
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: trYMpBMjncjGTsTPilH9srkOEMbhSmFguuIYLreET3A=
Subject key identifier: D3:C2:F9:3E:62:FB:0E:26:F3:A2:90:7E:5D:AF:B5:D6:B7:F9:87:A8
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019DB20FAB697FE0484E0DB04EC545D1BF50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 1331
Signing time: Tue 21 Apr 2026 22:01:04 +0000
Manifest this update: Tue 21 Apr 2026 22:01:04 +0000
Manifest next update: Wed 22 Apr 2026 22:01:04 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=)
3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=)
8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: y/PbZfC7u43kJbWP+BrGxWETErn6CRF5rJutxRyx0zg=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:0f:ab:69:7f:e0:48:4e:0d:b0:4e:c5:45:d1:bf:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Apr 21 22:01:04 2026 GMT
Not After : Apr 22 22:01:04 2026 GMT
Subject: CN=d3c2f93e62fb0e26f3a2907e5dafb5d6b7f987a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b1:24:54:1d:bd:ef:60:eb:9a:cb:1f:d1:13:
56:41:5f:20:fa:c6:40:3d:10:4a:76:32:f6:ee:60:
80:df:1b:dd:49:03:42:6a:af:22:4c:c1:e7:4e:60:
0d:56:61:3e:07:66:e4:5a:50:27:38:a1:4a:ac:1d:
0b:4e:b5:89:26:e9:ff:87:79:a3:6e:06:5a:2f:d3:
f5:99:e9:31:b0:e7:b3:5f:2f:97:05:1f:71:36:35:
2a:5e:38:37:81:66:d6:f0:b5:95:5b:9d:80:06:1b:
46:1a:8d:ee:f9:a6:58:16:fe:a0:b6:98:1c:1d:51:
0b:4c:37:3a:c8:9c:de:30:17:00:10:fc:e4:50:b2:
b8:fd:48:3b:53:bb:cb:5f:28:7b:e2:e0:15:10:61:
56:0c:55:11:b3:63:7d:93:95:4d:5d:8c:ac:2b:89:
54:bf:28:ec:ea:2c:16:3d:72:d2:3e:bd:8c:cb:b9:
d7:5d:d0:a2:22:53:6d:7d:b2:eb:18:2b:0a:5d:2b:
1d:5f:17:8e:8d:f6:2c:a8:28:a0:c8:c0:50:54:43:
8e:3c:23:17:12:2c:ce:e3:37:a4:f5:97:74:ba:b3:
0a:c8:e5:c7:24:fd:78:40:60:16:82:79:69:2b:18:
ee:29:e9:05:ef:6e:05:a7:ab:a8:a3:fd:a1:82:7f:
25:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C2:F9:3E:62:FB:0E:26:F3:A2:90:7E:5D:AF:B5:D6:B7:F9:87:A8
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:b6:c1:88:b5:c4:6a:08:16:05:e5:b2:e8:76:05:df:43:81:
f7:03:2d:c9:52:e5:58:b1:f0:50:74:b7:1e:94:15:98:01:03:
55:6b:fb:ac:2e:82:4c:2f:03:89:1e:fe:8b:48:9c:42:4e:ef:
8e:c3:a2:2b:24:de:e3:93:64:53:e1:c2:59:90:d4:2b:b7:71:
ca:f3:68:b3:63:8b:8c:cc:19:ce:b1:66:37:1c:a1:eb:ac:23:
fa:b7:8d:b7:b0:4b:ab:98:97:3f:b4:61:f7:0d:ad:b2:1d:29:
d5:c1:6f:49:a3:98:76:5a:10:2a:5c:a7:4e:ab:f6:64:77:84:
5a:e7:cb:04:24:43:7b:04:91:4e:5d:b0:00:df:a3:1e:1f:4a:
06:27:6c:c6:24:54:e1:d3:f2:f6:b1:fc:9e:d6:06:fd:c5:3d:
82:ec:47:b7:20:56:34:b1:e6:a0:27:2b:2c:01:5b:a2:da:b6:
15:c4:ae:65:ef:a3:3e:d7:a0:8a:25:76:79:8d:18:19:3b:44:
f6:cd:44:0f:f1:b5:bc:ca:c2:59:58:3b:14:84:9e:d6:f9:b6:
e6:db:7e:3a:c8:9e:b9:e7:52:0e:cb:e4:49:f4:21:b5:98:33:
99:5e:61:2d:bd:b3:c6:8e:8c:06:7b:78:4c:71:5b:b0:55:ce:
c2:eb:2d:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2yD6tpf+BITg2wTsVF0b9QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx
MTliZDcwHhcNMjYwNDIxMjIwMTA0WhcNMjYwNDIyMjIwMTA0WjAzMTEwLwYDVQQD
EyhkM2MyZjkzZTYyZmIwZTI2ZjNhMjkwN2U1ZGFmYjVkNmI3Zjk4N2E4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbEkVB2972Drmssf0RNWQV8g+sZA
PRBKdjL27mCA3xvdSQNCaq8iTMHnTmANVmE+B2bkWlAnOKFKrB0LTrWJJun/h3mj
bgZaL9P1mekxsOezXy+XBR9xNjUqXjg3gWbW8LWVW52ABhtGGo3u+aZYFv6gtpgc
HVELTDc6yJzeMBcAEPzkULK4/Ug7U7vLXyh74uAVEGFWDFURs2N9k5VNXYysK4lU
vyjs6iwWPXLSPr2My7nXXdCiIlNtfbLrGCsKXSsdXxeOjfYsqCigyMBQVEOOPCMX
EizO4zek9Zd0urMKyOXHJP14QGAWgnlpKxjuKekF724Fp6uoo/2hgn8lNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNPC+T5i+w4m86KQfl2vtda3+YeoMB8GA1UdIwQY
MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt
YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3
LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL7bBiLXE
aggWBeWy6HYF30OB9wMtyVLlWLHwUHS3HpQVmAEDVWv7rC6CTC8DiR7+i0icQk7v
jsOiKyTe45NkU+HCWZDUK7dxyvNos2OLjMwZzrFmNxyh66wj+reNt7BLq5iXP7Rh
9w2tsh0p1cFvSaOYdloQKlynTqv2ZHeEWufLBCRDewSRTl2wAN+jHh9KBidsxiRU
4dPy9rH8ntYG/cU9guxHtyBWNLHmoCcrLAFbotq2FcSuZe+jPtegiiV2eY0YGTtE
9s1ED/G1vMrCWVg7FISe1vm25tt+OsieuedSDsvkSfQhtZgzmV5hLb2zxo6MBnt4
THFbsFXOwusttA==
-----END CERTIFICATE-----
Generated at Wed Apr 22 01:46:31 2026 by rpki-client