:9a:da:61:4b:02:
                    94:e5:a1:62:14:86:d9:b1:ef:c3:f2:15:ac:72:e3:
                    32:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:A5:F7:2B:94:60:F3:F1:B2:59:04:7C:BC:57:71:5B:F4:12:5B:F5
            X509v3 Authority Key Identifier:
                keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:1a:f3:07:74:db:ea:b5:af:3a:ad:9b:0c:03:af:18:58:49:
         23:9b:f1:d9:c7:32:94:98:45:73:41:23:2f:92:98:c0:a5:83:
         7c:77:11:54:b9:3c:b1:ad:b5:40:31:08:55:24:47:19:38:b4:
         76:1c:83:14:d6:0f:8f:bf:04:0a:97:d7:9e:a4:da:4a:31:56:
         86:e0:0d:7d:71:f9:3a:1c:04:2c:77:2a:f3:c1:24:c0:b0:f8:
         f6:84:dc:dc:25:d8:aa:46:99:43:07:af:de:86:de:cb:64:59:
         63:e4:92:e1:87:27:dc:ff:ed:0c:b2:e8:a7:13:36:2f:43:98:
         28:45:7e:42:08:62:92:36:f8:a5:03:3f:7e:03:56:0a:71:4a:
         65:45:95:12:4e:fb:06:52:b6:c5:71:c3:48:04:d4:e6:66:26:
         87:f2:59:a7:08:6c:b3:12:b1:9d:dc:61:b3:f5:aa:b8:dd:c9:
         15:e7:f4:71:cf:6f:83:fc:7b:c8:97:98:a3:8e:af:90:73:78:
         78:00:a4:9f:96:82:1a:d5:4d:f4:a3:57:a8:4a:e0:23:82:8e:
         92:49:62:f0:23:ab:53:73:68:af:3f:d4:f8:2c:59:27:29:a9:
         b5:51:12:d3:ad:05:91:2b:9b:e7:cc:a2:f5:f3:d7:6f:a9:01:
         d4:17:cd:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgD8wJx0BmGzB+WqusBhbkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkMzlkMTViZDJmY2M4NDc3MWJhNmFhMjlhYTU0NDI4YjIx
Y2VmNjAwHhcNMjUwMzI5MDQwMTI2WhcNMjUwMzMwMDQwMTI2WjAzMTEwLwYDVQQD
EyhhMWE1ZjcyYjk0NjBmM2YxYjI1OTA0N2NiYzU3NzE1YmY0MTI1YmY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA038cR+syoiSoA6FlyA2SBwtXdgbi
wpIMdLSyB44mlms0GfvKhHLPxB7knZjqtwCFop9f3c/7WxGo5ck9XZLwoGwgDPrJ
w7nqoOtGKYuAcTYd99rUkPCi1GJKezHTl86EULR22DvKuaC2aUtEt+KZwB/ICTNB
XkoaIUi65blkybyXxXMuu7NoLcCF9B/FW+0Z9Sk71A8NqFfg06UOzOzAWLncoH5P
3P6xnSSYH6GOWYyc5g878XiNRpXh/wWIOh/ge70r3ALrTrcMoZrDU4RyHpzl7fHy
MnMSwZwYAGWrVpARVwVB+eVDvkOrmtphSwKU5aFiFIbZse/D8hWscuMy9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKGl9yuUYPPxslkEfLxXcVv0Elv1MB8GA1UdIwQY
MBaAFF050VvS/MhHcbpqopqlRCiyHO9gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAt
YzI5YjQ0ZGU1M2E4LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jODA5MmUtOWY4Yy00NzE4LWI3NzAtYzI5YjQ0ZGU1M2E4
LzEvWFRuUlc5TDh5RWR4dW1xaW1xVkVLTEljNzJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARRrzB3Tb
6rWvOq2bDAOvGFhJI5vx2ccylJhFc0EjL5KYwKWDfHcRVLk8sa21QDEIVSRHGTi0
dhyDFNYPj78ECpfXnqTaSjFWhuANfXH5OhwELHcq88EkwLD49oTc3CXYqkaZQwev
3obey2RZY+SS4Ycn3P/tDLLopxM2L0OYKEV+Qghikjb4pQM/fgNWCnFKZUWVEk77
BlK2xXHDSATU5mYmh/JZpwhssxKxndxhs/WquN3JFef0cc9vg/x7yJeYo46vkHN4
eACkn5aCGtVN9KNXqErgI4KOkkli8COrU3Norz/U+CxZJymptVES060FkSub58yi
9fPXb6kB1BfNMw==
-----END CERTIFICATE-----