Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft
File:                     ET9u8WzirCilmQYD0folvUl1lN0.mft (raw, json)
Hash identifier:          Kkry1fySvsDkVLvOMzs04uU19UiiO/SZS8DDE/CGj0M=
Subject key identifier:   C6:4B:85:E0:75:3B:FC:41:D1:D1:8A:C1:E7:0C:BD:BD:5E:B3:F4:39
Authority key identifier: 11:3F:6E:F1:6C:E2:AC:28:A5:99:06:03:D1:FA:25:BD:49:75:94:DD
Certificate issuer:       /CN=113f6ef16ce2ac28a5990603d1fa25bd497594dd
Certificate serial:       019F1831432EAC5FC1321677CEEA2CA46117
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft
Manifest number:          083B
Signing time:             Tue 30 Jun 2026 11:01:49 +0000
Manifest this update:     Tue 30 Jun 2026 11:01:49 +0000
Manifest next update:     Wed 01 Jul 2026 11:01:49 +0000
Files and hashes:         1: ET9u8WzirCilmQYD0folvUl1lN0.crl (hash: B/a2e1x0eX8bSNIihFkOm2wpz1Fk8S1OaFC4yAQjrDg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 11:01:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:31:43:2e:ac:5f:c1:32:16:77:ce:ea:2c:a4:61:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=113f6ef16ce2ac28a5990603d1fa25bd497594dd
        Validity
            Not Before: Jun 30 11:01:49 2026 GMT
            Not After : Jul  1 11:01:49 2026 GMT
        Subject: CN=c64b85e0753bfc41d1d18ac1e70cbdbd5eb3f439
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:3f:e5:ae:8b:1c:42:39:65:6a:72:2e:59:53:
                    3d:e9:48:a3:af:90:00:69:2f:a5:cf:6f:b3:fb:33:
                    3b:bb:f0:bd:f0:6f:f5:ef:0f:9d:7e:4a:35:c4:31:
                    8c:47:14:95:85:16:77:3b:7a:d7:34:b8:86:87:41:
                    8f:cc:b4:77:76:b0:2b:e5:c4:c1:fe:28:cc:6c:b2:
                    15:42:88:58:a9:1c:3f:5a:e8:3b:b0:cf:fd:f6:9a:
                    4b:82:0b:53:63:42:c5:8a:25:81:f4:c8:90:51:62:
                    9a:b2:08:1c:2e:02:73:9d:22:09:d2:8f:4c:87:55:
                    dc:f9:f7:2f:91:00:0a:08:07:9f:d8:f2:2c:aa:25:
                    76:10:a5:a2:5c:60:da:58:ce:38:75:7e:2f:9e:79:
                    ef:f5:87:c2:12:9f:a9:94:00:12:43:10:4f:74:08:
                    2a:7b:ff:1e:f7:f2:aa:f8:69:49:c7:3b:15:a3:13:
                    ba:77:b3:23:2f:35:c3:95:ba:34:50:90:dd:58:c4:
                    93:f3:71:ae:95:d8:17:44:55:8e:13:cf:bf:eb:a2:
                    29:90:52:69:7f:4a:6f:76:6c:64:d6:0f:a6:c1:18:
                    8f:4f:9b:55:ba:e5:20:48:73:65:bd:c3:bb:ab:d8:
                    64:8c:bc:eb:3d:41:72:cf:0a:6c:b5:29:ce:e7:44:
                    a0:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:4B:85:E0:75:3B:FC:41:D1:D1:8A:C1:E7:0C:BD:BD:5E:B3:F4:39
            X509v3 Authority Key Identifier:
