Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.mft
File:                     D7BE9D3520750EF280E734F41346D051C8B2F524.mft (raw, json)
Hash identifier:          MZXapKqEsckBVr7uTFQSUSVZpbeoc+9xsE8JzPYSYPo=
Subject key identifier:   83:B1:F3:A8:AB:6D:9C:20:3F:64:F7:65:26:CB:29:E1:DF:56:7F:A9
Authority key identifier: D7:BE:9D:35:20:75:0E:F2:80:E7:34:F4:13:46:D0:51:C8:B2:F5:24
Certificate issuer:       /CN=d7be9d3520750ef280e734f41346d051c8b2f524
Certificate serial:       5DA3CEB1D1E8482F1FD7CD09E845DA86BB15224C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/176dNSB1DvKA5zT0E0bQUciy9SQ.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.mft
Manifest number:          0294
Signing time:             Mon 29 Jul 2024 00:01:20 +0000
Manifest this update:     Sun 28 Jul 2024 23:56:20 +0000
Manifest next update:     Tue 30 Jul 2024 01:14:20 +0000
Files and hashes:         1: 37392e39392e32342e302f32322d3234203d3e20383334.roa (hash: aDbiR/gcYMc8+039likIb7le9Um5lwcOHFTe8LQG3Mo=)
                          2: 37392e39392e32382e302f32322d3232203d3e20323039323432.roa (hash: Fyk0QrPavExp5uqIPjqpBUAPrC1s4WvPbRDu1VTOPbk=)
                          3: D7BE9D3520750EF280E734F41346D051C8B2F524.crl (hash: e3lkZCHVpGurSyNWHYQsQ0H2QeMS0wv8XvNtS5YIYbM=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:a3:ce:b1:d1:e8:48:2f:1f:d7:cd:09:e8:45:da:86:bb:15:22:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d7be9d3520750ef280e734f41346d051c8b2f524
        Validity
            Not Before: Jul 28 23:56:20 2024 GMT
            Not After : Jul 30 01:14:20 2024 GMT
        Subject: CN=83B1F3A8AB6D9C203F64F76526CB29E1DF567FA9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:20:6c:8b:b5:ea:3d:73:fd:c1:ab:cf:3d:9a:
                    17:a3:5b:5a:cd:41:be:0a:0f:35:78:0c:a9:2c:21:
                    00:2b:c2:28:17:f4:47:b7:8f:c8:5a:09:17:ce:ce:
                    0b:aa:0c:91:81:b7:1f:05:0a:23:24:ec:5b:35:f8:
                    66:4d:11:1b:8b:61:82:e6:c9:cf:2f:f0:ab:b4:b6:
                    89:73:3c:63:c3:b1:8e:f2:0d:c1:31:cb:41:e2:2d:
                    ee:a0:bb:f1:2a:ad:4d:0d:0e:7f:db:6c:5f:14:df:
                    8c:e0:ca:7b:cf:8e:60:da:8e:f1:f3:56:95:64:29:
                    2a:1e:c2:12:c6:90:0b:03:8e:74:a6:e3:18:db:d0:
                    a3:c3:01:6c:f5:42:0b:d2:d4:3e:95:bc:d2:af:5c:
                    9e:02:93:a6:d2:89:dd:bc:8c:0a:74:b1:76:28:e8:
                    d6:94:5a:8d:8d:83:a1:0b:ac:13:12:39:31:8c:c5:
                    69:f4:6f:19:96:a0:4d:b6:dc:a9:52:9e:f3:aa:83:
                    4d:da:a1:0c:56:e2:5b:4d:41:f6:5f:9d:20:07:f8:
                    ca:71:ca:cb:9d:55:02:5e:03:9e:c4:f1:bb:4d:8d:
                    04:28:75:9d:03:fd:e3:d0:0e:69:73:98:3a:24:53:
                    9b:08:59:8c:da:6a:e7:4c:6d:4c:e6:91:96:1b:98:
                    86:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:B1:F3:A8:AB:6D:9C:20:3F:64:F7:65:26:CB:29:E1:DF:56:7F:A9
            X509v3 Authority Key Identifier:
                keyid:D7:BE:9D:35:20:75:0E:F2:80:E7:34:F4:13:46:D0:51:C8:B2:F5:24

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/176dNSB1DvKA5zT0E0bQUciy9SQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/56ae2182-288d-4ffb-8af9-8c2bcac1979a/0/D7BE9D3520750EF280E734F41346D051C8B2F524.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:1e:b1:43:c6:6f:85:b7:a7:1d:35:68:95:ce:63:46:26:91:
         81:15:41:26:20:46:fd:ec:c6:ac:b8:00:ef:63:73:ac:5a:84:
         71:cd:32:6e:03:21:9f:0c:2e:67:50:e7:db:00:55:7d:21:25:
         8e:fa:62:e3:57:a2:4b:cc:3f:68:f5:4e:0a:d3:31:d6:7d:41:
         e2:e3:47:69:24:3c:15:1e:68:09:27:cb:f0:e0:d6:f0:ba:40:
         72:22:c0:d0:6b:00:9c:67:cb:78:7b:4c:e5:57:89:0f:b0:c2:
         5a:96:5d:d9:e3:c1:7b:db:10:a3:07:85:fb:66:b9:cb:53:b9:
         38:cb:f6:9f:07:e4:3f:b3:b0:87:4b:ee:ae:76:2c:fd:8d:19:
         cd:ef:9d:40:07:ed:55:5f:44:86:1d:63:d9:3a:e7:36:50:b4:
         f9:aa:ce:dc:a8:cd:bf:f0:64:18:8e:c3:7b:ac:b1:02:f1:87:
         58:16:ae:bf:2d:f9:5c:a8:f5:8d:88:2b:3b:c9:8b:d1:db:59:
         f9:aa:bb:70:b5:85:a0:da:e1:79:e7:66:f1:f7:0c:aa:55:83:
         e9:cb:72:fd:41:11:bc:f4:8d:5d:b5:e5:0f:eb:bd:f3:90:7e:
         06:51:5b:f2:3d:97:9a:aa:6e:4d:e4:33:2d:8a:22:27:d8:9b:
         93:aa:55:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----