$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: xzYcvUmLPWzeibV4/jKaPoo2g4+xInnf14WQ//iQP9k= Subject key identifier: 8C:C8:9C:A6:D0:1E:5E:59:07:5B:0A:C4:56:C6:D2:A6:E4:AE:E9:5A Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D7DED096C3B9C06E5D936B6A5DE2B5281 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1316 Signing time: Sat 11 Apr 2026 19:02:59 +0000 Manifest this update: Sat 11 Apr 2026 19:02:59 +0000 Manifest next update: Sun 12 Apr 2026 19:02:59 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: z0RWg0bSkGp8gyqEL6s45/qhQ+t1/Wm+0V/uD1JRxFw=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 12 Apr 2026 19:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:7d:ed:09:6c:3b:9c:06:e5:d9:36:b6:a5:de:2b:52:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 11 19:02:59 2026 GMT Not After : Apr 12 19:02:59 2026 GMT Subject: CN=8cc89ca6d01e5e59075b0ac456c6d2a6e4aee95a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:59:09:ad:42:4b:6f:6c:ad:4d:b4:a4:d2:dc: 33:57:3b:67:30:03:45:4b:00:bc:29:20:2b:e1:5b: fe:d6:31:ca:b5:91:69:34:5c:26:46:61:d0:88:99: b6:20:55:2a:89:5d:4d:6f:56:a6:e4:25:d7:00:23: 64:91:6c:9b:ca:e7:f3:c3:53:23:cd:b6:55:e5:a1: a3:47:1e:db:80:13:37:e9:2f:8b:96:41:67:56:7c: 7e:bc:c1:ef:86:65:3d:fe:06:0a:c4:c9:b6:16:bf: 37:8f:f4:f1:2d:be:a4:8d:d4:7d:1a:58:3f:41:7c: 04:36:08:58:41:24:5b:5e:a3:27:e0:9d:f7:82:3d: cd:b8:c6:82:dc:d8:25:09:e9:88:1a:d0:c5:d4:7a: 40:85:32:79:5b:a0:86:6f:ad:a2:65:59:09:a1:f6: ad:fa:4e:d4:75:34:1b:83:2d:58:cc:0c:ad:d0:8a: aa:b1:e7:82:b5:d2:fa:87:7a:41:19:48:08:97:ca: b2:c7:1e:b7:e8:52:ba:57:49:63:54:8f:24:07:d9: 3c:7e:e0:c4:05:a2:be:f1:6a:3e:08:91:aa:b9:d9: 50:b8:d2:a1:51:92:ad:be:cd:36:eb:ed:f8:17:f9: c7:db:84:45:94:84:4c:38:e7:12:39:2d:71:34:79: 5a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C8:9C:A6:D0:1E:5E:59:07:5B:0A:C4:56:C6:D2:A6:E4:AE:E9:5A X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:96:92:d5:ab:bb:cd:e6:03:65:34:10:bc:8f:e5:be:d0:b9: 31:82:72:62:95:21:78:4e:78:87:ce:e9:ef:cf:62:c1:d4:6d: 4d:d5:e4:aa:8b:77:fc:b0:78:02:13:dc:bd:0f:83:97:ea:af: 7e:06:09:9e:95:1a:87:2f:d2:c0:dc:34:a9:60:1b:11:dc:5b: 87:b3:07:fb:e1:e0:8e:de:e7:4c:1a:4e:24:c1:7d:5b:18:f9: 05:64:cd:9a:79:6c:93:05:5b:5a:4e:f5:6b:14:b4:01:67:44: a2:20:c1:a7:f1:24:aa:08:dc:cc:ba:e4:00:ba:12:69:90:ea: e9:c2:c3:b1:f2:cb:19:bf:41:1c:a5:49:a3:39:8a:db:2b:47: 66:c9:a5:9d:89:b2:6a:2a:9c:37:7e:d9:55:ca:bb:ca:66:fc: 58:c4:e4:64:45:b5:4e:e5:fc:b1:f3:19:80:4e:58:93:85:f3: ef:d5:3e:23:07:17:f7:52:bb:ec:bb:a6:be:d5:1e:ad:19:09: 9a:30:28:ba:37:95:90:54:30:fe:30:c5:b3:64:d2:a2:b1:11: 4b:0a:d4:af:e0:10:07:78:db:ac:05:f4:28:f2:7e:26:1e:00: 12:c8:26:c0:3a:f9:3e:23:5a:d4:95:70:27:a8:50:06:86:f2: 17:98:5b:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ197QlsO5wG5dk2tqXeK1KBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDExMTkwMjU5WhcNMjYwNDEyMTkwMjU5WjAzMTEwLwYDVQQD Eyg4Y2M4OWNhNmQwMWU1ZTU5MDc1YjBhYzQ1NmM2ZDJhNmU0YWVlOTVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVkJrUJLb2ytTbSk0twzVztnMANF SwC8KSAr4Vv+1jHKtZFpNFwmRmHQiJm2IFUqiV1Nb1am5CXXACNkkWybyufzw1Mj zbZV5aGjRx7bgBM36S+LlkFnVnx+vMHvhmU9/gYKxMm2Fr83j/TxLb6kjdR9Glg/ QXwENghYQSRbXqMn4J33gj3NuMaC3NglCemIGtDF1HpAhTJ5W6CGb62iZVkJofat +k7UdTQbgy1YzAyt0IqqseeCtdL6h3pBGUgIl8qyxx636FK6V0ljVI8kB9k8fuDE BaK+8Wo+CJGqudlQuNKhUZKtvs026+34F/nH24RFlIRMOOcSOS1xNHlaaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzInKbQHl5ZB1sKxFbG0qbkrulaMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEJaS1au7 zeYDZTQQvI/lvtC5MYJyYpUheE54h87p789iwdRtTdXkqot3/LB4AhPcvQ+Dl+qv fgYJnpUahy/SwNw0qWAbEdxbh7MH++Hgjt7nTBpOJMF9Wxj5BWTNmnlskwVbWk71 axS0AWdEoiDBp/EkqgjczLrkALoSaZDq6cLDsfLLGb9BHKVJozmK2ytHZsmlnYmy aiqcN37ZVcq7ymb8WMTkZEW1TuX8sfMZgE5Yk4Xz79U+IwcX91K77LumvtUerRkJ mjAoujeVkFQw/jDFs2TSorERSwrUr+AQB3jbrAX0KPJ+Jh4AEsgmwDr5PiNa1JVw J6hQBobyF5hb7g== -----END CERTIFICATE-----Generated at Sun Apr 12 05:52:43 2026 by rpki-client