Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
File:                     HkogILgtApTpCi1rLA8o0Rc7ZGU.mft (raw, json)
Hash identifier:          0HpUawJyGqL2TqUUq9YrvFDEexgwgxdxz48o4+VA3NQ=
Subject key identifier:   24:F5:A7:94:63:A7:03:77:F8:6D:11:E3:CC:81:E5:50:77:87:12:CB
Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65
Certificate issuer:       /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
Certificate serial:       0195E046CE25BAB8072794117AA8B5138F96
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft
Manifest number:          14C2
Signing time:             Sat 29 Mar 2025 05:01:31 +0000
Manifest this update:     Sat 29 Mar 2025 05:01:31 +0000
Manifest next update:     Sun 30 Mar 2025 05:01:31 +0000
Files and hashes:         1: 7wJbNCUcwtFlKnAHPgTuv8Sn0i4.roa (hash: Yg17vxRzYWiVt6fOmSwVpKWZGt89EQyeG3U2CWqSktI=)
                          2: HkogILgtApTpCi1rLA8o0Rc7ZGU.crl (hash: Qs5h1n1j8+vYjGIkN59RR+TYZYeyNpfqXFiyrMPSr1Y=)
                          3: I1sRKyvYdSWFdpxY3K3hgfpLh8c.roa (hash: EW9DVDBND5j7A8L4kBfb9CEdZ+sujph27uho+pUx/m0=)
                          4: IWHxNStdjrSROqwuZe7sT7LT4Nk.roa (hash: S/bzV1Gz+VxqpXjM3Pl83zzxF5vyuBSuFK0LxiEoibw=)
                          5: yFf2Zz0VjYagA0shVIplpiusWp4.roa (hash: Sonq+rZh7+zVQsS+x3AiHiTrq12H+Dw70vUAQVtyO0E=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:e0:46:ce:25:ba:b8:07:27:94:11:7a:a8:b5:13:8f:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465
        Validity
            Not Before: Mar 29 05:01:31 2025 GMT
            Not After : Mar 30 05:01:31 2025 GMT
        Subject: CN=24f5a79463a70377f86d11e3cc81e550778712cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:80:ce:5a:b3:fe:d7:a0:d3:d0:c0:72:58:c8:
                    cc:62:49:5a:db:b7:a3:53:a4:65:09:72:35:55:35:
                    cd:f0:c3:24:5c:cd:c6:65:27:a5:ac:11:37:61:2a:
                    ff:63:69:06:4c:f4:5d:73:79:78:a1:f1:aa:ab:13:
                    0a:73:34:a4:c3:c7:49:3d:8b:3b:2d:f9:b1:ff:ae:
                    9d:a3:70:77:83:1f:0f:c2:9b:ae:45:b6:b7:39:4e:
                    8f:00:ab:79:1c:71:d4:0a:25:ab:e3:51:0c:50:a3:
                    c9:f3:39:1d:dd:bb:01:f2:6e:33:36:67:8a:3f:61:
                    62:f3:c9:f3:62:bb:2e:93:37:c9:24:8c:dd:f5:e1:
                    0e:e6:b8:a9:59:0b:ff:b8:cc:01:53:ba:92:6b:82:
                    ac:16:db:72:d7:c6:3e:da:0c:1c:fe:97:e2:5d:67:
                    78:c8:dc:ec:e4:56:c5:54:0d:56:fa:7e:b6:0a:77:
                    56:0f:6d:ad:a6:81:01:0c:7d:17:54:48:04:22:6c:
                    35:c6:b2:1b:88:c6:0e:84:ed:97:03:9f:61:51:00:
                    63:f7:14:89:0a:67:63:0c:bc:cc:5d:4a:60:f2:e6:
                    95:75:70:1f:c8:9d:3d:e5:cf:8b:36:f3:5d:55:b2:
                    d2:e9:4d:04:fa:37:2b:db:37:81:e3:a8:02:7a:b1:
                    96:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:F5:A7:94:63:A7:03:77:F8:6D:11:E3:CC:81:E5:50:77:87:12:CB
            X509v3 Authority Key Identifier:
                keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:08:60:8c:c8:b4:04:be:5a:4a:80:75:77:db:50:1c:30:b6:
         3d:72:d0:ca:04:2d:14:55:a5:7c:f5:0d:a8:7b:2b:8d:6c:ad:
         c0:8e:d0:bc:8a:a2:a4:bb:6e:91:c7:12:c3:65:9d:b2:72:05:
         56:11:b7:d1:90:44:a7:59:b8:0e:9e:c0:2d:f7:ba:61:92:dc:
         81:38:94:2a:85:b0:3d:ec:6e:a4:42:0f:42:7e:22:b2:a1:81:
         3e:3a:25:b4:79:c9:09:e5:5f:f5:2f:00:ff:85:c5:90:07:52:
         c8:35:ca:c6:49:d6:30:71:a8:e7:ba:1b:34:d4:cc:a0:4a:5b:
         ca:84:09:0b:96:62:2c:f5:c1:b4:d1:7f:ac:2f:47:3d:c9:60:
         47:fa:87:4d:a6:3a:66:eb:1c:e3:65:7d:19:fe:ec:07:42:b9:
         e3:b2:5a:c5:a8:31:23:32:f4:d0:82:f1:cf:16:1a:de:47:5c:
         31:b1:78:7b:ff:c1:d1:82:31:74:70:f5:58:e8:18:af:15:79:
         d6:0f:a6:07:b2:df:6b:fb:04:c8:14:01:66:b1:a8:86:9a:87:
         59:90:b6:a7:fe:6d:e8:08:5a:b8:e6:e6:f6:51:94:d1:b3:b9:
         7b:2a:1b:0d:d7:4b:a6:75:fc:9b:9b:e3:2b:0c:98:ba:42:7f:
         fe:a7:91:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----