$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: ynN6ujQvWbS8RPoJl+Gt2zvI8o77mxEjA3HHZX4FQpw= Subject key identifier: 1A:D8:C9:6B:45:B8:27:0D:29:5C:10:3D:C1:D5:BF:AD:E1:FC:6C:7B Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DB02119E2A3EDF63F036695F5E9A9D4E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1330 Signing time: Tue 21 Apr 2026 13:00:52 +0000 Manifest this update: Tue 21 Apr 2026 13:00:52 +0000 Manifest next update: Wed 22 Apr 2026 13:00:52 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 890KlFdsLwCWKRZ9NOoNKEOoG90LFBkNrq0uEctS1FE=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 13:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b0:21:19:e2:a3:ed:f6:3f:03:66:95:f5:e9:a9:d4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 21 13:00:52 2026 GMT Not After : Apr 22 13:00:52 2026 GMT Subject: CN=1ad8c96b45b8270d295c103dc1d5bfade1fc6c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:79:1a:a6:7b:10:0c:e1:11:56:69:17:b7: d3:2f:65:3d:fc:75:94:82:da:26:5e:b5:e9:3a:67: 68:11:07:83:72:32:ff:50:c0:1e:c5:98:c7:01:5d: 35:7d:79:fc:eb:6a:32:b9:c1:e0:27:bc:28:c4:00: 92:2a:47:22:96:5c:be:f6:0d:c2:9d:79:bf:f6:4c: 72:5e:ba:bc:dd:86:32:f9:18:f5:cf:85:bf:56:8f: b1:5f:55:88:81:3a:23:de:33:e1:ff:ee:02:92:89: 02:70:a1:cb:d7:aa:3f:aa:97:a1:b5:02:ed:71:f2: 7d:cb:43:da:20:32:87:ba:dc:91:75:7c:bb:0c:16: 55:cc:95:27:91:48:85:bc:f2:11:6a:f6:e6:f3:f9: bf:37:be:b2:4b:7f:8b:51:ca:8b:e4:f4:aa:e6:02: bd:ff:8f:c7:02:78:e4:c4:e1:ac:82:26:9e:4b:5f: c0:e4:9a:c8:7a:0f:c9:ea:81:f0:75:a0:87:e7:77: b2:f8:35:74:ba:55:44:f6:fa:44:1f:3b:58:3a:32: d7:2c:e9:07:fa:2f:58:1f:3f:2d:c5:a3:ab:c2:30: 62:45:8c:e6:76:7d:71:53:5c:ba:d8:03:de:a0:eb: 62:9d:78:13:07:dd:8d:66:9b:65:7d:f5:da:b6:1b: 13:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D8:C9:6B:45:B8:27:0D:29:5C:10:3D:C1:D5:BF:AD:E1:FC:6C:7B X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:0e:97:bf:0a:eb:fe:d3:60:60:30:b7:c5:fe:10:67:74:49: 34:e5:bc:6b:18:49:57:f2:c6:81:fa:2e:fe:63:72:c4:9a:a2: a9:dd:6c:52:30:d0:0e:c1:e0:ed:43:a3:6c:20:fc:42:ce:cf: 7d:01:a3:b7:b9:30:49:51:6c:ea:e1:55:72:8d:e1:d4:7a:dc: 85:40:0a:27:3c:f3:90:77:ca:76:20:9a:d4:fc:4f:91:6b:1f: 36:d0:eb:1d:56:b3:f9:7c:20:a9:b3:53:48:da:08:76:26:3f: 82:1e:9c:76:f8:33:2e:b0:bc:a8:15:0a:47:a6:19:49:c1:21: 75:e2:42:88:62:5d:43:51:b7:cb:7f:6d:26:46:20:e8:62:49: a8:b3:60:db:fb:00:a7:77:57:7b:44:cd:f0:ba:f4:5a:25:cc: 8e:ea:77:99:08:80:9a:88:91:94:a7:2a:68:2f:31:0a:33:de: 8b:cd:c8:0f:00:69:fe:e4:26:0c:e2:42:fa:90:4c:30:85:17: c3:0a:bc:f8:9a:ce:32:f6:12:ba:b7:1f:44:5c:a9:7b:cb:48: e9:59:e0:9a:9e:f2:66:41:1b:3d:e3:22:4b:1d:c7:9a:c5:4d: df:0c:b1:4b:db:d7:35:59:82:95:1c:b7:88:73:21:49:ff:2b: a9:b2:ec:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2wIRnio+32PwNmlfXpqdTlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIxMTMwMDUyWhcNMjYwNDIyMTMwMDUyWjAzMTEwLwYDVQQD EygxYWQ4Yzk2YjQ1YjgyNzBkMjk1YzEwM2RjMWQ1YmZhZGUxZmM2YzdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYB5GqZ7EAzhEVZpF7fTL2U9/HWU gtomXrXpOmdoEQeDcjL/UMAexZjHAV01fXn862oyucHgJ7woxACSKkcilly+9g3C nXm/9kxyXrq83YYy+Rj1z4W/Vo+xX1WIgToj3jPh/+4CkokCcKHL16o/qpehtQLt cfJ9y0PaIDKHutyRdXy7DBZVzJUnkUiFvPIRavbm8/m/N76yS3+LUcqL5PSq5gK9 /4/HAnjkxOGsgiaeS1/A5JrIeg/J6oHwdaCH53ey+DV0ulVE9vpEHztYOjLXLOkH +i9YHz8txaOrwjBiRYzmdn1xU1y62APeoOtinXgTB92NZptlffXathsTgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBrYyWtFuCcNKVwQPcHVv63h/Gx7MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADQ6Xvwrr /tNgYDC3xf4QZ3RJNOW8axhJV/LGgfou/mNyxJqiqd1sUjDQDsHg7UOjbCD8Qs7P fQGjt7kwSVFs6uFVco3h1HrchUAKJzzzkHfKdiCa1PxPkWsfNtDrHVaz+XwgqbNT SNoIdiY/gh6cdvgzLrC8qBUKR6YZScEhdeJCiGJdQ1G3y39tJkYg6GJJqLNg2/sA p3dXe0TN8Lr0WiXMjup3mQiAmoiRlKcqaC8xCjPei83IDwBp/uQmDOJC+pBMMIUX wwq8+JrOMvYSurcfRFype8tI6Vngmp7yZkEbPeMiSx3HmsVN3wyxS9vXNVmClRy3 iHMhSf8rqbLsvw== -----END CERTIFICATE-----Generated at Tue Apr 21 22:53:29 2026 by rpki-client