
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: z0Wc6uCWxywilkdvi2cSuLnVno5FVECO86KT5od/jYs=
Subject key identifier: 64:C4:A4:EA:7F:57:BB:67:8E:84:45:39:8E:22:19:AC:AB:79:BE:6F
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019F220FEC8124129C341B8FBE6470AAA03C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 13F1
Signing time: Thu 02 Jul 2026 09:01:36 +0000
Manifest this update: Thu 02 Jul 2026 09:01:36 +0000
Manifest next update: Fri 03 Jul 2026 09:01:36 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: HFSJjWvJQuvSywpIBVohIvV34LOMQvzqFnY3qhwqkkU=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 Jul 2026 08:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:22:0f:ec:81:24:12:9c:34:1b:8f:be:64:70:aa:a0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jul 2 09:01:36 2026 GMT
Not After : Jul 3 09:01:36 2026 GMT
Subject: CN=64c4a4ea7f57bb678e8445398e2219acab79be6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1d:07:2c:6c:4a:06:f0:a1:d4:04:e7:10:ac:
e1:6b:61:3b:24:4b:3a:fa:94:b1:43:68:b4:42:2f:
c4:0c:6f:d3:14:06:69:71:68:c2:3c:21:71:aa:55:
25:4a:ae:68:24:fb:7c:1a:3c:2d:40:00:78:46:45:
92:7f:9a:2b:5e:43:d5:2f:23:f0:20:29:52:2d:c3:
00:3b:5e:78:6a:67:6a:6d:26:df:08:8c:d4:c3:e7:
aa:2d:b1:f7:fb:cf:36:a1:df:90:d4:ab:43:49:ba:
2f:81:85:87:d5:14:e0:6d:ff:59:76:98:b4:22:a7:
8e:35:a3:04:9c:e1:ec:a5:54:03:8e:eb:1b:5e:89:
e6:0e:70:d1:7a:02:0e:7e:80:64:58:7d:c7:b8:1a:
78:0c:59:46:bc:8d:f9:17:6f:b2:6e:1f:05:ac:40:
ba:c8:5a:70:48:de:f0:3a:c8:ae:e6:b7:c1:bc:31:
d8:67:15:0e:0b:d3:74:3b:43:b2:f8:d0:a7:4a:e4:
e1:5a:fc:05:13:ee:3d:7f:e8:aa:e7:02:e8:45:68:
eb:bc:26:0f:e2:e3:22:29:ff:20:31:cb:f9:e3:18:
f5:99:b4:77:ca:87:2f:b7:3a:09:e3:60:d3:1b:fe:
5a:1b:21:1c:98:b2:7d:cf:24:2a:b4:30:82:74:ba:
3b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:C4:A4:EA:7F:57:BB:67:8E:84:45:39:8E:22:19:AC:AB:79:BE:6F
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:b7:60:6f:f0:a1:2c:aa:7a:84:5d:2b:5e:62:b2:2b:e0:8f:
cb:55:31:79:2c:94:e4:bd:e3:30:27:47:1c:87:63:c7:8b:68:
99:d8:a8:91:48:7b:06:0a:3a:56:4f:fa:9b:91:7e:a3:fb:b4:
a4:d8:8f:d5:96:c2:10:ff:3d:9c:c6:5a:83:c6:f8:53:50:81:
ea:02:23:25:ff:7f:0e:7e:98:df:31:03:c8:11:98:78:47:7b:
dc:bd:d5:83:24:74:a0:d5:65:8d:1f:64:b2:a2:0e:1b:d5:68:
94:db:c0:5f:d0:73:39:43:ac:97:57:93:9f:7c:02:94:29:02:
9f:14:7c:65:2e:47:f8:cf:a7:19:f1:f0:d8:dd:72:96:d3:38:
a7:d9:7c:63:ac:ef:2a:4f:7a:32:11:8e:c7:78:96:45:b9:ef:
94:b0:b9:8a:ee:4c:5c:cd:6a:4a:ca:40:1b:92:e4:82:e7:3c:
c9:63:95:88:91:e4:da:76:dc:86:de:a4:60:95:78:f8:da:37:
d0:47:b4:6d:b0:63:5e:62:4b:13:57:04:03:48:96:40:6c:a6:
19:65:ba:fd:13:a1:b7:86:e1:28:b9:79:f5:f7:44:01:cf:85:
3c:ae:b7:63:33:03:fc:b2:33:5a:27:0f:4b:c9:16:03:ba:37:
0f:a6:9f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 2 10:58:45 2026 by rpki-client