$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: WOLNRHvGRJCCnxcM3aE7uDxX2k/ILPs89tZSDJvd3B0= Subject key identifier: AC:E6:24:A2:28:56:98:15:48:EF:8D:D3:A2:D6:D5:E3:8F:E9:FA:73 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DE369DA41C12C029E53CD09A1CDD08DA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 134C Signing time: Fri 01 May 2026 12:00:58 +0000 Manifest this update: Fri 01 May 2026 12:00:58 +0000 Manifest next update: Sat 02 May 2026 12:00:58 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: GiYo4E4e2wMxd/16/5MFIlseq6skUncphmdj2/4fmSg=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 02 May 2026 08:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:e3:69:da:41:c1:2c:02:9e:53:cd:09:a1:cd:d0:8d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 1 12:00:58 2026 GMT Not After : May 2 12:00:58 2026 GMT Subject: CN=ace624a22856981548ef8dd3a2d6d5e38fe9fa73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4e:7d:ae:8b:7e:20:5b:19:3e:84:06:e9:ea: 7a:1f:53:42:12:43:3d:0e:06:80:95:34:4e:ce:30: f3:f9:f3:ef:df:6f:d8:db:14:d1:46:9d:75:82:d7: 9b:91:01:f8:c1:5f:f4:7d:fd:0e:e5:f0:9b:1e:60: 54:dc:aa:f6:49:2b:5d:8b:7f:09:46:d1:98:b9:b3: e5:c8:86:d3:f2:31:1a:6f:c6:9f:6b:e3:59:ca:71: f4:f8:51:ee:a0:25:1f:4f:be:28:4e:22:c8:4e:65: 94:be:a8:91:c5:34:c8:b7:2a:02:ef:b0:e6:ad:56: f1:53:ec:ee:1c:63:4f:89:31:a3:27:97:b4:03:9b: 93:c7:a7:83:07:b1:61:26:5f:50:c3:49:4a:8b:3f: d9:3d:0c:8b:b7:16:33:56:fe:06:d8:86:f7:c5:9d: b3:fa:2b:69:1c:57:1a:cd:46:7a:49:08:ea:7c:2e: 75:f1:38:a1:34:4f:37:23:a0:46:af:1c:3c:b7:04: d1:57:80:3f:bd:1d:f2:3f:d7:4e:44:4e:4e:2a:d9: 3f:76:ef:17:d9:35:ad:b5:b7:9c:5c:87:5f:d3:a7: 76:9d:d7:77:00:02:c3:b1:fd:3d:ae:f7:4a:07:e1: 18:4c:36:0b:5f:66:76:34:a8:f2:a4:97:ac:91:b1: 27:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E6:24:A2:28:56:98:15:48:EF:8D:D3:A2:D6:D5:E3:8F:E9:FA:73 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:88:dd:e9:ff:d4:9a:22:1e:95:f3:e7:2f:66:37:40:b7:2a: 23:0f:f9:a6:72:d2:c2:ce:4b:1b:0b:54:54:ba:18:a3:98:59: da:3b:12:7f:d4:7c:6f:4a:bd:0d:60:f5:de:51:d4:02:67:da: 99:29:fd:45:32:e0:67:e4:be:63:e6:ab:8c:c6:99:b4:4d:41: fd:82:c2:21:63:1a:46:53:1a:dc:6f:28:49:29:30:57:76:2e: a0:fc:92:32:ed:bb:36:35:04:7a:67:29:16:e5:02:f2:7e:15: 61:3b:e9:17:80:24:cf:13:d2:ae:d5:1c:f6:6e:15:eb:e9:17: 22:4a:24:61:90:bf:4f:01:7b:81:5a:23:f2:b0:d4:7a:02:f1: 6c:b4:d7:1f:1c:d6:2d:13:3a:cf:e4:4b:34:7f:7b:84:5c:b8: 4c:20:29:07:cf:22:2f:8b:67:54:6f:b7:64:9c:42:df:9a:68: 94:3c:2b:4f:21:72:3f:bb:f3:c0:91:50:8e:b9:8a:da:5f:08: 7f:69:74:68:50:c8:c5:b6:d2:2d:41:33:65:50:d7:a7:8c:51: 70:cd:32:02:ec:9b:87:d5:0c:d0:0b:9e:59:70:30:43:3c:23: 5d:18:b4:f3:54:3f:5b:85:31:50:9e:bd:c5:c8:5a:54:9d:03: 63:13:fc:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ3jadpBwSwCnlPNCaHN0I2oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTAxMTIwMDU4WhcNMjYwNTAyMTIwMDU4WjAzMTEwLwYDVQQD EyhhY2U2MjRhMjI4NTY5ODE1NDhlZjhkZDNhMmQ2ZDVlMzhmZTlmYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu059rot+IFsZPoQG6ep6H1NCEkM9 DgaAlTROzjDz+fPv32/Y2xTRRp11gtebkQH4wV/0ff0O5fCbHmBU3Kr2SStdi38J RtGYubPlyIbT8jEab8afa+NZynH0+FHuoCUfT74oTiLITmWUvqiRxTTItyoC77Dm rVbxU+zuHGNPiTGjJ5e0A5uTx6eDB7FhJl9Qw0lKiz/ZPQyLtxYzVv4G2Ib3xZ2z +itpHFcazUZ6SQjqfC518TihNE83I6BGrxw8twTRV4A/vR3yP9dORE5OKtk/du8X 2TWttbecXIdf06d2ndd3AALDsf09rvdKB+EYTDYLX2Z2NKjypJeskbEnFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzmJKIoVpgVSO+N06LW1eOP6fpzMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACojd6f/U miIelfPnL2Y3QLcqIw/5pnLSws5LGwtUVLoYo5hZ2jsSf9R8b0q9DWD13lHUAmfa mSn9RTLgZ+S+Y+arjMaZtE1B/YLCIWMaRlMa3G8oSSkwV3YuoPySMu27NjUEemcp FuUC8n4VYTvpF4AkzxPSrtUc9m4V6+kXIkokYZC/TwF7gVoj8rDUegLxbLTXHxzW LRM6z+RLNH97hFy4TCApB88iL4tnVG+3ZJxC35polDwrTyFyP7vzwJFQjrmK2l8I f2l0aFDIxbbSLUEzZVDXp4xRcM0yAuybh9UM0AueWXAwQzwjXRi081Q/W4UxUJ69 xchaVJ0DYxP8MA== -----END CERTIFICATE-----Generated at Fri May 1 15:36:29 2026 by rpki-client