$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: M8S/EiDjXLA1ed6VVG28xerd1BPGP4/B6mc4hctzYaY= Subject key identifier: 6A:02:1A:39:A8:A8:D8:A3:3A:D6:5A:15:AF:04:CE:27:27:03:24:FD Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D725612582C5AF935CB79F108F812B6B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1310 Signing time: Thu 09 Apr 2026 13:02:16 +0000 Manifest this update: Thu 09 Apr 2026 13:02:16 +0000 Manifest next update: Fri 10 Apr 2026 13:02:16 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: GrGq2Y0owTuOW8I8XfNO0Iloq2WwbG9VhK/CMqPahIw=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 10 Apr 2026 13:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:72:56:12:58:2c:5a:f9:35:cb:79:f1:08:f8:12:b6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 9 13:02:16 2026 GMT Not After : Apr 10 13:02:16 2026 GMT Subject: CN=6a021a39a8a8d8a33ad65a15af04ce27270324fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2b:a6:46:c8:51:46:bf:b8:61:10:dd:1d:19: a0:60:dd:8d:e8:79:34:a1:84:71:13:53:c5:e7:74: da:53:01:18:ab:25:6c:50:ed:b3:45:d5:c0:2a:a3: 5c:a3:0e:e7:e9:ff:3e:ed:1c:f5:1c:e3:6b:6b:1e: 5f:9a:0c:24:85:a3:e1:f6:dd:07:da:6b:40:31:13: da:d8:5b:33:3d:a3:e4:b5:ea:78:60:76:d8:87:89: 4f:c4:80:58:14:76:a7:8a:93:dd:f6:74:4b:a8:6f: 32:86:36:6c:ca:9c:93:34:04:3f:32:49:9f:64:76: e0:d3:d7:85:5e:0b:8a:d3:2a:e2:7a:dd:0b:ee:44: cc:32:84:14:1c:fa:b9:90:97:2d:c5:ce:9b:e3:d4: f7:7f:78:25:f4:87:d7:01:79:31:83:2e:c4:49:85: a0:fb:bb:f6:33:a2:52:98:ea:c0:4d:e3:d3:52:99: 0b:36:87:ab:b6:61:de:bf:25:08:39:3f:15:9d:5e: d3:68:8e:18:1b:d9:90:ff:9c:04:9d:f3:4e:c0:ac: 82:34:89:92:e4:07:d3:a1:35:95:80:70:bc:42:4d: b1:77:07:58:f8:99:d1:40:32:be:17:6e:c4:be:b4: eb:09:17:7d:29:27:f9:ca:ca:81:15:d1:e8:5a:b7: 6f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:02:1A:39:A8:A8:D8:A3:3A:D6:5A:15:AF:04:CE:27:27:03:24:FD X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:29:cd:6a:71:ec:77:e0:72:7a:64:c8:79:6b:f6:46:e0:be: 5f:cd:45:eb:d7:f0:d0:e9:95:f5:4b:6d:96:2d:15:10:b3:21: 37:e4:99:a5:67:4d:d3:34:33:d1:06:b4:a2:ee:f2:2d:c0:48: b7:ea:48:95:ce:c8:9e:98:a7:ec:47:9d:55:f0:01:6c:1c:cd: 85:f7:96:a9:e1:da:7c:6f:48:04:88:1e:f4:0d:2d:73:d7:11: d2:29:18:45:ff:1e:2d:9e:55:76:09:6f:0e:bc:9b:cd:e5:e8: 3a:c5:55:41:58:40:66:d7:29:4a:12:0c:a2:c8:4f:ed:8d:34: 07:51:fc:98:38:e9:94:5b:6a:b0:3a:eb:49:55:35:16:11:12: 7b:f0:d4:56:ce:74:93:d0:8a:54:74:c5:7b:bc:f0:80:5f:2f: 5c:78:e9:ef:b8:9e:7e:84:80:85:02:16:4b:32:83:bd:d3:af: 15:f3:ae:ac:18:44:b2:2e:7b:a5:c9:bb:a0:54:d5:7b:a3:64: 59:99:f0:17:99:ef:b9:7d:e7:0f:46:0f:02:ae:3a:db:78:4f: 6a:43:bd:c0:34:7c:5f:55:77:33:46:0b:82:e9:80:9f:40:f0: 82:c3:08:7d:c6:21:a2:fd:2d:01:24:78:db:41:ab:fc:92:ae: 9b:8d:15:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ1yVhJYLFr5Nct58Qj4Era1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDA5MTMwMjE2WhcNMjYwNDEwMTMwMjE2WjAzMTEwLwYDVQQD Eyg2YTAyMWEzOWE4YThkOGEzM2FkNjVhMTVhZjA0Y2UyNzI3MDMyNGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSumRshRRr+4YRDdHRmgYN2N6Hk0 oYRxE1PF53TaUwEYqyVsUO2zRdXAKqNcow7n6f8+7Rz1HONrax5fmgwkhaPh9t0H 2mtAMRPa2FszPaPktep4YHbYh4lPxIBYFHanipPd9nRLqG8yhjZsypyTNAQ/Mkmf ZHbg09eFXguK0yriet0L7kTMMoQUHPq5kJctxc6b49T3f3gl9IfXAXkxgy7ESYWg +7v2M6JSmOrATePTUpkLNoertmHevyUIOT8VnV7TaI4YG9mQ/5wEnfNOwKyCNImS 5AfToTWVgHC8Qk2xdwdY+JnRQDK+F27EvrTrCRd9KSf5ysqBFdHoWrdvJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGoCGjmoqNijOtZaFa8EzicnAyT9MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfinNanHs d+ByemTIeWv2RuC+X81F69fw0OmV9Uttli0VELMhN+SZpWdN0zQz0Qa0ou7yLcBI t+pIlc7Inpin7EedVfABbBzNhfeWqeHafG9IBIge9A0tc9cR0ikYRf8eLZ5Vdglv DrybzeXoOsVVQVhAZtcpShIMoshP7Y00B1H8mDjplFtqsDrrSVU1FhESe/DUVs50 k9CKVHTFe7zwgF8vXHjp77iefoSAhQIWSzKDvdOvFfOurBhEsi57pcm7oFTVe6Nk WZnwF5nvuX3nD0YPAq4623hPakO9wDR8X1V3M0YLgumAn0DwgsMIfcYhov0tASR4 20Gr/JKum40V8Q== -----END CERTIFICATE-----Generated at Thu Apr 9 21:38:31 2026 by rpki-client