$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: U4BPTmw8zB9NQ0c+KsaKuV/uSutexEJ4QSMZO2oFY2w= Subject key identifier: AA:24:63:EA:0D:0F:C6:D8:C9:7C:FE:CF:80:A6:35:EB:29:0F:7D:6A Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 0199589EE2B9E96C3168B95B6072A5B3D39A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 10EF Signing time: Wed 17 Sep 2025 17:00:31 +0000 Manifest this update: Wed 17 Sep 2025 17:00:31 +0000 Manifest next update: Thu 18 Sep 2025 17:00:31 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: tT1UCHtoSu/gN7KqpfuFRK0XjGAA5PdEdux/TpIrRBk=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:58:9e:e2:b9:e9:6c:31:68:b9:5b:60:72:a5:b3:d3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Sep 17 17:00:31 2025 GMT Not After : Sep 18 17:00:31 2025 GMT Subject: CN=aa2463ea0d0fc6d8c97cfecf80a635eb290f7d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:eb:9d:d8:55:78:2d:c9:c2:a0:7d:e4:83:b5: bb:4c:e0:d2:f9:6d:c5:71:17:19:f3:66:32:b4:33: 1e:c2:e6:e8:cf:29:ea:57:58:f7:52:0d:c2:9a:9b: b3:e3:fb:11:fc:6e:48:dc:ae:8e:35:20:6f:0c:cb: ac:02:4d:c1:25:be:f0:98:48:74:f8:f5:58:e4:16: 7f:bd:af:d2:11:16:a0:4f:3a:b9:e0:94:52:16:58: 5c:8e:67:36:77:88:10:51:1a:20:b0:c1:fb:f2:98: 1a:b6:49:42:c4:d6:c7:7f:4d:a1:ac:f0:56:ab:08: e3:7c:bd:c4:10:4b:1a:27:3c:ac:0a:91:37:77:36: bc:db:6b:8d:a6:1a:30:4c:b9:cf:2a:6a:8c:5f:70: 51:33:9e:6b:05:ed:d1:dc:c7:63:79:ea:d3:20:2c: c6:27:fe:79:71:e9:8f:7f:e5:a4:e4:f5:d4:49:9b: 2f:d0:2a:bd:42:dd:37:ac:86:d5:50:8b:00:cd:01: 21:79:8d:5c:9f:c1:73:86:b2:7e:64:98:7c:05:9e: d1:1e:d2:d6:a9:34:8a:ef:91:83:3f:9f:90:e1:6e: ed:63:51:57:aa:81:a4:2d:8f:25:05:7b:17:c2:fb: 61:5a:f8:3a:6b:95:c3:24:b5:f6:13:42:a2:f1:6a: ac:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:24:63:EA:0D:0F:C6:D8:C9:7C:FE:CF:80:A6:35:EB:29:0F:7D:6A X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:9d:e1:56:ce:dd:3c:b0:95:04:1b:15:49:b5:45:fd:15:57: 18:c7:9b:be:fd:01:fd:d2:b5:30:7b:c9:ee:f4:8a:fa:68:fe: af:64:6e:8a:da:f6:06:51:6a:12:1f:46:b2:d8:2a:86:4e:fa: 9b:d1:86:4f:71:eb:ba:94:f4:ec:78:cd:53:77:a3:78:e1:50: ff:a9:78:df:ee:fe:d8:59:8a:9d:12:31:0b:f2:dc:a7:77:32: e1:26:38:5a:db:d1:5c:f3:c5:14:d9:ea:a8:7e:48:91:74:d9: 3f:28:46:b6:8a:31:71:b4:5d:a2:39:a4:83:3e:04:68:84:5c: 8a:d9:c6:fe:5f:d0:b1:3f:c2:0b:c6:22:78:ca:ab:df:df:87: b3:66:83:39:ae:d1:75:48:58:4e:d3:fc:6f:64:cf:64:fc:e7: 82:cf:29:fd:89:54:ec:b7:b8:be:3a:f6:f6:73:28:4e:86:48: 10:69:0d:2d:0b:e5:b9:92:98:2f:3a:03:45:61:0d:d5:36:98: 9d:33:03:7a:f6:7b:a3:2a:37:c3:34:ea:7d:73:12:ef:bd:25: 70:66:ab:2b:5e:c4:a9:12:2a:0d:c4:cb:58:99:0e:d1:52:61: 6d:4a:41:32:e6:10:19:72:b9:13:16:e0:db:90:96:a4:c9:ed: 46:88:fb:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlYnuK56WwxaLlbYHKls9OaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUwOTE3MTcwMDMxWhcNMjUwOTE4MTcwMDMxWjAzMTEwLwYDVQQD EyhhYTI0NjNlYTBkMGZjNmQ4Yzk3Y2ZlY2Y4MGE2MzVlYjI5MGY3ZDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+ud2FV4LcnCoH3kg7W7TODS+W3F cRcZ82YytDMewubozynqV1j3Ug3Cmpuz4/sR/G5I3K6ONSBvDMusAk3BJb7wmEh0 +PVY5BZ/va/SERagTzq54JRSFlhcjmc2d4gQURogsMH78pgatklCxNbHf02hrPBW qwjjfL3EEEsaJzysCpE3dza822uNphowTLnPKmqMX3BRM55rBe3R3MdjeerTICzG J/55cemPf+Wk5PXUSZsv0Cq9Qt03rIbVUIsAzQEheY1cn8FzhrJ+ZJh8BZ7RHtLW qTSK75GDP5+Q4W7tY1FXqoGkLY8lBXsXwvthWvg6a5XDJLX2E0Ki8WqsnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKokY+oND8bYyXz+z4CmNespD31qMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ53hVs7d PLCVBBsVSbVF/RVXGMebvv0B/dK1MHvJ7vSK+mj+r2Ruitr2BlFqEh9Gstgqhk76 m9GGT3HrupT07HjNU3ejeOFQ/6l43+7+2FmKnRIxC/Lcp3cy4SY4WtvRXPPFFNnq qH5IkXTZPyhGtooxcbRdojmkgz4EaIRcitnG/l/QsT/CC8YieMqr39+Hs2aDOa7R dUhYTtP8b2TPZPzngs8p/YlU7Le4vjr29nMoToZIEGkNLQvluZKYLzoDRWEN1TaY nTMDevZ7oyo3wzTqfXMS770lcGarK17EqRIqDcTLWJkO0VJhbUpBMuYQGXK5Exbg 25CWpMntRoj77g== -----END CERTIFICATE-----Generated at Thu Sep 18 03:02:25 2025 by rpki-client