Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
File:                     IKpgywAkMyottomT8zVxWK9gyN4.mft (raw, json)
Hash identifier:          ZChTlL1y3a/JL5ugO43mK8y7B/QlNAAHN35hEKoeCJA=
Subject key identifier:   17:E3:B2:18:A7:DA:72:5C:FE:7C:39:F1:99:04:B6:C7:5D:A3:72:40
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Certificate issuer:       /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial:       0195DFD898B92B2EC4A534A0D927FB41E9A3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft
Manifest number:          14EF
Signing time:             Sat 29 Mar 2025 03:01:08 +0000
Manifest this update:     Sat 29 Mar 2025 03:01:08 +0000
Manifest next update:     Sun 30 Mar 2025 03:01:08 +0000
Files and hashes:         1: IKpgywAkMyottomT8zVxWK9gyN4.crl (hash: srBdIP8SiUAjmjHl59FOIkAw9P0qfTTqi6nUtc1WP40=)
                          2: N9Zb2hxl4VqsmU3i0xGDA1x2cBY.roa (hash: bj11HyE9bQVpgK8+L49310uUI7++HSDAwFbYXm4t87U=)
                          3: bXnDK3FrjmreLx1RNLHjlK6yokA.roa (hash: 9KnhQYqvA+XwDxuEoTB3PjhKHhHecpLOEmyBwf4FrSA=)
                          4: jNg6vqzUy1VgyEygCa4DvoqjfIY.roa (hash: npuJNuYtC10xnW9UN6NXfDz60ESb4bhdw7EsN6BY2Z8=)
                          5: ttxltNG2zQjIJW6GFa8ByUupTIM.roa (hash: X+Rp7cCbU+AQt/6HVOu55hwFlooIOfWp0xOq7PMcuDs=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:df:d8:98:b9:2b:2e:c4:a5:34:a0:d9:27:fb:41:e9:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
        Validity
            Not Before: Mar 29 03:01:08 2025 GMT
            Not After : Mar 30 03:01:08 2025 GMT
        Subject: CN=17e3b218a7da725cfe7c39f19904b6c75da37240
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:e5:92:1d:40:92:26:e5:73:04:12:ee:81:d4:
                    25:44:4a:dd:f0:f7:33:9a:f9:5e:e5:9e:61:48:a2:
                    68:d7:bd:df:d4:02:de:1a:e1:05:2e:26:5c:78:c2:
                    89:5c:63:2e:ee:9d:5b:b6:49:4f:2c:8e:ae:49:cc:
                    63:0d:3c:4c:71:2d:cd:4b:bf:55:fa:56:b4:f3:cf:
                    7c:15:be:cb:58:e5:b7:4c:b5:1b:11:5d:1f:4e:a7:
                    f2:76:2a:f5:62:5f:22:6f:15:50:be:75:ee:8e:da:
                    ae:5e:e4:b4:f3:e3:14:15:b0:05:ee:b4:a8:2f:ad:
                    eb:ef:20:3c:0a:54:c6:3e:88:c8:6d:64:31:38:ef:
                    e9:a6:ae:b3:4b:cb:1f:80:a0:4b:87:79:02:f6:18:
                    0d:a5:80:c4:cd:1e:62:77:9b:2c:7c:84:a2:f8:fb:
                    3f:01:32:65:2c:34:4c:a0:78:76:32:41:3d:c8:3b:
                    6f:41:dd:cd:25:23:d0:0c:9d:1b:87:78:c0:7d:ca:
                    76:6f:0e:aa:9f:cd:a7:f5:db:e7:b7:16:95:f2:63:
                    22:b8:b0:28:05:f2:45:47:67:1e:73:4b:6e:43:4b:
