$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: aSRiAcGZPrpNhOQ7moWopojFxZE64JfILTKUOm9A8jQ= Subject key identifier: 9F:9B:9C:8F:2E:ED:81:27:12:4E:E3:CA:22:3A:00:06:63:C1:FE:4C Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D15A2E745869A2331715D5382B60BCD86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 12E0 Signing time: Sun 22 Mar 2026 13:01:30 +0000 Manifest this update: Sun 22 Mar 2026 13:01:30 +0000 Manifest next update: Mon 23 Mar 2026 13:01:30 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: R5quqBTh2SLewZ8xDj5pIge1DAgCujwi76ns/0GZBrQ=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Mar 2026 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:15:a2:e7:45:86:9a:23:31:71:5d:53:82:b6:0b:cd:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 22 13:01:30 2026 GMT Not After : Mar 23 13:01:30 2026 GMT Subject: CN=9f9b9c8f2eed8127124ee3ca223a000663c1fe4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:94:c3:7a:a9:15:04:81:8d:97:7e:49:a4:0d: 1b:5b:65:1a:cb:03:59:29:aa:58:31:19:13:43:e7: d0:e2:27:a9:6d:a5:96:ab:ae:2a:8b:50:54:6f:46: 43:d9:3b:b0:56:e3:bc:6d:ab:e2:66:f1:5e:46:41: b8:a0:61:70:0b:ad:df:54:54:4d:87:ae:8e:82:bf: 1c:e0:d6:77:01:c4:4f:39:ab:f5:ab:f3:d3:3d:64: 89:3d:02:24:f7:ce:5c:d6:0b:1e:fb:39:a0:c6:3d: ca:5d:11:4c:3c:c6:51:11:d4:52:21:2a:9a:a3:b7: 99:96:a8:f2:6a:7a:c0:05:f6:05:49:d1:fa:af:c8: 66:40:a1:16:8c:41:8d:9c:e6:45:26:7a:de:05:c9: c1:86:30:7b:09:cc:d2:eb:78:8d:6a:df:3c:4b:61: 6a:92:1c:95:f5:76:c0:4d:a3:c6:7f:63:b8:56:b5: 72:20:a1:d3:04:84:e6:3f:a8:59:9d:33:08:72:71: ce:d7:e7:b0:bd:ee:d7:16:96:c5:fe:29:e2:99:86: c0:fb:e0:13:8e:3a:fb:e6:49:d4:d3:ae:47:11:79: c4:e1:17:dd:8c:1e:b8:c6:b1:f7:e5:57:84:36:41: 1a:95:6b:75:36:74:44:91:ed:c8:1b:a6:9e:e0:f4: 7d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9B:9C:8F:2E:ED:81:27:12:4E:E3:CA:22:3A:00:06:63:C1:FE:4C X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:f6:5d:79:26:ed:95:87:f7:8b:f3:c0:4c:bc:d2:df:4f:20: 7a:d3:0a:2c:0a:8c:4e:05:fd:f8:d4:a6:54:aa:3e:e6:39:4e: 11:7e:4a:f4:46:48:a5:eb:e7:20:f9:c8:10:6a:1b:33:0e:2f: 28:48:9d:b7:6b:69:d6:e0:34:6c:a2:5f:75:09:fd:8c:6e:2b: 20:9a:d3:95:70:07:c0:b2:12:95:66:1f:b4:7e:4d:03:4c:2e: f8:95:9f:4b:56:2a:1c:77:f4:29:8a:d2:7d:88:2d:ed:03:1e: df:b9:c4:da:ee:c0:46:18:38:e1:6d:7b:a9:6c:52:41:6a:d5: 99:e4:d3:8f:48:29:9a:80:4c:a8:c4:71:1c:b9:03:bb:7f:70: 3d:de:e5:b8:10:f8:bd:92:29:b1:6e:b1:f6:09:80:25:be:b5: eb:5f:c9:c2:c0:db:b1:af:c3:24:19:9d:fb:fe:df:d5:f9:45: 88:5f:af:de:fa:3b:59:c8:51:e3:bd:64:c1:0a:7d:23:fe:09: fc:49:52:cd:a7:8a:19:cd:9f:ab:c7:1c:3b:ad:28:cc:e1:0f: 7f:81:71:37:24:1a:41:6f:1d:f0:0d:4c:be:db:42:98:87:fd: 05:93:1f:e9:af:28:df:fd:c5:24:3b:35:66:73:39:1d:2d:ad: 41:d6:61:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ0VoudFhpojMXFdU4K2C82GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMzIyMTMwMTMwWhcNMjYwMzIzMTMwMTMwWjAzMTEwLwYDVQQD Eyg5ZjliOWM4ZjJlZWQ4MTI3MTI0ZWUzY2EyMjNhMDAwNjYzYzFmZTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZTDeqkVBIGNl35JpA0bW2UaywNZ KapYMRkTQ+fQ4iepbaWWq64qi1BUb0ZD2TuwVuO8baviZvFeRkG4oGFwC63fVFRN h66Ogr8c4NZ3AcRPOav1q/PTPWSJPQIk985c1gse+zmgxj3KXRFMPMZREdRSISqa o7eZlqjyanrABfYFSdH6r8hmQKEWjEGNnOZFJnreBcnBhjB7CczS63iNat88S2Fq khyV9XbATaPGf2O4VrVyIKHTBITmP6hZnTMIcnHO1+ewve7XFpbF/inimYbA++AT jjr75knU065HEXnE4RfdjB64xrH35VeENkEalWt1NnREke3IG6ae4PR9IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ+bnI8u7YEnEk7jyiI6AAZjwf5MMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVfZdeSbt lYf3i/PATLzS308getMKLAqMTgX9+NSmVKo+5jlOEX5K9EZIpevnIPnIEGobMw4v KEidt2tp1uA0bKJfdQn9jG4rIJrTlXAHwLISlWYftH5NA0wu+JWfS1YqHHf0KYrS fYgt7QMe37nE2u7ARhg44W17qWxSQWrVmeTTj0gpmoBMqMRxHLkDu39wPd7luBD4 vZIpsW6x9gmAJb6161/JwsDbsa/DJBmd+/7f1flFiF+v3vo7WchR471kwQp9I/4J /ElSzaeKGc2fq8ccO60ozOEPf4FxNyQaQW8d8A1MvttCmIf9BZMf6a8o3/3FJDs1 ZnM5HS2tQdZh6g== -----END CERTIFICATE-----Generated at Sun Mar 22 18:57:40 2026 by rpki-client