$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: d3iatMBcP5hr+6C6TtF053qJqevnIKyL9kzKUNZyIgQ= Subject key identifier: A2:81:CC:82:57:82:BA:0F:E2:81:C0:91:53:B2:50:58:21:87:D1:EE Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019CC297D84285A6B438F869B2B014C79E2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 12B5 Signing time: Fri 06 Mar 2026 10:00:56 +0000 Manifest this update: Fri 06 Mar 2026 10:00:56 +0000 Manifest next update: Sat 07 Mar 2026 10:00:56 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: CCtWI1IbhtQFVxNqom+QK8D+r5dLGejT0gZNFiJn+Lk=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Mar 2026 10:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:c2:97:d8:42:85:a6:b4:38:f8:69:b2:b0:14:c7:9e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 6 10:00:56 2026 GMT Not After : Mar 7 10:00:56 2026 GMT Subject: CN=a281cc825782ba0fe281c09153b250582187d1ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:2f:79:38:99:7c:40:02:a5:a0:33:2f:ba: b9:3d:db:24:8a:f1:b4:1b:49:ae:bc:61:85:3d:90: ec:0b:44:69:a8:a8:b2:59:95:e6:85:b9:30:2e:11: c2:c0:00:b0:b7:d2:52:15:61:b2:a2:b3:3a:9d:08: 26:c8:18:bd:4e:96:5f:76:3e:2f:83:40:32:f5:16: 99:26:38:67:e0:a2:84:7e:8e:e8:60:3a:9f:2b:29: 46:28:ee:cd:f7:5a:58:de:0b:19:e5:b8:6e:f0:a0: 39:95:9c:37:26:53:95:01:ed:68:5b:1a:0a:ec:4a: 6b:ce:ac:f5:ef:87:83:03:99:e8:43:96:61:6d:db: 73:86:ae:5f:26:ee:6a:ef:b4:07:d0:ce:e2:32:a7: e8:95:60:0d:53:47:fa:d1:65:ae:f2:7d:9a:e5:ab: a6:2a:fd:05:3d:75:e2:5f:2c:7c:2b:6d:43:63:f4: 75:f3:57:66:97:75:72:47:77:28:f4:33:7d:f3:af: fa:79:2f:a1:ef:31:62:c5:24:00:e0:b1:57:fa:17: c5:62:6f:f9:45:a3:f4:1d:24:56:90:b6:a9:a5:87: a0:23:47:d1:94:53:8c:17:e7:14:6e:b1:93:66:d9: 98:d9:34:db:e8:3a:67:25:18:33:01:c0:a2:1b:45: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:81:CC:82:57:82:BA:0F:E2:81:C0:91:53:B2:50:58:21:87:D1:EE X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:34:60:7b:b5:79:46:c5:f5:fb:36:d5:00:58:ed:a0:62:c4: 48:77:14:fc:45:0a:f2:56:67:a3:cd:b7:9e:10:c0:66:61:04: 14:27:b2:0a:c1:7c:b1:82:42:53:51:b2:05:81:79:0e:40:af: e1:49:fb:f1:06:8c:d2:98:04:eb:c4:d1:cc:06:35:5d:24:63: 51:2a:c4:63:a3:70:ed:60:5e:d1:6c:1a:49:a0:29:95:06:7e: 10:4f:d9:4e:65:b1:20:84:40:b9:95:d3:81:94:eb:21:78:5e: 47:f7:6e:20:cf:7f:0f:13:e8:54:86:fc:8c:d2:ec:82:e2:ae: d8:5e:b7:37:ae:f9:48:51:10:99:6e:64:3e:3a:11:e9:87:51: 2f:f1:c6:92:e9:e9:ad:10:11:f3:87:f0:66:61:6a:b3:df:35: ea:a1:ef:ea:da:71:46:7f:eb:49:5c:a2:62:a2:35:f6:13:df: 1c:95:37:43:74:58:97:44:d5:de:f9:f0:85:cc:03:77:73:20: d2:b5:fe:45:7a:64:ea:bd:75:94:4a:8b:48:27:a6:de:c4:69: a6:61:5b:e6:9a:0c:90:a7:b3:41:20:11:03:1e:91:f5:d1:eb: 00:ce:10:b5:3d:e6:a0:fd:6b:69:7e:60:af:78:b9:d7:64:2e: be:4a:ea:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzCl9hChaa0OPhpsrAUx54sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMzA2MTAwMDU2WhcNMjYwMzA3MTAwMDU2WjAzMTEwLwYDVQQD EyhhMjgxY2M4MjU3ODJiYTBmZTI4MWMwOTE1M2IyNTA1ODIxODdkMWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArREveTiZfEACpaAzL7q5PdskivG0 G0muvGGFPZDsC0RpqKiyWZXmhbkwLhHCwACwt9JSFWGyorM6nQgmyBi9TpZfdj4v g0Ay9RaZJjhn4KKEfo7oYDqfKylGKO7N91pY3gsZ5bhu8KA5lZw3JlOVAe1oWxoK 7Eprzqz174eDA5noQ5Zhbdtzhq5fJu5q77QH0M7iMqfolWANU0f60WWu8n2a5aum Kv0FPXXiXyx8K21DY/R181dml3VyR3co9DN986/6eS+h7zFixSQA4LFX+hfFYm/5 RaP0HSRWkLappYegI0fRlFOMF+cUbrGTZtmY2TTb6DpnJRgzAcCiG0UawQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKKBzIJXgroP4oHAkVOyUFghh9HuMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAozRge7V5 RsX1+zbVAFjtoGLESHcU/EUK8lZno823nhDAZmEEFCeyCsF8sYJCU1GyBYF5DkCv 4Un78QaM0pgE68TRzAY1XSRjUSrEY6Nw7WBe0WwaSaAplQZ+EE/ZTmWxIIRAuZXT gZTrIXheR/duIM9/DxPoVIb8jNLsguKu2F63N675SFEQmW5kPjoR6YdRL/HGkunp rRAR84fwZmFqs9816qHv6tpxRn/rSVyiYqI19hPfHJU3Q3RYl0TV3vnwhcwDd3Mg 0rX+RXpk6r11lEqLSCem3sRppmFb5poMkKezQSARAx6R9dHrAM4QtT3moP1raX5g r3i512QuvkrqSA== -----END CERTIFICATE-----Generated at Fri Mar 6 20:03:42 2026 by rpki-client