Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
File:                     aqNKS6w794E80qZrT0W5x4bdNUI.mft (raw, json)
Hash identifier:          FsXtDjXgDglpQvio6dkLnsnO+saxr0Jesw3e3jKjo/Q=
Subject key identifier:   9C:64:50:3D:CF:B1:A4:D3:0B:63:FD:8D:0D:17:F5:F2:7F:74:07:A9
Authority key identifier: 6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
Certificate issuer:       /CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Certificate serial:       019733F2B4606CF30083F5666884A5F33B9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
Manifest number:          07C0
Signing time:             Tue 03 Jun 2025 04:00:33 +0000
Manifest this update:     Tue 03 Jun 2025 04:00:33 +0000
Manifest next update:     Wed 04 Jun 2025 04:00:33 +0000
Files and hashes:         1: aqNKS6w794E80qZrT0W5x4bdNUI.crl (hash: TJaJYfwKdtMBuCJD2nMKYWyhIDzMo3cVxD2cOeS2+24=)
                          2: b9B102wOebSEH0EiAU4o7haSTNE.roa (hash: w8TiYlYrrX0BopJEemJvanYXKIEW88KrCZAniAUGX7I=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:33:f2:b4:60:6c:f3:00:83:f5:66:68:84:a5:f3:3b:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
        Validity
            Not Before: Jun  3 04:00:33 2025 GMT
            Not After : Jun  4 04:00:33 2025 GMT
        Subject: CN=9c64503dcfb1a4d30b63fd8d0d17f5f27f7407a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:87:7d:94:87:a9:0e:15:3a:79:5f:76:b3:79:
                    87:36:2a:6c:7c:df:a0:bd:cc:96:28:2d:b0:32:fc:
                    fe:72:84:e9:e5:20:dd:95:ef:34:54:96:41:0b:91:
                    e0:53:71:3b:15:6f:55:ec:22:01:20:ad:87:94:03:
                    55:96:00:cd:81:48:28:34:d6:7d:81:b5:fc:6d:73:
                    7e:e8:16:50:ef:13:e1:bd:57:7f:d6:49:ce:a9:22:
                    16:e8:32:85:14:e5:3a:3e:b5:1c:02:bc:07:7b:06:
                    ce:5f:21:38:c8:39:af:42:44:71:80:ed:f1:07:6b:
                    a0:60:fc:18:86:29:b0:e9:2c:42:d2:48:df:32:11:
                    68:ec:fd:5e:87:21:c3:b8:f5:44:af:97:85:dc:13:
                    39:13:5d:a9:bc:c9:74:0c:b6:fe:cc:65:ee:a4:7b:
                    83:26:c5:a4:65:20:0f:7e:43:fa:e1:51:00:68:1d:
                    df:5a:7e:de:e7:5c:04:2f:81:d8:82:4c:8f:2c:db:
                    05:dd:cd:fe:5d:59:30:fa:42:fe:c6:03:11:b8:10:
                    db:db:3f:65:03:23:55:ee:78:1e:d2:01:1e:c6:06:
                    ef:8e:76:a5:86:6b:aa:ea:a1:34:c4:ce:5f:85:c0:
                    72:9b:a7:bd:8e:19:ce:cb:24:de:39:a1:18:12:aa:
                    15:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:64:50:3D:CF:B1:A4:D3:0B:63:FD:8D:0D:17:F5:F2:7F:74:07:A9
            X509v3 Authority Key Identifier:
                keyid:6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:04:dc:57:fe:d9:46:3c:f2:54:d7:39:72:16:4b:6f:10:18:
         aa:df:f1:67:3b:6e:35:f1:23:92:49:7c:3d:4e:55:c3:e2:90:
         86:4f:18:62:23:69:ff:11:e6:c0:2e:f5:7a:ec:36:bb:44:d7:
         f2:ff:e6:a5:94:c5:d2:da:c9:7c:4c:60:9c:e8:4c:40:70:bc:
         8d:82:c0:d9:7d:6b:c3:5d:3e:e9:30:db:61:41:19:ef:6f:07:
         63:6a:57:7f:ef:4f:9c:ef:ca:2d:d8:7e:67:5a:a2:ee:fa:36:
         7d:82:df:e3:23:f7:9d:17:52:b7:1a:f8:02:03:5e:84:a8:ad:
         0c:06:c1:59:b7:a4:48:e3:2e:32:a9:99:c9:1d:8a:6f:17:68:
         7a:f8:ff:79:f9:be:bd:4d:8f:f8:14:cb:44:f3:f5:a1:4c:8c:
         05:ce:86:d8:ab:bd:c8:4c:21:07:d3:b3:61:3c:9e:6e:b9:23:
         1e:88:d9:7f:15:94:ea:77:c7:f3:f2:2d:05:1d:d2:2b:da:6b:
         4f:77:2f:92:78:80:c1:aa:da:7a:e6:70:42:4c:8f:e1:94:ff:
         15:7d:a9:14:d4:22:24:5c:85:01:f3:8d:61:95:5e:f1:bd:2a:
         66:e1:d8:59:04:e9:f8:4d:e1:a8:4a:a9:0d:14:d9:a0:55:2e:
         a2:22:db:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:42:14 2025 by rpki-client