                keyid:11:3F:6E:F1:6C:E2:AC:28:A5:99:06:03:D1:FA:25:BD:49:75:94:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ET9u8WzirCilmQYD0folvUl1lN0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3b5877-aa65-49fc-859d-905dbab8bd57/1/ET9u8WzirCilmQYD0folvUl1lN0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:4b:e0:7e:4f:13:a6:53:ef:29:ea:f1:ab:20:a5:80:74:70:
         8e:cc:45:14:06:5b:a8:e5:93:02:af:69:08:96:b9:6c:4a:af:
         35:fc:f7:8c:05:12:1d:4c:e5:14:99:bc:3c:d2:ee:6b:ec:13:
         30:58:d4:eb:0f:4d:3b:77:08:6a:b9:df:45:c3:5e:13:39:9e:
         87:9f:aa:99:dd:6b:42:2c:e4:67:26:4e:59:00:13:d7:ac:fd:
         17:a0:85:4b:fe:df:68:10:ab:1c:ac:50:f0:3f:21:11:e7:3d:
         d9:85:77:bb:e8:3e:97:9c:01:86:02:7b:cc:86:64:8d:9b:f8:
         ae:01:3d:b7:4e:ae:e7:29:02:c1:16:3f:c7:7d:b2:0e:4d:77:
         bf:71:0e:10:34:e2:ee:f1:58:35:60:45:33:62:45:88:d4:d3:
         b7:bf:0e:4c:0b:f1:73:01:61:4e:c1:d6:b8:5c:9b:0a:eb:22:
         e2:e9:ab:a8:c6:29:aa:da:72:9d:b8:fe:16:51:60:64:58:b3:
         09:cc:bf:55:f9:06:62:c6:42:61:e0:0b:74:b3:38:f7:54:c8:
         a2:fd:85:fa:4a:ca:ca:99:22:81:af:a0:c9:2a:b0:5e:cb:f2:
         37:8c:33:ea:1e:55:3a:32:f2:35:14:18:ec:21:79:27:a0:44:
         d4:4e:85:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YMUMurF/BMhZ3zuospGEXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExM2Y2ZWYxNmNlMmFjMjhhNTk5MDYwM2QxZmEyNWJkNDk3
NTk0ZGQwHhcNMjYwNjMwMTEwMTQ5WhcNMjYwNzAxMTEwMTQ5WjAzMTEwLwYDVQQD
EyhjNjRiODVlMDc1M2JmYzQxZDFkMThhYzFlNzBjYmRiZDVlYjNmNDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz/lroscQjllanIuWVM96Uijr5AA
aS+lz2+z+zM7u/C98G/17w+dfko1xDGMRxSVhRZ3O3rXNLiGh0GPzLR3drAr5cTB
/ijMbLIVQohYqRw/Wug7sM/99ppLggtTY0LFiiWB9MiQUWKasggcLgJznSIJ0o9M
h1Xc+fcvkQAKCAef2PIsqiV2EKWiXGDaWM44dX4vnnnv9YfCEp+plAASQxBPdAgq
e/8e9/Kq+GlJxzsVoxO6d7MjLzXDlbo0UJDdWMST83GuldgXRFWOE8+/66IpkFJp
f0pvdmxk1g+mwRiPT5tVuuUgSHNlvcO7q9hkjLzrPUFyzwpstSnO50SgjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMZLheB1O/xB0dGKwecMvb1es/Q5MB8GA1UdIwQY
MBaAFBE/bvFs4qwopZkGA9H6Jb1JdZTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zYjU4NzctYWE2NS00OWZjLTg1OWQt
OTA1ZGJhYjhiZDU3LzEvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8zYjU4NzctYWE2NS00OWZjLTg1OWQtOTA1ZGJhYjhiZDU3
LzEvRVQ5dThXemlyQ2lsbVFZRDBmb2x2VWwxbE4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg0vgfk8T
plPvKerxqyClgHRwjsxFFAZbqOWTAq9pCJa5bEqvNfz3jAUSHUzlFJm8PNLua+wT
MFjU6w9NO3cIarnfRcNeEzmeh5+qmd1rQizkZyZOWQAT16z9F6CFS/7faBCrHKxQ
8D8hEec92YV3u+g+l5wBhgJ7zIZkjZv4rgE9t06u5ykCwRY/x32yDk13v3EOEDTi
7vFYNWBFM2JFiNTTt78OTAvxcwFhTsHWuFybCusi4umrqMYpqtpynbj+FlFgZFiz
Ccy/VfkGYsZCYeALdLM491TIov2F+krKypkiga+gySqwXsvyN4wz6h5VOjLyNRQY
7CF5J6BE1E6FxQ==
-----END CERTIFICATE-----