$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 6T/mSq7sEus6zpqq0LPItMSqxRdh/qwTJ+xWMxKMKis= Subject key identifier: 84:11:8A:F0:62:FF:39:01:80:DF:AC:EA:53:8B:30:6C:26:20:41:C6 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019EDE7800F01FE6445AF4067D6507D5E063 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13CE Signing time: Fri 19 Jun 2026 06:01:06 +0000 Manifest this update: Fri 19 Jun 2026 06:01:06 +0000 Manifest next update: Sat 20 Jun 2026 06:01:06 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: WuxBXv99RheCwuPwekd+1k1u6CeGEJM945pIenFubKA=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Jun 2026 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:de:78:00:f0:1f:e6:44:5a:f4:06:7d:65:07:d5:e0:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 19 06:01:06 2026 GMT Not After : Jun 20 06:01:06 2026 GMT Subject: CN=84118af062ff390180dfacea538b306c262041c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:56:b7:9e:51:62:49:3c:c3:ed:51:21:f7:29: 0a:fc:5a:3e:6d:cc:b6:2b:e2:08:7b:6d:d2:41:f3: 2f:7d:e2:27:9c:de:ee:f5:72:27:fc:32:7b:15:77: db:de:0d:75:2a:1e:8d:20:4c:81:b2:cf:79:15:3d: 93:6e:82:7d:3e:a4:5b:66:05:02:3a:94:09:13:cf: 49:cb:e8:53:e1:8b:2d:a2:95:d7:95:d4:cf:3d:57: 23:cf:f0:73:ea:e0:a7:c3:ed:21:22:00:a1:47:b8: 44:d5:22:33:fe:f0:15:c9:bd:59:c5:e3:84:39:14: 6d:63:aa:95:cd:55:17:90:89:77:d4:6b:7e:39:92: 94:53:b5:13:3a:34:3d:3b:f2:72:73:9b:d6:74:2a: 04:16:50:19:74:e8:bf:17:59:d1:ae:1c:d4:c8:3e: 36:03:fd:48:26:59:71:6c:92:84:3f:93:ca:58:47: 3a:10:22:8a:e9:a0:70:43:a8:b3:00:e1:6e:21:12: ab:a0:22:fb:6b:be:6c:08:87:46:84:f6:c3:ee:e7: d7:97:1f:f9:d7:fc:3c:93:31:16:d7:b3:1c:39:15: 84:8c:31:dc:d8:da:05:31:02:49:2d:8d:a2:35:59: c1:71:3b:c0:18:eb:b3:e5:8d:74:3c:78:95:3d:a7: d4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:11:8A:F0:62:FF:39:01:80:DF:AC:EA:53:8B:30:6C:26:20:41:C6 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:04:f3:f9:cb:69:e0:22:41:4f:e8:00:37:c9:f5:71:41:a7: f7:c7:54:9e:06:14:e4:3c:32:ae:ad:fd:3a:c5:14:64:39:0e: c4:fc:52:66:be:95:de:3b:12:33:ee:2d:11:ea:e0:be:ad:ce: ce:72:a8:8e:81:48:0d:69:ca:03:c9:c4:20:93:78:8c:c9:dd: 10:05:da:b1:a4:e9:fa:b8:90:68:f6:a7:e4:2d:9f:a6:b9:f0: 0f:ba:3a:81:7c:62:04:8b:86:d4:d0:1f:40:d9:63:8d:5d:4a: 55:e1:7f:4a:00:74:46:a1:cc:7e:d1:f3:ab:82:58:29:4a:a9: 38:04:44:84:52:91:8c:a7:e0:65:45:46:c9:b7:82:cb:18:7f: 1b:ba:1e:78:90:8e:a3:39:2f:f9:62:57:63:f3:2a:7a:8a:92: 8b:3f:75:98:f6:9e:b8:aa:01:5a:f4:6c:f3:a7:3f:20:e9:8c: 88:e9:b5:9d:80:ac:ff:40:97:87:a7:25:ce:3e:5e:7f:ff:1f: b7:4b:1e:bd:2a:66:35:5f:ce:3c:2f:56:80:d8:c5:80:48:e7: 46:87:f6:02:d4:83:19:54:fc:96:57:61:cf:1f:6c:e3:4e:7e: 9e:2c:41:1c:99:f0:7b:c1:19:0a:18:4c:58:25:73:4c:3c:dc: 43:38:8b:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7eeADwH+ZEWvQGfWUH1eBjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjE5MDYwMTA2WhcNMjYwNjIwMDYwMTA2WjAzMTEwLwYDVQQD Eyg4NDExOGFmMDYyZmYzOTAxODBkZmFjZWE1MzhiMzA2YzI2MjA0MWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1a3nlFiSTzD7VEh9ykK/Fo+bcy2 K+IIe23SQfMvfeInnN7u9XIn/DJ7FXfb3g11Kh6NIEyBss95FT2TboJ9PqRbZgUC OpQJE89Jy+hT4YstopXXldTPPVcjz/Bz6uCnw+0hIgChR7hE1SIz/vAVyb1ZxeOE ORRtY6qVzVUXkIl31Gt+OZKUU7UTOjQ9O/Jyc5vWdCoEFlAZdOi/F1nRrhzUyD42 A/1IJllxbJKEP5PKWEc6ECKK6aBwQ6izAOFuIRKroCL7a75sCIdGhPbD7ufXlx/5 1/w8kzEW17McORWEjDHc2NoFMQJJLY2iNVnBcTvAGOuz5Y10PHiVPafU2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQRivBi/zkBgN+s6lOLMGwmIEHGMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlgTz+ctp 4CJBT+gAN8n1cUGn98dUngYU5Dwyrq39OsUUZDkOxPxSZr6V3jsSM+4tEergvq3O znKojoFIDWnKA8nEIJN4jMndEAXasaTp+riQaPan5C2fprnwD7o6gXxiBIuG1NAf QNljjV1KVeF/SgB0RqHMftHzq4JYKUqpOAREhFKRjKfgZUVGybeCyxh/G7oeeJCO ozkv+WJXY/MqeoqSiz91mPaeuKoBWvRs86c/IOmMiOm1nYCs/0CXh6clzj5ef/8f t0sevSpmNV/OPC9WgNjFgEjnRof2AtSDGVT8lldhzx9s405+nixBHJnwe8EZChhM WCVzTDzcQziLMQ== -----END CERTIFICATE-----Generated at Fri Jun 19 08:17:45 2026 by rpki-client