$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: VjS2WEQ7AGZLLJQmCx57QuemQDqDXj+PiY8k/kd0hnM= Subject key identifier: E3:ED:6B:FD:D8:87:D2:6A:9A:A5:EB:95:F2:57:48:2C:67:A8:95:7C Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019F129C9860B6458D6A4704AC92F204919D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13E9 Signing time: Mon 29 Jun 2026 09:01:20 +0000 Manifest this update: Mon 29 Jun 2026 09:01:20 +0000 Manifest next update: Tue 30 Jun 2026 09:01:20 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: t5NuDOlk25gtOfIS0ogVLksSfRSBoid0XYPOZyoXE50=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:12:9c:98:60:b6:45:8d:6a:47:04:ac:92:f2:04:91:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 29 09:01:20 2026 GMT Not After : Jun 30 09:01:20 2026 GMT Subject: CN=e3ed6bfdd887d26a9aa5eb95f257482c67a8957c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:14:41:ea:99:29:c5:0d:b0:e4:00:96:62:fd: ab:32:09:25:48:84:e2:cd:5b:68:10:7f:c5:60:95: 79:46:25:d8:94:ce:d2:7d:86:b4:db:40:6a:60:f5: 80:fa:e9:25:60:6a:2c:4f:89:85:70:2a:5c:b2:33: 29:95:fc:86:da:77:ac:e3:ba:01:2b:b8:65:c5:59: 3f:16:7e:f5:7f:16:f6:fc:a8:c9:e0:1d:c9:69:9f: 8f:cc:70:76:1b:1b:06:b9:9a:50:3e:13:15:27:7c: 69:26:91:97:71:2c:93:c5:26:f2:3c:95:24:32:f7: 88:2f:e8:7e:0a:0d:73:aa:c1:3c:e6:de:65:d5:56: d0:e5:17:5e:c0:69:ff:a8:35:aa:30:47:aa:3c:8f: 76:13:29:73:27:ea:06:24:aa:92:d4:04:7e:2f:95: d5:68:7f:dc:3a:e3:21:95:f0:d0:03:9b:1c:dd:b7: cf:ec:2a:49:3b:e6:41:61:53:38:c1:69:66:3c:92: 6f:c3:54:fa:63:4b:d7:ac:d4:eb:1e:04:9b:23:36: 89:86:fa:d9:78:cd:67:2a:b4:47:1b:6a:49:3b:14: 3a:58:a0:0e:88:f4:2a:be:19:3c:05:b0:55:cb:1d: c6:e2:0a:33:e4:de:b1:05:3a:8f:23:5d:05:05:be: f1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:ED:6B:FD:D8:87:D2:6A:9A:A5:EB:95:F2:57:48:2C:67:A8:95:7C X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:3a:d4:3e:10:77:cf:7d:eb:d9:bc:02:e9:ff:77:85:40:cc: e6:81:18:76:d5:c0:a4:1e:ba:5e:3d:b8:34:c4:12:1c:a0:a4: 09:28:da:b4:2a:03:a5:10:ba:b6:8e:0e:0c:62:d3:12:20:56: 51:f3:de:09:74:b9:8e:c7:15:29:1c:20:c8:b1:51:d7:c1:23: df:4c:b1:92:d2:5a:33:5f:7e:26:6c:68:70:14:87:73:69:8b: 60:23:fd:4d:98:01:e4:3f:08:4d:91:4e:4b:41:2e:a5:d1:a8: f9:d0:74:f6:52:b8:6c:a2:44:ba:0a:2b:4f:bd:67:a4:3e:91: 91:ed:b1:f8:30:5e:bd:c6:6a:d0:ea:ac:28:bf:e9:96:ab:a4: 79:35:1d:76:1c:3a:16:a5:e7:f4:ce:60:ea:24:6d:97:82:65: a3:58:8d:4d:7b:37:6c:60:fb:2c:53:61:91:f7:6a:77:d2:ab: ee:b8:9f:74:b9:0a:02:a4:08:d5:cc:ac:a2:73:36:e1:dd:17: c5:d4:60:9a:e7:f9:5f:64:60:ce:d3:d1:f3:21:10:b1:a8:4d: b2:e5:57:16:c0:f5:d1:4e:56:a6:f3:8d:be:a9:f0:47:56:b4: ab:5d:a0:e7:71:06:22:15:35:63:25:bf:1c:ee:98:3a:a8:0f: d2:73:14:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8SnJhgtkWNakcErJLyBJGdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjI5MDkwMTIwWhcNMjYwNjMwMDkwMTIwWjAzMTEwLwYDVQQD EyhlM2VkNmJmZGQ4ODdkMjZhOWFhNWViOTVmMjU3NDgyYzY3YTg5NTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxRB6pkpxQ2w5ACWYv2rMgklSITi zVtoEH/FYJV5RiXYlM7SfYa020BqYPWA+uklYGosT4mFcCpcsjMplfyG2nes47oB K7hlxVk/Fn71fxb2/KjJ4B3JaZ+PzHB2GxsGuZpQPhMVJ3xpJpGXcSyTxSbyPJUk MveIL+h+Cg1zqsE85t5l1VbQ5RdewGn/qDWqMEeqPI92EylzJ+oGJKqS1AR+L5XV aH/cOuMhlfDQA5sc3bfP7CpJO+ZBYVM4wWlmPJJvw1T6Y0vXrNTrHgSbIzaJhvrZ eM1nKrRHG2pJOxQ6WKAOiPQqvhk8BbBVyx3G4goz5N6xBTqPI10FBb7xbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOPta/3Yh9JqmqXrlfJXSCxnqJV8MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDrUPhB3 z33r2bwC6f93hUDM5oEYdtXApB66Xj24NMQSHKCkCSjatCoDpRC6to4ODGLTEiBW UfPeCXS5jscVKRwgyLFR18Ej30yxktJaM19+JmxocBSHc2mLYCP9TZgB5D8ITZFO S0EupdGo+dB09lK4bKJEugorT71npD6Rke2x+DBevcZq0OqsKL/plqukeTUddhw6 FqXn9M5g6iRtl4Jlo1iNTXs3bGD7LFNhkfdqd9Kr7rifdLkKAqQI1cysonM24d0X xdRgmuf5X2RgztPR8yEQsahNsuVXFsD10U5WpvONvqnwR1a0q12g53EGIhU1YyW/ HO6YOqgP0nMUxA== -----END CERTIFICATE-----Generated at Mon Jun 29 10:40:40 2026 by rpki-client