$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: qdq4ZayCpoDNfCbg1OsgO2PWNdiyk7EASIT/I/EFv4o= Subject key identifier: 28:A9:09:5C:1B:60:27:79:1D:C2:43:75:00:23:2C:2F:03:F1:23:43 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D68AD972A5EB18B3E42BE83744D6D6CAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 130B Signing time: Tue 07 Apr 2026 16:01:39 +0000 Manifest this update: Tue 07 Apr 2026 16:01:39 +0000 Manifest next update: Wed 08 Apr 2026 16:01:39 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: JYRmdlfwKmbG/lSBXrVzmpASUNoIP0Cg28+lbcmpfuk=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 08 Apr 2026 16:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:68:ad:97:2a:5e:b1:8b:3e:42:be:83:74:4d:6d:6c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 7 16:01:39 2026 GMT Not After : Apr 8 16:01:39 2026 GMT Subject: CN=28a9095c1b6027791dc2437500232c2f03f12343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ad:86:dc:5d:79:7a:26:f4:8a:3a:77:f1:be: b4:98:0b:19:13:ca:27:bb:be:66:be:0e:67:54:73: 66:09:04:35:79:05:e9:2e:99:2e:15:2a:d8:d4:8a: bf:73:d9:74:fc:ed:2b:d9:e7:05:80:b1:00:ae:2e: 65:07:45:84:02:bc:dc:e1:3c:55:de:ce:5d:17:26: 29:73:7a:67:3b:de:a6:a7:62:53:aa:43:12:fb:95: e0:81:5e:e4:ff:a6:65:6d:7f:c4:ea:51:1a:45:63: f2:59:05:08:61:96:f4:9d:52:7f:a1:d4:e8:28:a4: dd:e2:49:0d:10:96:3e:91:20:73:3e:ab:5d:52:35: 80:cf:34:c7:b0:d5:3f:b1:63:87:43:b3:b5:55:0f: 55:5d:91:ed:74:18:5b:a1:6c:2f:b9:e5:10:33:01: 8e:57:cc:24:92:11:7b:4b:ea:4c:fe:ca:78:cf:e5: 28:2c:5b:e2:a7:9f:9a:46:1d:cc:3b:0f:69:1d:af: 77:26:a8:aa:b5:da:3b:90:46:86:db:29:ed:e4:6f: 22:3a:13:fb:19:45:8b:96:b7:fb:3f:2a:a2:b1:a5: db:02:be:3f:02:f0:7d:86:ea:78:e5:67:fa:fb:8e: 95:18:8a:8f:56:ec:b9:9c:54:39:dc:a7:6e:81:27: 5f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A9:09:5C:1B:60:27:79:1D:C2:43:75:00:23:2C:2F:03:F1:23:43 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:e7:6b:3d:66:37:8d:52:03:4d:5b:93:a6:bd:f5:8b:1e:06: 82:86:f2:47:85:a3:6d:bc:27:b3:21:43:3a:2f:ff:52:8a:4c: 3a:a7:c3:23:03:95:c4:d0:cb:86:c0:ef:0c:ca:9b:19:ab:c2: 43:a7:5c:78:32:2d:16:b2:77:26:73:08:90:a0:35:a0:99:6b: 40:b3:e5:f8:6f:9c:77:d2:e2:ba:c1:60:74:2b:e4:07:c7:ac: c5:56:b0:56:d5:a7:f7:09:80:5a:11:a4:f1:64:3d:71:07:02: 6a:ba:7b:95:93:c1:06:04:7a:04:d5:91:12:f1:0d:d6:91:dd: d5:04:8a:52:79:c0:c1:0f:90:68:e6:98:26:4d:b2:af:ac:eb: d2:73:20:5a:a7:55:1f:40:a1:5e:a2:6d:38:b1:b5:5b:a7:47: 78:64:4c:82:d3:99:04:0f:04:5d:eb:3a:07:ff:6e:22:9e:e8: f3:1e:34:c8:3d:14:76:c8:49:06:a8:2f:af:fc:c3:4f:39:1e: 81:3d:05:5c:7a:10:b9:95:3e:69:01:19:b9:b3:af:0c:8e:12: 94:eb:68:48:5b:96:21:6b:2a:fb:4f:96:c2:97:b6:29:90:1e: f3:6b:cb:63:e3:6a:db:d5:fe:61:8c:b6:5d:be:9b:be:7b:0a: 75:6d:3e:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ1orZcqXrGLPkK+g3RNbWyvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDA3MTYwMTM5WhcNMjYwNDA4MTYwMTM5WjAzMTEwLwYDVQQD EygyOGE5MDk1YzFiNjAyNzc5MWRjMjQzNzUwMDIzMmMyZjAzZjEyMzQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa2G3F15eib0ijp38b60mAsZE8on u75mvg5nVHNmCQQ1eQXpLpkuFSrY1Iq/c9l0/O0r2ecFgLEAri5lB0WEArzc4TxV 3s5dFyYpc3pnO96mp2JTqkMS+5XggV7k/6ZlbX/E6lEaRWPyWQUIYZb0nVJ/odTo KKTd4kkNEJY+kSBzPqtdUjWAzzTHsNU/sWOHQ7O1VQ9VXZHtdBhboWwvueUQMwGO V8wkkhF7S+pM/sp4z+UoLFvip5+aRh3MOw9pHa93Jqiqtdo7kEaG2ynt5G8iOhP7 GUWLlrf7PyqisaXbAr4/AvB9hup45Wf6+46VGIqPVuy5nFQ53KdugSdfUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCipCVwbYCd5HcJDdQAjLC8D8SNDMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoedrPWY3 jVIDTVuTpr31ix4GgobyR4WjbbwnsyFDOi//UopMOqfDIwOVxNDLhsDvDMqbGavC Q6dceDItFrJ3JnMIkKA1oJlrQLPl+G+cd9LiusFgdCvkB8esxVawVtWn9wmAWhGk 8WQ9cQcCarp7lZPBBgR6BNWREvEN1pHd1QSKUnnAwQ+QaOaYJk2yr6zr0nMgWqdV H0ChXqJtOLG1W6dHeGRMgtOZBA8EXes6B/9uIp7o8x40yD0UdshJBqgvr/zDTzke gT0FXHoQuZU+aQEZubOvDI4SlOtoSFuWIWsq+0+Wwpe2KZAe82vLY+Nq29X+YYy2 Xb6bvnsKdW0+Bg== -----END CERTIFICATE-----Generated at Wed Apr 8 02:23:00 2026 by rpki-client