$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: n6RGkQknzllKnmh0f8UTrGh6v2GvKUSOlg+IQuMc1L0= Subject key identifier: 21:B2:4C:3E:61:8C:62:5B:CF:BE:B5:B2:61:A4:20:CA:79:F9:81:97 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 01973BE37990BCB3449B19FE7ED913EF8DC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 0FD7 Signing time: Wed 04 Jun 2025 17:00:52 +0000 Manifest this update: Wed 04 Jun 2025 17:00:52 +0000 Manifest next update: Thu 05 Jun 2025 17:00:52 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: OmyHF1Yyc4ODGC0mgILQce6pvQ/IxHHn8sM9JvPkUS8=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 17:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:3b:e3:79:90:bc:b3:44:9b:19:fe:7e:d9:13:ef:8d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 4 17:00:52 2025 GMT Not After : Jun 5 17:00:52 2025 GMT Subject: CN=21b24c3e618c625bcfbeb5b261a420ca79f98197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:36:5f:88:04:fb:8d:8a:09:76:83:03:11:b0: 92:f6:4a:16:e3:07:40:7c:63:c4:3c:41:36:a0:c7: d7:8c:42:aa:90:90:42:ad:85:67:f2:7c:fa:e7:e2: 3a:96:fe:9f:5c:b4:36:5a:92:5f:60:8a:00:2c:79: 51:be:eb:4e:48:7c:63:b5:d8:39:03:6f:98:02:80: be:e8:45:1c:4a:10:74:c4:aa:63:7b:56:a9:c1:8f: 21:73:b7:05:b1:99:99:7e:95:78:aa:12:ca:73:f2: bf:e6:e1:79:67:71:a9:d7:3c:c5:7b:b6:c8:62:d7: c5:11:fe:3b:74:8c:3e:46:81:9c:27:44:22:6f:52: 6c:f8:9c:c3:07:dd:d8:02:94:c3:ac:83:aa:4c:47: 54:9b:7d:1e:44:c6:56:66:d4:64:54:ea:d1:e8:a9: 66:2d:66:36:e5:77:7d:f5:20:9d:0b:23:9b:77:e2: e2:21:a8:7e:24:49:b7:8b:42:b9:2d:1a:0b:d9:6d: ff:4d:b9:5f:4a:27:e0:1b:f8:03:be:ee:28:70:7c: a6:1c:92:e8:ed:33:19:77:da:15:37:95:12:1d:95: 9c:6e:63:4a:23:ab:1d:72:fd:af:a8:b8:40:8a:22: 0d:9f:da:77:2a:65:8d:b0:73:6a:f0:3d:61:12:83: d8:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B2:4C:3E:61:8C:62:5B:CF:BE:B5:B2:61:A4:20:CA:79:F9:81:97 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0f:5b:c0:92:e7:0b:66:ef:08:7f:ce:25:80:f1:f3:77:37: 74:db:b7:a8:61:f2:3e:3f:92:0d:ce:a8:a2:0d:79:3c:1c:91: c7:ab:45:75:3d:11:97:cb:b9:c8:1e:a7:77:22:b3:52:e8:3b: a7:4d:6a:c6:3f:f3:a6:d5:c7:e5:ee:09:6e:a2:a6:b9:5c:ba: 97:ff:18:57:e3:fc:ec:6a:2c:5f:1d:8a:fb:6c:ad:29:8d:d1: 77:9f:68:21:10:15:d0:a1:a8:e9:92:d0:e5:a3:73:e4:eb:38: 30:58:01:6a:98:34:4b:e3:9c:8f:48:b0:d8:c6:49:b1:f4:e9: fc:fb:fe:bf:6c:5a:fa:e3:aa:9e:d7:a9:28:9b:3f:5d:69:e7: 36:96:f0:dd:47:2f:a3:b3:bc:58:6c:6b:1d:91:43:fe:ca:7b: 22:39:2a:83:57:99:16:55:a6:ac:72:50:a8:cf:11:21:b7:09: f3:b1:b6:0f:2b:85:36:b7:2b:55:32:35:00:30:ec:4e:ee:ae: 03:06:7b:06:dc:43:23:0f:d5:0a:ed:52:87:f3:7d:07:34:60: d8:c1:46:d7:7d:75:22:7c:8a:91:c7:a2:5c:c7:ed:da:d4:13: 88:33:42:06:b6:ec:e6:50:01:a3:14:bc:b0:68:d8:9e:63:e9: 8f:e0:8d:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZc743mQvLNEmxn+ftkT743GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUwNjA0MTcwMDUyWhcNMjUwNjA1MTcwMDUyWjAzMTEwLwYDVQQD EygyMWIyNGMzZTYxOGM2MjViY2ZiZWI1YjI2MWE0MjBjYTc5Zjk4MTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojZfiAT7jYoJdoMDEbCS9koW4wdA fGPEPEE2oMfXjEKqkJBCrYVn8nz65+I6lv6fXLQ2WpJfYIoALHlRvutOSHxjtdg5 A2+YAoC+6EUcShB0xKpje1apwY8hc7cFsZmZfpV4qhLKc/K/5uF5Z3Gp1zzFe7bI YtfFEf47dIw+RoGcJ0Qib1Js+JzDB93YApTDrIOqTEdUm30eRMZWZtRkVOrR6Klm LWY25Xd99SCdCyObd+LiIah+JEm3i0K5LRoL2W3/TblfSifgG/gDvu4ocHymHJLo 7TMZd9oVN5USHZWcbmNKI6sdcv2vqLhAiiINn9p3KmWNsHNq8D1hEoPYowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCGyTD5hjGJbz761smGkIMp5+YGXMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfA9bwJLn C2bvCH/OJYDx83c3dNu3qGHyPj+SDc6oog15PByRx6tFdT0Rl8u5yB6ndyKzUug7 p01qxj/zptXH5e4JbqKmuVy6l/8YV+P87GosXx2K+2ytKY3Rd59oIRAV0KGo6ZLQ 5aNz5Os4MFgBapg0S+Ocj0iw2MZJsfTp/Pv+v2xa+uOqntepKJs/XWnnNpbw3Ucv o7O8WGxrHZFD/sp7Ijkqg1eZFlWmrHJQqM8RIbcJ87G2DyuFNrcrVTI1ADDsTu6u AwZ7BtxDIw/VCu1Sh/N9BzRg2MFG1311InyKkceiXMft2tQTiDNCBrbs5lABoxS8 sGjYnmPpj+CNdQ== -----END CERTIFICATE-----Generated at Wed Jun 4 21:21:40 2025 by rpki-client