$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: k0Dck5z2/WOHINnodzWXN37iCpYClPr55QDbAEY7Tq4= Subject key identifier: 68:A2:B7:F2:1C:E9:C8:11:6B:7E:96:21:F2:A3:9C:F3:9D:B2:C7:F4 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E15A02CFA3365EC8A41AF42D65C5F7457 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1366 Signing time: Mon 11 May 2026 06:01:19 +0000 Manifest this update: Mon 11 May 2026 06:01:19 +0000 Manifest next update: Tue 12 May 2026 06:01:19 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: vHu9UZ9lt8veYzZe4Q6Xr+VN9QsGh0In0yptBKiWVAk=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 12 May 2026 06:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:15:a0:2c:fa:33:65:ec:8a:41:af:42:d6:5c:5f:74:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 11 06:01:19 2026 GMT Not After : May 12 06:01:19 2026 GMT Subject: CN=68a2b7f21ce9c8116b7e9621f2a39cf39db2c7f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:6c:77:aa:03:e1:25:cc:1f:e3:94:b8:6e: 88:e8:15:f1:a6:4d:4f:91:14:91:cf:0c:e0:2d:1c: 0d:29:87:7c:c6:68:6a:34:da:0e:17:e7:90:42:92: 09:bb:cb:4b:8c:b5:c8:1a:88:74:67:9f:59:b2:05: 5e:cf:57:75:d6:6b:82:37:1d:f6:fb:5c:49:7e:c1: 1c:5f:77:a1:d7:93:b9:2c:81:55:55:86:c4:c9:e5: 51:36:fe:f0:27:dc:96:e8:5a:e8:d1:d7:7b:1c:7c: c8:5c:f5:6f:a7:e9:bb:97:7f:a4:fe:72:ae:94:3e: 76:26:11:63:98:9e:a9:0b:ad:9d:52:82:56:07:ec: c2:07:13:20:15:55:e1:0b:99:fe:cd:59:93:37:42: 2d:e3:f9:63:32:a3:06:f7:70:19:6b:ed:5a:d2:30: a1:45:a3:ae:cb:72:2d:35:41:eb:80:b0:22:78:59: 88:95:84:30:98:bd:ec:ca:4d:40:d4:79:a4:d1:88: b7:0c:74:db:5f:52:a0:1a:2e:9a:2c:ba:6c:a5:74: 53:b2:df:6f:73:88:74:ed:ac:65:0e:3e:6c:0f:24: d5:9c:9b:37:6e:36:66:51:0b:77:33:79:20:f6:e6: 19:0d:48:c4:12:3b:53:88:a9:e1:80:d1:2e:cc:0b: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A2:B7:F2:1C:E9:C8:11:6B:7E:96:21:F2:A3:9C:F3:9D:B2:C7:F4 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:87:a2:3e:75:79:09:2d:55:6d:6a:45:f9:0a:8f:68:74:55: e0:42:15:28:1a:82:4d:83:6f:e2:17:2b:1e:26:1b:07:f8:4b: a7:ff:7c:a4:68:6b:91:73:e7:4e:a6:87:87:10:a1:04:8a:f0: 1f:03:25:b9:2e:97:09:ad:27:ed:5c:f2:11:ba:c9:0f:37:f6: ed:e6:eb:30:1d:88:ab:4c:40:c1:03:29:3f:0e:f0:12:b3:21: e3:c2:ac:a9:66:d4:e4:60:86:28:f2:d5:b6:74:2e:7c:e0:76: 91:d3:b9:55:87:8e:92:3c:e2:cb:b7:a4:95:88:46:b4:9e:2d: 4b:be:c1:66:e5:a3:d2:f5:eb:c3:7c:fe:1d:d1:15:9a:6c:41: 84:91:08:95:a3:e6:0d:ad:e5:d1:74:94:af:45:20:52:4d:1c: b7:7b:27:4a:49:3f:93:59:f7:48:ea:ca:86:38:1c:5a:40:76: 49:4b:9c:31:d9:25:1e:90:86:f4:9f:2a:a2:f8:40:bb:d2:89: 3e:c3:60:3a:35:d6:8f:aa:5a:de:bf:61:a0:9c:f9:89:37:27: 55:d6:fd:ff:72:d3:65:11:b7:1e:ce:df:10:d2:4e:17:ff:85: 04:c3:43:73:b6:41:27:93:26:24:33:1b:64:0f:1e:11:a2:91: e1:af:be:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4VoCz6M2XsikGvQtZcX3RXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTExMDYwMTE5WhcNMjYwNTEyMDYwMTE5WjAzMTEwLwYDVQQD Eyg2OGEyYjdmMjFjZTljODExNmI3ZTk2MjFmMmEzOWNmMzlkYjJjN2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xlsd6oD4SXMH+OUuG6I6BXxpk1P kRSRzwzgLRwNKYd8xmhqNNoOF+eQQpIJu8tLjLXIGoh0Z59ZsgVez1d11muCNx32 +1xJfsEcX3eh15O5LIFVVYbEyeVRNv7wJ9yW6Fro0dd7HHzIXPVvp+m7l3+k/nKu lD52JhFjmJ6pC62dUoJWB+zCBxMgFVXhC5n+zVmTN0It4/ljMqMG93AZa+1a0jCh RaOuy3ItNUHrgLAieFmIlYQwmL3syk1A1Hmk0Yi3DHTbX1KgGi6aLLpspXRTst9v c4h07axlDj5sDyTVnJs3bjZmUQt3M3kg9uYZDUjEEjtTiKnhgNEuzAs3IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGiit/Ic6cgRa36WIfKjnPOdssf0MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaIeiPnV5 CS1VbWpF+QqPaHRV4EIVKBqCTYNv4hcrHiYbB/hLp/98pGhrkXPnTqaHhxChBIrw HwMluS6XCa0n7VzyEbrJDzf27ebrMB2Iq0xAwQMpPw7wErMh48KsqWbU5GCGKPLV tnQufOB2kdO5VYeOkjziy7eklYhGtJ4tS77BZuWj0vXrw3z+HdEVmmxBhJEIlaPm Da3l0XSUr0UgUk0ct3snSkk/k1n3SOrKhjgcWkB2SUucMdklHpCG9J8qovhAu9KJ PsNgOjXWj6pa3r9hoJz5iTcnVdb9/3LTZRG3Hs7fENJOF/+FBMNDc7ZBJ5MmJDMb ZA8eEaKR4a++dA== -----END CERTIFICATE-----Generated at Mon May 11 16:23:31 2026 by rpki-client