$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: ee9WS+1/WQGEyPhQheQjAq7FojemFUtxFXjEKJK1o2c= Subject key identifier: EC:FD:1F:B6:06:1C:14:83:7D:01:AA:25:F4:DB:B3:5A:94:8B:FE:89 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D970634B1669F1369574288AAC35D2CB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1323 Signing time: Thu 16 Apr 2026 16:00:59 +0000 Manifest this update: Thu 16 Apr 2026 16:00:59 +0000 Manifest next update: Fri 17 Apr 2026 16:00:59 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 4C7YElUCGRO/ZpVM9jK9Mxm8AlTO7X2xdIhvScenV3k=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 16:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:97:06:34:b1:66:9f:13:69:57:42:88:aa:c3:5d:2c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 16 16:00:59 2026 GMT Not After : Apr 17 16:00:59 2026 GMT Subject: CN=ecfd1fb6061c14837d01aa25f4dbb35a948bfe89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f0:58:70:c0:d9:ae:d1:1d:35:b6:f6:6b:e3: f9:53:fb:71:83:04:32:de:36:54:ab:74:e3:d0:01: 1c:0b:8d:db:3c:50:cb:1f:c1:b0:65:0e:e7:4c:7a: 64:f7:72:dd:e2:3f:8a:cd:7f:77:1f:94:93:7d:6e: 1d:43:1d:83:4c:6d:2a:16:d6:e3:24:25:bb:af:61: 09:61:a9:93:27:2e:ba:1b:b1:13:41:aa:93:ea:96: b6:21:7f:56:e0:08:df:3d:f3:3c:79:1f:95:af:fb: 3c:02:f6:1b:8c:48:d9:ed:c5:28:21:d1:d2:e5:5a: e5:e0:06:02:a8:9f:d8:b8:e1:78:4e:1a:f3:f8:1b: 7a:b0:8d:78:68:c6:a8:40:b6:93:36:b8:0c:60:41: 76:ff:a7:47:75:47:2e:36:3d:79:4a:2c:84:28:e9: 5e:48:03:28:b3:2e:30:b8:9a:90:fc:89:43:dc:02: ec:f9:d4:5d:7c:93:09:2e:81:9a:74:de:13:36:ba: f7:9f:09:ca:ac:44:6c:95:a2:ed:d5:8d:52:de:92: 96:d5:03:cc:4a:a8:f6:00:bb:1b:fe:e2:03:fd:4c: 61:11:d4:84:c0:53:a3:18:bd:26:75:16:9d:89:c1: 49:bb:c9:b4:f8:37:c6:86:eb:a4:ed:d4:0f:c4:56: 84:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FD:1F:B6:06:1C:14:83:7D:01:AA:25:F4:DB:B3:5A:94:8B:FE:89 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:73:3d:19:d7:6b:28:90:f6:cc:7f:88:55:2b:9c:7c:bc:4a: e3:e7:5e:2b:7e:32:3d:15:a5:b9:1d:ef:d2:47:ed:38:1c:56: fb:e7:d7:78:54:6f:76:9d:21:46:59:28:4a:9c:52:70:ea:c9: 29:2c:bf:53:15:ea:fb:f4:37:93:fb:49:9e:5f:cc:92:be:a5: 1b:90:ef:8f:3f:58:8c:f1:a4:ff:14:e0:9e:8e:d0:d7:06:3f: d9:d4:69:0c:d2:c3:7b:b6:7f:a1:49:93:19:46:be:15:15:65: 80:a1:ab:c5:32:19:77:67:f2:2e:4c:43:98:f4:42:ec:d2:9c: 39:a8:33:be:6f:2d:0c:c8:52:7c:f6:a8:a3:23:92:6b:0c:23: e2:46:25:89:7c:64:78:68:b2:02:8e:23:1c:75:df:24:16:f2: b4:97:e8:e2:78:97:6c:f4:11:c4:2b:c1:c5:4a:31:a0:ec:85: 9a:c7:e3:5d:8a:7c:3d:e1:dd:e5:49:bc:00:95:29:a0:87:2b: 70:ba:93:c0:94:f7:c5:b7:12:33:d4:ab:79:62:2c:ac:19:b6: df:4e:e1:0a:cd:ac:b5:d0:56:e8:8a:b1:a7:37:a3:0b:25:96: c2:01:aa:49:fb:24:dc:d5:9a:49:bb:3f:54:75:f2:c4:c2:ff: fd:c1:63:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2XBjSxZp8TaVdCiKrDXSywMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDE2MTYwMDU5WhcNMjYwNDE3MTYwMDU5WjAzMTEwLwYDVQQD EyhlY2ZkMWZiNjA2MWMxNDgzN2QwMWFhMjVmNGRiYjM1YTk0OGJmZTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPBYcMDZrtEdNbb2a+P5U/txgwQy 3jZUq3Tj0AEcC43bPFDLH8GwZQ7nTHpk93Ld4j+KzX93H5STfW4dQx2DTG0qFtbj JCW7r2EJYamTJy66G7ETQaqT6pa2IX9W4AjfPfM8eR+Vr/s8AvYbjEjZ7cUoIdHS 5Vrl4AYCqJ/YuOF4Thrz+Bt6sI14aMaoQLaTNrgMYEF2/6dHdUcuNj15SiyEKOle SAMosy4wuJqQ/IlD3ALs+dRdfJMJLoGadN4TNrr3nwnKrERslaLt1Y1S3pKW1QPM Sqj2ALsb/uID/UxhEdSEwFOjGL0mdRadicFJu8m0+DfGhuuk7dQPxFaEZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOz9H7YGHBSDfQGqJfTbs1qUi/6JMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbXM9Gddr KJD2zH+IVSucfLxK4+deK34yPRWluR3v0kftOBxW++fXeFRvdp0hRlkoSpxScOrJ KSy/UxXq+/Q3k/tJnl/Mkr6lG5Dvjz9YjPGk/xTgno7Q1wY/2dRpDNLDe7Z/oUmT GUa+FRVlgKGrxTIZd2fyLkxDmPRC7NKcOagzvm8tDMhSfPaooyOSawwj4kYliXxk eGiyAo4jHHXfJBbytJfo4niXbPQRxCvBxUoxoOyFmsfjXYp8PeHd5Um8AJUpoIcr cLqTwJT3xbcSM9SreWIsrBm2307hCs2stdBW6IqxpzejCyWWwgGqSfsk3NWaSbs/ VHXyxML//cFjJQ== -----END CERTIFICATE-----Generated at Thu Apr 16 23:41:57 2026 by rpki-client