
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: aXzqXCNPjvfRA2AJFXmtMVcRNe9QquMjkdUG+8Lc0cc=
Subject key identifier: EF:75:64:7C:11:DF:D9:E0:90:28:E2:D1:AB:2D:26:75:74:2E:EA:25
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019F40F5FF1CB6D35BAAE48734E476E730E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 1402
Signing time: Wed 08 Jul 2026 09:01:31 +0000
Manifest this update: Wed 08 Jul 2026 09:01:31 +0000
Manifest next update: Thu 09 Jul 2026 09:01:31 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: Z4J767zwvLF4bUGylZ/UFOjN7IEUHK+QD9usU9hXZJo=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 08:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:40:f5:ff:1c:b6:d3:5b:aa:e4:87:34:e4:76:e7:30:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jul 8 09:01:31 2026 GMT
Not After : Jul 9 09:01:31 2026 GMT
Subject: CN=ef75647c11dfd9e09028e2d1ab2d2675742eea25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:88:90:a5:eb:71:54:1c:1c:d4:bf:d1:15:5a:
d3:65:55:f2:d2:52:2e:39:fb:40:8e:b8:eb:73:cf:
e5:b1:07:75:d5:02:6a:00:f5:fe:5e:d0:e9:91:42:
a7:46:e5:5a:ab:91:10:6d:60:26:a7:64:95:66:e7:
57:0a:c8:49:3f:09:39:50:57:4c:75:34:f8:f1:f0:
ba:39:f4:f3:16:ae:24:68:43:6e:b3:7e:49:c7:2f:
91:9d:2c:53:4a:c6:87:28:a0:54:ea:11:37:c6:66:
07:48:cc:da:bc:d7:ac:fc:ca:7b:ca:a6:c5:bb:de:
0f:96:1a:b9:e9:eb:00:45:09:5e:63:ce:23:0e:34:
89:2a:ed:3a:ee:b9:76:04:5a:73:4e:05:30:80:61:
e3:68:9c:d4:65:78:68:5b:40:14:95:e5:00:29:20:
c6:fd:29:d3:76:65:37:01:bf:2b:ba:0e:85:a1:9b:
bd:55:f3:3d:fa:89:ad:c8:cb:d4:5b:5c:9a:0b:04:
2d:ce:bf:e1:45:f4:67:76:cc:1b:87:28:2e:63:64:
17:0d:dd:86:3f:1b:67:17:89:71:78:b4:9b:25:f1:
0e:4d:c7:f1:b9:44:d6:4a:03:69:03:e6:3b:c5:e2:
64:72:f7:17:47:4c:9a:c9:c5:c9:8a:c2:8b:25:03:
f0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:75:64:7C:11:DF:D9:E0:90:28:E2:D1:AB:2D:26:75:74:2E:EA:25
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:f5:fd:f8:b5:68:44:db:5f:2e:f4:f5:15:6c:4a:3e:5e:96:
56:63:be:f0:5e:88:7d:a4:d3:8b:08:73:aa:c5:bb:07:53:4b:
ca:50:a0:ad:22:e8:fc:49:28:11:a6:c5:1b:6f:6c:42:b2:8d:
0b:9e:b2:68:3e:8e:84:39:2c:a0:2a:81:2c:7c:2f:d5:cb:07:
fc:62:28:28:de:32:ed:47:bb:ad:91:4e:68:97:bd:d1:a1:74:
2f:b2:9d:16:cb:29:d0:0c:ee:7d:78:05:49:f7:93:ef:23:a5:
b7:79:36:a8:a6:73:5a:3a:ed:ea:5e:42:6d:0c:8a:8a:12:4d:
c1:ba:7c:e9:95:82:7f:eb:34:62:24:8c:1c:90:f7:8d:23:7a:
66:eb:62:e4:59:c1:fe:d3:a9:b7:5a:f3:92:55:a8:50:f1:ec:
43:f7:47:14:ec:c3:08:49:fc:07:8b:01:7c:c4:31:64:42:50:
69:74:54:6c:48:64:69:95:f0:d4:3a:3d:7c:4d:76:70:23:67:
19:5a:d3:6a:f9:6c:47:c6:c7:e7:28:93:ea:c1:23:2e:42:2b:
50:6f:1d:c0:fb:36:4c:da:9a:f5:eb:c0:c6:d2:10:87:9e:03:
ed:d0:8f:97:21:0b:c5:1f:6d:2c:e5:6e:47:65:8a:b4:f4:5c:
5d:05:cd:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ9A9f8cttNbquSHNOR25zDhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx
MTliZDcwHhcNMjYwNzA4MDkwMTMxWhcNMjYwNzA5MDkwMTMxWjAzMTEwLwYDVQQD
EyhlZjc1NjQ3YzExZGZkOWUwOTAyOGUyZDFhYjJkMjY3NTc0MmVlYTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYiQpetxVBwc1L/RFVrTZVXy0lIu
OftAjrjrc8/lsQd11QJqAPX+XtDpkUKnRuVaq5EQbWAmp2SVZudXCshJPwk5UFdM
dTT48fC6OfTzFq4kaENus35Jxy+RnSxTSsaHKKBU6hE3xmYHSMzavNes/Mp7yqbF
u94Plhq56esARQleY84jDjSJKu067rl2BFpzTgUwgGHjaJzUZXhoW0AUleUAKSDG
/SnTdmU3Ab8rug6FoZu9VfM9+omtyMvUW1yaCwQtzr/hRfRndswbhyguY2QXDd2G
PxtnF4lxeLSbJfEOTcfxuUTWSgNpA+Y7xeJkcvcXR0yaycXJisKLJQPw/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO91ZHwR39ngkCji0astJnV0LuolMB8GA1UdIwQY
MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt
YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3
LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATfX9+LVo
RNtfLvT1FWxKPl6WVmO+8F6IfaTTiwhzqsW7B1NLylCgrSLo/EkoEabFG29sQrKN
C56yaD6OhDksoCqBLHwv1csH/GIoKN4y7Ue7rZFOaJe90aF0L7KdFssp0AzufXgF
SfeT7yOlt3k2qKZzWjrt6l5CbQyKihJNwbp86ZWCf+s0YiSMHJD3jSN6Zuti5FnB
/tOpt1rzklWoUPHsQ/dHFOzDCEn8B4sBfMQxZEJQaXRUbEhkaZXw1Do9fE12cCNn
GVrTavlsR8bH5yiT6sEjLkIrUG8dwPs2TNqa9evAxtIQh54D7dCPlyELxR9tLOVu
R2WKtPRcXQXNkQ==
-----END CERTIFICATE-----
Generated at Wed Jul 8 12:51:52 2026 by rpki-client