Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
File:                     AC428C8EED241857F73D0F3D483ABECB240519D0.mft (raw, json)
Hash identifier:          7vHboC0E8u5n/sFhWm/1manLMFAtxA5WoyQ03U2z3JY=
Subject key identifier:   EB:3B:0F:DB:0A:3C:CD:E2:67:1D:D1:E7:8A:E3:B1:DA:FA:44:82:80
Authority key identifier: AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0
Certificate issuer:       /CN=ac428c8eed241857f73d0f3d483abecb240519d0
Certificate serial:       68DBAB862FB27D863397723C4F6D22A997C75C1B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft
Manifest number:          03A7
Signing time:             Tue 07 Oct 2025 08:25:55 +0000
Manifest this update:     Tue 07 Oct 2025 08:20:55 +0000
Manifest next update:     Wed 08 Oct 2025 11:08:55 +0000
Files and hashes:         1: AC428C8EED241857F73D0F3D483ABECB240519D0.crl (hash: iq5lfOEMbCDA02d4LcmF/1UfJW1lpMWk+yVViYyaHeQ=)
                          2: 3139352e3139312e34392e302f32342d3234203d3e20383334.roa (hash: tAX3Go3Y1oszntsjkGYjvxyMi+6BW1lc0B/JhqET5Wk=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:db:ab:86:2f:b2:7d:86:33:97:72:3c:4f:6d:22:a9:97:c7:5c:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac428c8eed241857f73d0f3d483abecb240519d0
        Validity
            Not Before: Oct  7 08:20:55 2025 GMT
            Not After : Oct  8 11:08:55 2025 GMT
        Subject: CN=EB3B0FDB0A3CCDE2671DD1E78AE3B1DAFA448280
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:3e:f9:88:a2:14:6d:b8:6c:f2:db:0a:43:1c:
                    50:e8:8e:b8:9c:f7:e1:ee:2e:ab:a7:e8:ac:0b:41:
                    fd:e1:38:ad:cc:27:aa:37:39:5c:db:09:87:00:7f:
                    e5:f6:f9:45:aa:3e:2d:7d:fa:da:2d:b7:74:98:1f:
                    ff:f2:15:3d:9d:a9:2f:08:06:48:f0:02:ca:32:f7:
                    78:e3:c7:8f:b9:4f:40:48:30:ce:38:62:f6:9c:5a:
                    22:50:ef:eb:f8:48:8d:64:2e:7e:15:bf:8a:3d:ee:
                    36:cd:e9:3d:08:5f:49:35:e7:34:6c:60:4d:2f:7a:
                    ec:ee:f1:be:12:51:0f:04:8e:d3:e5:1c:ec:66:31:
                    9d:16:08:45:64:91:5a:97:3a:d3:4b:60:90:c7:d0:
                    68:6a:c9:1b:30:c1:15:d5:6c:59:92:af:13:f9:3e:
                    7f:f4:aa:b1:b0:65:52:37:bf:47:ad:71:e6:eb:88:
                    40:51:bd:bf:13:d5:9e:18:83:86:46:64:e7:24:51:
                    d0:d5:2b:89:e5:a4:04:f4:17:40:d8:9f:d0:11:73:
                    40:bd:2c:3d:cd:a0:f3:aa:dc:cd:7b:05:6a:fd:d6:
                    f0:53:43:c0:d4:f5:a5:8b:5b:60:e1:05:22:a1:7e:
                    6a:b1:57:a8:c6:0d:2e:ae:f7:27:c3:aa:d6:7e:a1:
                    80:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:3B:0F:DB:0A:3C:CD:E2:67:1D:D1:E7:8A:E3:B1:DA:FA:44:82:80
            X509v3 Authority Key Identifier:
                keyid:AC:42:8C:8E:ED:24:18:57:F7:3D:0F:3D:48:3A:BE:CB:24:05:19:D0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rEKMju0kGFf3PQ89SDq-yyQFGdA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1309bdce-70e3-46ae-8f05-0c3ada8f8a42/0/AC428C8EED241857F73D0F3D483ABECB240519D0.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:5c:db:df:04:b3:cd:f3:1c:68:1f:ee:c3:ad:e2:fa:f4:0a:
         d2:5f:97:68:bb:d7:f3:46:ae:cd:cf:91:05:ef:b5:1f:d6:41:
         3e:6b:aa:ca:38:b0:83:cd:04:d2:2d:98:f4:53:47:ba:de:1b:
         e3:22:2c:d8:5d:b5:bb:72:17:bb:d3:8b:ed:ab:bf:7f:fe:d7:
         45:09:e4:11:8f:2e:3e:c4:26:f4:94:f9:45:d3:86:79:cd:7c:
         ee:49:49:39:dc:bd:6b:6a:8d:56:c1:1b:31:bd:05:7e:8d:51:
         d8:8f:7a:e8:d3:af:3e:59:cb:9f:c0:e3:51:dd:0e:11:d5:e5:
         e7:83:8e:ef:fa:0d:b6:77:0f:9e:95:dd:05:b7:a9:a9:e2:fe:
         05:f2:5a:11:af:b5:74:8f:a7:79:c9:fa:58:dc:93:a2:e2:d4:
         13:60:01:48:56:30:9b:09:f3:4e:50:59:01:b8:2f:6a:95:49:
         8a:cb:83:a9:40:e5:df:fa:5c:30:f8:19:ff:61:03:4a:b5:eb:
         cc:56:7e:2e:09:ac:f5:ac:de:c8:68:6e:88:4f:0c:69:9c:83:
         60:b8:d6:19:2c:d5:a5:81:cd:0a:64:50:24:a7:4a:5b:b3:96:
         2b:0f:9c:f2:fa:ef:2c:03:a4:9d:71:a7:10:80:95:e4:4d:3c:
         2b:3a:90:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----