Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
File:                     9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json)
Hash identifier:          WJs6yBchG5sCOrTH9upXDFA0YOSE0KRGrKzUmLWyujg=
Subject key identifier:   16:EE:CB:0E:B3:31:59:E7:5B:DD:FC:20:9D:85:75:14:18:E2:52:EB
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Certificate issuer:       /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial:       0195E0B418FA1D223A33AA29DB22546B680B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft
Manifest number:          135E
Signing time:             Sat 29 Mar 2025 07:00:54 +0000
Manifest this update:     Sat 29 Mar 2025 07:00:54 +0000
Manifest next update:     Sun 30 Mar 2025 07:00:54 +0000
Files and hashes:         1: 2I_gyEpNZ4JuV81yJRUXBVu-KOA.roa (hash: r49ywNskr+Vb41Ou7x0XARQgE2G5ZH5biPRfE9u4cAc=)
                          2: 2tZ8QlZM2m2IpNLIvJ0W7pbf-Z0.roa (hash: 9Uhvy9O+l0zHDpQPVkCj98q8JIdj7ZhjiR3rxLVvfII=)
                          3: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: 3Zq5+K+E9btsZTg64dApboU+EaQPaz9zoJqXa77UmWs=)
                          4: COjwQ2gTuu8viSdBaTyvrAiYy-E.roa (hash: GU5JuZZ18awtJjHLjHFRFKZaHoEmetPlV1Yr2Qkv5SI=)
                          5: Cqe38rpbTYcW3IBIj3GE-axW20k.roa (hash: rFb4HKGqgMrSh0TmO+Kz12Dni5W90nAeu/GsQNE5QbI=)
                          6: RW6wxE8PmfS_l7583dlKYTuULiM.roa (hash: NA5N2aFRPb0HCLNpvXiULoI8i28V3/zHm+oTFj2hW9U=)
                          7: XViXWtM4Qca08fEngqnKAjV8_6k.roa (hash: FX1LXPYDV9yZbUiSRuPd/ffSUdla1CU7pMstvEpaovA=)
                          8: t292OmKp-GnX0MyFpL72FnDc9MA.roa (hash: uIDL5vQGM8ia+mjLC9CmEE4toRqUWbIawZ8YzQbIFpY=)
                          9: vyCGGnsFvqliTEx12jYp6lwRAek.roa (hash: l5raYrCV5cZJwg0Ik6+6Zpw1vWa9xl0dKA9pFd0Ksa8=)
                          10: xRYUvRXSS94lAILWRE8foV910eY.roa (hash: kbfHwhqkpD58/aPhgeZb2L8X4i4DLw2R5Cp0d3c4c5M=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:e0:b4:18:fa:1d:22:3a:33:aa:29:db:22:54:6b:68:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
        Validity
            Not Before: Mar 29 07:00:54 2025 GMT
            Not After : Mar 30 07:00:54 2025 GMT
        Subject: CN=16eecb0eb33159e75bddfc209d85751418e252eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:60:24:90:3a:88:4c:f5:f5:d8:95:94:db:04:
                    ff:7c:ea:ec:dc:6b:dc:cb:b6:d8:93:21:de:07:eb:
                    8c:e1:fc:bf:29:40:6b:16:e6:5e:ce:78:a6:51:eb:
                    10:89:57:d7:32:ce:78:3a:33:9e:ff:4f:16:7c:7d:
                    75:c9:9f:b4:d4:c3:4b:a8:b9:bd:0f:4c:30:82:33:
                    d6:10:05:09:e1:ee:4d:81:69:b9:de:0f:c3:84:04:
                    78:39:9b:55:ac:5e:ea:35:ee:ac:9e:22:38:a1:11:
                    eb:52:75:3b:f9:2b:ce:50:b7:cb:d6:0d:a0:11:20:
                    fd:c1:a8:72:d5:63:9b:bb:35:f9:ce:83:e4:4e:d6:
                    2d:11:0f:a6:62:24:37:76:66:ae:5a:67:de:c6:20:
                    93:0a:a4:76:64:4e:63:a0:a1:b6:1f:86:be:46:7f:
