
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: OjfAZvFjVii0pl3IkWAJm5xzbfqC/zSawOVgVnpdPdc=
Subject key identifier: 1F:1E:D3:B4:14:0E:54:E4:ED:5D:0A:BE:39:1B:C8:3E:92:C1:9E:9F
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019F506912BCE5BA06794270CE7D48F2E37E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 140A
Signing time: Sat 11 Jul 2026 09:01:31 +0000
Manifest this update: Sat 11 Jul 2026 09:01:31 +0000
Manifest next update: Sun 12 Jul 2026 09:01:31 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 4xq4w3z9oHd90InMMb2E7Prxtii5SW1yUh9+AFhtZfk=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 12 Jul 2026 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:50:69:12:bc:e5:ba:06:79:42:70:ce:7d:48:f2:e3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jul 11 09:01:31 2026 GMT
Not After : Jul 12 09:01:31 2026 GMT
Subject: CN=1f1ed3b4140e54e4ed5d0abe391bc83e92c19e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:d2:ab:ac:bc:b4:93:3c:2f:10:1e:a2:8c:
b6:71:97:df:73:2f:9a:f4:fb:28:10:63:18:6f:e0:
70:e4:08:61:9a:c1:e4:98:52:86:3a:10:b7:27:81:
3e:bf:13:9c:80:6c:61:23:c1:2b:34:48:f7:52:cc:
19:b7:f5:84:47:2f:99:5f:af:ea:78:c6:ed:3c:99:
3c:45:21:f0:01:b4:d7:3e:ff:6d:b0:9f:ce:c0:fb:
28:12:e7:35:a6:d1:8a:49:05:2f:51:7f:ad:78:ff:
4f:67:56:de:98:7a:08:14:4c:44:1e:7c:7e:48:9b:
a3:76:4e:25:d4:d7:2a:3a:36:b9:55:0f:6e:25:5c:
69:c3:d9:53:d5:ea:f5:3d:bf:8b:11:a1:0e:b5:fa:
f9:c8:3f:b9:ec:58:bb:0f:ba:eb:f6:33:10:d1:01:
66:56:28:50:ab:ff:77:ae:d1:35:51:49:fb:c3:a5:
3c:85:d6:1a:59:f2:08:93:19:af:c1:32:7f:c0:58:
16:31:01:9f:2c:55:12:c3:61:84:2f:54:16:7a:88:
fa:d5:1c:3d:7e:10:01:e1:a0:5e:73:af:b3:e4:ec:
dc:f0:82:d7:5b:d6:06:a3:85:eb:3e:2d:6a:a2:e3:
53:05:d7:20:b5:b2:0e:a2:77:4b:3c:cc:ce:48:7b:
32:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:D3:B4:14:0E:54:E4:ED:5D:0A:BE:39:1B:C8:3E:92:C1:9E:9F
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:30:37:0d:30:4f:0f:28:8a:58:2b:4c:3b:ba:8e:4f:4a:8a:
94:37:76:5a:55:61:10:c6:d2:33:45:61:62:97:99:7f:77:39:
3a:30:be:67:d4:2a:da:82:43:34:b2:3e:bb:07:f6:65:a9:bc:
d8:60:bc:bd:6b:75:7b:65:79:c8:33:ed:00:2a:59:b5:57:92:
df:7d:94:36:dc:1a:24:5f:aa:e4:a9:c9:23:f2:32:97:a4:2d:
5e:fb:79:bd:24:5d:7f:3a:47:e2:b3:38:5d:28:fe:35:d6:90:
41:25:e8:8c:51:92:b9:98:8b:d8:c4:eb:cd:78:18:5d:a1:93:
8e:76:3c:1c:6b:19:64:81:10:af:bc:a2:b3:f6:14:29:9d:04:
f2:db:30:6a:3c:a5:fa:f9:b0:3e:6c:f2:43:64:dc:ab:12:a9:
bc:22:42:a2:11:3b:2e:cb:8d:71:e2:8a:76:bd:90:78:3d:a8:
66:d7:d3:7d:0d:b2:4e:d8:a3:41:07:8d:d4:1a:89:30:36:ca:
ca:5d:3a:5b:3b:7a:23:7e:0b:2e:cb:b3:6f:aa:ee:9b:3e:3d:
fd:b2:29:3e:3b:74:0c:3a:4a:af:f9:1c:1d:e2:17:de:5d:cd:
14:39:d8:1a:1f:65:24:38:b3:6d:f4:89:4c:a8:f0:ac:14:eb:
54:8b:49:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 11 14:16:07 2026 by rpki-client