                    20:b9:84:17:97:43:26:7b:d5:1e:f0:a3:ec:64:bc:
                    75:e2:77:52:0b:78:fd:47:4c:dd:88:b0:b8:b8:99:
                    36:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:E3:B2:18:A7:DA:72:5C:FE:7C:39:F1:99:04:B6:C7:5D:A3:72:40
            X509v3 Authority Key Identifier:
                keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:ef:41:be:e0:b5:9b:50:18:56:bb:98:9c:da:b2:8d:bc:b4:
         d8:86:91:5a:a4:43:7b:2a:03:da:d5:ea:c2:d3:4c:30:4d:49:
         bf:f8:91:3d:3d:28:32:d1:24:19:79:92:34:22:67:57:f2:83:
         aa:0b:ea:61:d6:82:ab:a9:22:2e:82:5f:57:05:eb:2c:1a:18:
         a9:86:cb:bf:ca:45:d5:f1:4a:9a:33:a6:9c:8c:59:06:29:7a:
         4e:44:c4:8a:0a:13:62:32:88:0e:45:53:f4:e3:08:17:6c:01:
         b1:99:6c:d6:22:8e:4b:b4:af:9a:03:f5:f1:b7:2d:dc:83:b4:
         ab:15:54:a8:97:83:f9:70:2a:66:2f:2d:fe:31:0c:30:cb:2d:
         9d:ba:21:c6:8a:7b:d4:48:6b:2a:a4:3a:78:d3:f5:dd:72:64:
         88:c5:9f:09:5d:e8:fd:42:70:50:4e:b4:a2:4b:aa:f1:90:01:
         94:85:81:7a:dc:eb:8b:21:e5:95:63:dc:bb:f8:cc:27:db:10:
         e5:38:95:fe:84:db:be:84:3c:26:56:6c:b5:bc:a9:24:3a:6a:
         b1:a2:5a:52:e9:23:8a:01:e0:8e:52:d1:48:6e:da:aa:76:1c:
         64:83:09:92:3d:00:6d:94:04:42:1c:c7:54:ea:4f:00:6e:3c:
         93:4d:e4:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXf2Ji5Ky7EpTSg2Sf7QemjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2
MGM4ZGUwHhcNMjUwMzI5MDMwMTA4WhcNMjUwMzMwMDMwMTA4WjAzMTEwLwYDVQQD
EygxN2UzYjIxOGE3ZGE3MjVjZmU3YzM5ZjE5OTA0YjZjNzVkYTM3MjQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OWSHUCSJuVzBBLugdQlRErd8Pcz
mvle5Z5hSKJo173f1ALeGuEFLiZceMKJXGMu7p1btklPLI6uScxjDTxMcS3NS79V
+la08898Fb7LWOW3TLUbEV0fTqfydir1Yl8ibxVQvnXujtquXuS08+MUFbAF7rSo
L63r7yA8ClTGPojIbWQxOO/ppq6zS8sfgKBLh3kC9hgNpYDEzR5id5ssfISi+Ps/
ATJlLDRMoHh2MkE9yDtvQd3NJSPQDJ0bh3jAfcp2bw6qn82n9dvntxaV8mMiuLAo
BfJFR2cec0tuQ0sguYQXl0Mme9Ue8KPsZLx14ndSC3j9R0zdiLC4uJk26QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBfjshin2nJc/nw58ZkEtsddo3JAMB8GA1UdIwQY
MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt
NzNmN2QxMTBiODJhLzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh
LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGe9BvuC1
m1AYVruYnNqyjby02IaRWqRDeyoD2tXqwtNMME1Jv/iRPT0oMtEkGXmSNCJnV/KD
qgvqYdaCq6kiLoJfVwXrLBoYqYbLv8pF1fFKmjOmnIxZBil6TkTEigoTYjKIDkVT
9OMIF2wBsZls1iKOS7SvmgP18bct3IO0qxVUqJeD+XAqZi8t/jEMMMstnbohxop7
1EhrKqQ6eNP13XJkiMWfCV3o/UJwUE60okuq8ZABlIWBetzriyHllWPcu/jMJ9sQ
5TiV/oTbvoQ8JlZstbypJDpqsaJaUukjigHgjlLRSG7aqnYcZIMJkj0AbZQEQhzH
VOpPAG48k03kZQ==
-----END CERTIFICATE-----