                    38:16:ca:4b:f7:b2:6e:f7:c7:6f:4a:8d:25:7c:72:
                    5a:8e:92:37:df:62:74:cd:d1:33:b4:0f:9c:e7:ba:
                    92:92:88:fb:58:f1:e5:55:9e:be:3a:99:9d:00:85:
                    57:b5:98:49:84:15:40:c4:a3:66:8d:a6:f6:08:6b:
                    b7:bc:27:5c:36:30:49:2c:41:f2:55:a4:be:1c:47:
                    eb:e8:95:61:51:b6:a4:3d:db:a4:92:87:d6:d5:39:
                    c9:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:EE:CB:0E:B3:31:59:E7:5B:DD:FC:20:9D:85:75:14:18:E2:52:EB
            X509v3 Authority Key Identifier:
                keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:60:40:9f:ab:5e:b8:b2:a5:11:a0:e4:6b:ad:e3:03:ee:9a:
         3a:5b:90:6a:77:0f:d6:1e:f2:e4:30:9e:9a:9a:6e:0d:6b:b0:
         cd:ca:0b:ef:7d:c6:88:d2:9d:3c:c0:ec:f5:e9:1e:80:d3:89:
         20:bc:78:1b:a1:97:03:72:6f:03:b7:bc:34:d8:bc:1e:c1:a2:
         27:32:06:05:a6:f9:fb:c0:59:bb:76:e6:2b:4b:7f:fb:ef:d9:
         53:6b:d8:e6:10:61:1b:37:9e:2e:ab:8f:c3:67:4e:b4:db:67:
         0f:2e:e1:2f:bf:97:73:53:3d:b4:97:b9:a6:41:4b:20:86:a0:
         73:bf:d1:52:a5:48:75:0e:f6:5c:aa:c4:c0:47:c4:f3:2f:21:
         60:c0:22:a0:8f:4a:57:e9:92:45:a3:49:e2:42:46:c2:28:d5:
         3b:41:4a:19:34:7b:ea:8d:3f:85:7b:98:6f:04:04:a5:26:00:
         d9:21:1a:e9:84:e3:df:95:b8:0b:94:c3:9e:db:b9:28:e8:1e:
         21:a3:ba:3b:68:52:4f:b7:89:8b:83:24:e2:91:b6:3c:08:ab:
         06:48:40:0e:74:77:9b:3a:2e:6a:f9:7c:2d:bb:17:01:04:2f:
         b4:af:61:2d:b8:2c:fd:a1:9d:6c:7d:39:e5:31:d6:8d:fc:70:
         a8:aa:e0:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgtBj6HSI6M6op2yJUa2gLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0Yjc2Mjk1MGViNzkxNjY2OGJiZmE4ZDFiODcwNTYwYjFj
YTc3MzkwHhcNMjUwMzI5MDcwMDU0WhcNMjUwMzMwMDcwMDU0WjAzMTEwLwYDVQQD
EygxNmVlY2IwZWIzMzE1OWU3NWJkZGZjMjA5ZDg1NzUxNDE4ZTI1MmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GAkkDqITPX12JWU2wT/fOrs3Gvc
y7bYkyHeB+uM4fy/KUBrFuZeznimUesQiVfXMs54OjOe/08WfH11yZ+01MNLqLm9
D0wwgjPWEAUJ4e5NgWm53g/DhAR4OZtVrF7qNe6sniI4oRHrUnU7+SvOULfL1g2g
ESD9wahy1WObuzX5zoPkTtYtEQ+mYiQ3dmauWmfexiCTCqR2ZE5joKG2H4a+Rn84
FspL97Ju98dvSo0lfHJajpI332J0zdEztA+c57qSkoj7WPHlVZ6+OpmdAIVXtZhJ
hBVAxKNmjab2CGu3vCdcNjBJLEHyVaS+HEfr6JVhUbakPdukkofW1TnJrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBbuyw6zMVnnW938IJ2FdRQY4lLrMB8GA1UdIwQY
MBaAFPS3YpUOt5FmaLv6jRuHBWCxync5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAt
MmY4ZGYxODdmOThiLzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAtMmY4ZGYxODdmOThi
LzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe2BAn6te
uLKlEaDka63jA+6aOluQancP1h7y5DCemppuDWuwzcoL733GiNKdPMDs9ekegNOJ
ILx4G6GXA3JvA7e8NNi8HsGiJzIGBab5+8BZu3bmK0t/++/ZU2vY5hBhGzeeLquP
w2dOtNtnDy7hL7+Xc1M9tJe5pkFLIIagc7/RUqVIdQ72XKrEwEfE8y8hYMAioI9K
V+mSRaNJ4kJGwijVO0FKGTR76o0/hXuYbwQEpSYA2SEa6YTj35W4C5TDntu5KOge
IaO6O2hST7eJi4Mk4pG2PAirBkhADnR3mzouavl8LbsXAQQvtK9hLbgs/aGdbH05
5THWjfxwqKrg/A==
-----END CERTIFICATE-----