
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: Tl4NB++MA2YoINOB+uGdCgxG7yNQL32FM9+zUNb/HWI=
Subject key identifier: AC:0E:7E:D3:39:C6:A8:AC:AD:F4:9A:24:8F:49:80:9F:D1:80:3A:DF
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019DB3FE1263CC9C19574B38B767D0E40833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 1332
Signing time: Wed 22 Apr 2026 07:01:05 +0000
Manifest this update: Wed 22 Apr 2026 07:01:05 +0000
Manifest next update: Thu 23 Apr 2026 07:01:05 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=)
3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=)
8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: XAlyq/UXXieRvDvGQoU9YM8jVZWta/cKLZNQ3jmraVg=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 07:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b3:fe:12:63:cc:9c:19:57:4b:38:b7:67:d0:e4:08:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Apr 22 07:01:05 2026 GMT
Not After : Apr 23 07:01:05 2026 GMT
Subject: CN=ac0e7ed339c6a8acadf49a248f49809fd1803adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:18:87:1c:c8:e4:70:d1:96:a6:88:65:be:62:
da:14:e9:85:b5:a1:ba:a1:64:53:c0:e3:e0:4a:7f:
6c:93:74:70:3a:8d:64:7d:cd:3d:a6:a1:7a:57:6a:
76:66:07:cf:ce:cb:d7:c8:f1:dc:db:73:5b:38:9a:
63:01:1d:6e:b9:9a:d6:15:7a:02:f4:79:67:37:6b:
46:2d:4c:b8:3d:fb:b3:06:75:6a:da:ea:4c:0a:f5:
0f:ab:82:7d:3a:5c:81:7a:3c:05:01:71:9e:4a:bb:
0a:20:39:34:04:dd:08:44:83:b7:f4:bf:f0:b1:66:
ee:fd:09:b0:a9:45:4d:6b:72:d8:23:2d:a5:eb:6c:
6b:59:15:06:7c:12:a2:6a:37:de:6b:80:70:46:65:
64:88:d9:22:9d:e9:c3:c1:bd:8c:69:15:e6:c6:d6:
f1:31:99:51:66:5d:19:70:97:d3:fc:e3:71:3b:90:
53:e3:0d:7f:35:16:fb:0f:c3:49:73:9b:76:ad:30:
29:73:d4:6e:dd:99:42:24:b5:94:b2:a6:51:58:ea:
83:f0:89:fe:76:36:42:bc:59:e7:f1:90:fe:53:48:
77:be:47:11:55:a1:81:16:32:ec:ec:4f:50:9f:71:
bd:64:ae:7b:2e:b0:4a:26:76:ae:1a:5c:30:01:32:
ca:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0E:7E:D3:39:C6:A8:AC:AD:F4:9A:24:8F:49:80:9F:D1:80:3A:DF
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:bf:70:43:a8:90:08:e6:d7:93:ff:c8:e1:5e:01:1d:ed:cd:
18:4a:e6:83:e3:9e:5d:13:a3:6d:fc:cb:97:90:8c:7c:44:74:
85:46:90:8a:ac:66:47:e8:2b:11:a6:96:23:ac:7d:83:1d:78:
ae:10:47:e8:e3:08:99:60:20:1f:f4:07:9d:f4:4b:cf:3f:6f:
aa:b6:60:b3:0b:36:de:b2:01:91:6e:25:8d:38:ca:bf:0e:66:
d8:d4:22:6a:dc:cb:93:e2:66:4a:d6:d8:50:05:c6:67:ae:9d:
93:9f:08:fc:64:2f:76:ae:3e:08:fb:b2:3e:92:2e:22:82:36:
90:7c:4a:76:e9:2d:cb:81:4f:18:67:47:5a:f0:fa:f1:79:05:
1b:56:fe:fb:61:c1:d7:b8:85:8d:fe:a2:db:db:bb:fd:8a:28:
c4:6a:a1:63:bd:a0:b5:ad:86:be:d9:f2:f1:22:78:04:9d:99:
8f:da:e3:12:76:db:8d:5c:63:00:1a:23:1b:aa:e3:e5:4d:05:
44:47:8f:53:76:8a:f3:d9:c4:50:2b:4b:8c:43:7e:dc:9c:de:
46:e8:45:db:01:d6:72:0d:b6:f0:29:13:33:e5:51:fc:74:ce:
df:6f:d1:47:3d:c0:d0:32:29:ac:e5:5c:9b:8c:43:7a:69:1c:
03:3f:88:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 10:59:17 2026 by rpki-client