$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: pOLa+X8NajTQfJ65X88Q93xzZYX4P/wlJIJrDftFSQ0= Subject key identifier: 5E:4E:53:4A:70:77:48:B4:92:C0:27:AA:C0:33:9E:3D:02:EF:62:6A Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DAC445B228DD1170312AF395A9642DAAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 132E Signing time: Mon 20 Apr 2026 19:00:54 +0000 Manifest this update: Mon 20 Apr 2026 19:00:54 +0000 Manifest next update: Tue 21 Apr 2026 19:00:54 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: t2ZkzaEbRNoCoZQqYXNilbamRgs3aqd9SoBc3C8aTMU=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Apr 2026 13:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:ac:44:5b:22:8d:d1:17:03:12:af:39:5a:96:42:da:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 20 19:00:54 2026 GMT Not After : Apr 21 19:00:54 2026 GMT Subject: CN=5e4e534a707748b492c027aac0339e3d02ef626a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a5:17:55:43:8b:5c:45:5d:1e:ef:3d:07:92: b0:95:81:5d:4f:a3:e3:57:ac:9c:98:a1:67:1b:43: d5:1c:30:a9:cd:bd:27:8a:91:03:2f:bc:0b:db:66: fb:2b:8e:54:db:e5:20:42:e5:6b:40:5d:e8:d1:7c: e1:c7:f4:fb:4a:ef:9f:58:98:a4:ed:33:66:b7:0c: 6e:35:3a:f9:f0:5c:38:66:1d:93:0e:0a:79:4e:73: 3f:fb:f3:27:a6:c8:c0:4d:40:9d:46:ba:4d:27:c4: 02:87:66:7a:16:ee:2a:7f:fb:ae:f1:ce:ea:4a:7f: fd:00:59:f8:28:b9:b5:81:fc:ca:70:ff:c6:3e:22: 63:d3:63:ef:b2:cf:bd:e4:2b:2f:72:83:94:a7:ef: 65:fa:e8:d9:b2:25:2c:5e:52:13:f4:e1:5d:f5:99: 4f:5a:42:7a:b7:e7:af:a9:df:86:f0:c9:62:fd:e0: 80:49:fd:f7:85:f7:cb:67:2b:29:4f:b9:80:e3:fa: 1e:b1:d3:f8:fa:22:70:7b:f5:f1:8d:6d:6c:72:f6: 6c:61:49:6f:f0:ee:e7:55:a0:0e:d8:9b:f1:1b:9d: 31:f9:27:87:ca:77:d8:e4:87:bd:f4:c8:f2:27:5e: 82:0d:20:26:e3:9c:2c:fc:16:f0:dc:2c:6f:0c:94: 95:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:4E:53:4A:70:77:48:B4:92:C0:27:AA:C0:33:9E:3D:02:EF:62:6A X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ea:0b:bc:f1:f4:1d:09:66:6f:26:af:5b:e2:c6:12:f9:2c: 09:70:92:a4:0c:94:09:ae:1a:bf:7b:58:68:de:a2:0a:19:c8: 03:db:67:23:c5:b6:b5:16:b1:a2:bc:9a:54:44:cb:da:e6:fe: 20:35:5a:6e:92:c8:18:6f:47:6e:af:e8:f4:3d:55:61:65:c8: ef:50:7e:e7:13:f1:5a:04:7c:34:8b:2b:e4:a0:60:1b:9c:b3: 9f:c0:e1:a0:bc:4e:a7:38:ac:6f:bb:f1:57:46:de:44:e7:0c: d2:50:6a:05:78:a1:08:cd:59:c3:8c:50:90:ae:eb:5e:92:01: 23:0e:83:46:86:9b:0d:61:c7:ef:10:ff:50:21:4e:cf:1a:1e: e4:84:33:df:70:81:19:1b:a7:3d:b8:4a:28:55:0b:35:de:1d: 90:5d:68:a1:8d:57:5e:db:95:fd:b3:cc:c9:75:50:4d:07:54: 35:69:81:fc:ff:b8:cc:a1:85:cf:08:c2:df:d9:93:0f:9e:b4: 45:12:4a:df:a9:f6:b4:14:15:c6:3c:1b:4b:e3:9d:46:f6:1c: fc:2b:d5:00:f2:83:60:53:2a:32:6d:77:7d:11:65:8b:a1:3a: 24:03:ba:20:f9:af:37:1a:9e:3d:c2:5e:d0:d4:0c:db:67:5d: 4c:38:da:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2sRFsijdEXAxKvOVqWQtqsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIwMTkwMDU0WhcNMjYwNDIxMTkwMDU0WjAzMTEwLwYDVQQD Eyg1ZTRlNTM0YTcwNzc0OGI0OTJjMDI3YWFjMDMzOWUzZDAyZWY2MjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qUXVUOLXEVdHu89B5KwlYFdT6Pj V6ycmKFnG0PVHDCpzb0nipEDL7wL22b7K45U2+UgQuVrQF3o0Xzhx/T7Su+fWJik 7TNmtwxuNTr58Fw4Zh2TDgp5TnM/+/MnpsjATUCdRrpNJ8QCh2Z6Fu4qf/uu8c7q Sn/9AFn4KLm1gfzKcP/GPiJj02Pvss+95CsvcoOUp+9l+ujZsiUsXlIT9OFd9ZlP WkJ6t+evqd+G8Mli/eCASf33hffLZyspT7mA4/oesdP4+iJwe/XxjW1scvZsYUlv 8O7nVaAO2JvxG50x+SeHynfY5Ie99MjyJ16CDSAm45ws/Bbw3CxvDJSVOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF5OU0pwd0i0ksAnqsAznj0C72JqMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm+oLvPH0 HQlmbyavW+LGEvksCXCSpAyUCa4av3tYaN6iChnIA9tnI8W2tRaxoryaVETL2ub+ IDVabpLIGG9Hbq/o9D1VYWXI71B+5xPxWgR8NIsr5KBgG5yzn8DhoLxOpzisb7vx V0beROcM0lBqBXihCM1Zw4xQkK7rXpIBIw6DRoabDWHH7xD/UCFOzxoe5IQz33CB GRunPbhKKFULNd4dkF1ooY1XXtuV/bPMyXVQTQdUNWmB/P+4zKGFzwjC39mTD560 RRJK36n2tBQVxjwbS+OdRvYc/CvVAPKDYFMqMm13fRFli6E6JAO6IPmvNxqePcJe 0NQM22ddTDja1Q== -----END CERTIFICATE-----Generated at Mon Apr 20 22:24:27 2026 by rpki-client