$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 5Gkq6sLgLyGtW2nJJvwWQD1zcangUlizh0Q4L1HqHgE= Subject key identifier: 80:F5:3A:24:52:A6:83:A5:31:22:7D:2D:21:D7:6E:2D:2E:0A:62:0C Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E762F42E3F51137ED3A2836965B853A57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1398 Signing time: Sat 30 May 2026 00:01:09 +0000 Manifest this update: Sat 30 May 2026 00:01:09 +0000 Manifest next update: Sun 31 May 2026 00:01:09 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: kM6ZOaL6ZWWFq1xuTUdpju21bBQDIMS0nEojD5ZFC18=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 30 May 2026 16:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:76:2f:42:e3:f5:11:37:ed:3a:28:36:96:5b:85:3a:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 30 00:01:09 2026 GMT Not After : May 31 00:01:09 2026 GMT Subject: CN=80f53a2452a683a531227d2d21d76e2d2e0a620c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dd:e1:01:08:07:ee:33:6f:83:32:4d:ab:fa: f3:22:c7:39:5a:4d:94:27:c1:91:17:12:f9:11:bf: 61:eb:f5:32:25:e4:88:0c:a8:3a:56:07:e3:f3:3b: 89:4d:39:1b:bf:e5:a8:e5:e1:c0:81:4b:d8:5f:ba: 0e:e7:e4:33:a6:74:62:58:26:1d:56:0c:01:17:bc: 64:88:11:77:89:ac:8d:66:36:58:ef:61:17:ec:66: 29:3c:f0:81:16:7d:df:29:6a:63:85:38:da:c8:af: 3a:f5:2a:76:a7:17:54:e3:62:4d:5e:3a:b2:2c:63: 07:7f:79:c3:2e:d5:7f:65:de:f2:18:8f:4f:c9:61: c7:c0:ad:7a:0d:4f:3d:f2:c3:fc:87:42:48:39:7e: c7:17:10:f5:e5:d1:5a:bd:62:c8:ea:f5:7c:b1:ae: 15:f9:7f:ed:6f:7a:c9:c0:76:8b:e0:e7:43:c7:f4: 21:b0:19:57:a3:02:1b:05:43:4c:37:4b:83:56:cf: af:61:9b:29:0f:d7:78:bf:93:06:85:72:77:b0:17: ff:2f:4e:e9:ee:30:82:ea:7b:5e:ab:d1:6b:ca:ee: 6a:28:55:93:13:3d:99:a7:5b:2b:0d:90:0c:08:92: 06:44:46:64:3b:12:26:07:84:7f:11:0d:d2:cd:e9: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F5:3A:24:52:A6:83:A5:31:22:7D:2D:21:D7:6E:2D:2E:0A:62:0C X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:bd:cb:c9:45:f7:f1:c0:a4:bc:47:aa:fb:0b:5e:37:51:a0: 7f:9d:3a:0c:a9:88:c6:e8:ce:66:f2:c6:9a:4b:2e:93:b7:3c: ce:ae:b7:88:f8:32:06:f9:f2:89:65:9d:a7:bb:37:f3:f1:93: 03:e0:55:78:f2:67:c8:56:0a:ff:58:66:91:53:e5:a1:ca:29: 59:0c:e1:e1:25:6e:b2:a1:69:c8:03:1f:fa:c1:66:51:26:f0: 22:65:ef:e6:c3:aa:da:83:41:b5:98:b5:50:02:41:0a:bf:5b: cf:67:40:3e:3d:f3:f4:46:ff:fa:54:60:60:a8:f1:a1:a2:6c: d2:e7:cb:e9:64:7e:d6:cf:aa:19:f7:66:d5:a4:8a:d3:32:f7: 64:bb:d5:1a:23:35:29:a5:d8:b9:5b:33:fa:9e:76:53:b1:92: cb:25:4b:bd:a6:d5:4c:58:06:51:7f:4a:8e:df:16:32:6d:10: e1:a5:f9:47:93:ed:f3:29:0b:a3:4c:31:19:d2:5b:bd:33:fe: 37:2b:9e:f2:52:11:71:87:3e:c5:0d:c4:44:ad:d3:2e:8e:1a: 08:82:01:80:75:67:1b:8c:33:f0:b6:91:8a:35:a4:ae:89:57: 61:0f:24:5e:2c:44:75:60:6a:a5:00:07:16:e1:52:7c:fe:da: 83:c5:9b:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ52L0Lj9RE37TooNpZbhTpXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTMwMDAwMTA5WhcNMjYwNTMxMDAwMTA5WjAzMTEwLwYDVQQD Eyg4MGY1M2EyNDUyYTY4M2E1MzEyMjdkMmQyMWQ3NmUyZDJlMGE2MjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyN3hAQgH7jNvgzJNq/rzIsc5Wk2U J8GRFxL5Eb9h6/UyJeSIDKg6Vgfj8zuJTTkbv+Wo5eHAgUvYX7oO5+QzpnRiWCYd VgwBF7xkiBF3iayNZjZY72EX7GYpPPCBFn3fKWpjhTjayK869Sp2pxdU42JNXjqy LGMHf3nDLtV/Zd7yGI9PyWHHwK16DU898sP8h0JIOX7HFxD15dFavWLI6vV8sa4V +X/tb3rJwHaL4OdDx/QhsBlXowIbBUNMN0uDVs+vYZspD9d4v5MGhXJ3sBf/L07p 7jCC6nteq9Fryu5qKFWTEz2Zp1srDZAMCJIGREZkOxImB4R/EQ3SzeluWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFID1OiRSpoOlMSJ9LSHXbi0uCmIMMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdL3LyUX3 8cCkvEeq+wteN1Ggf506DKmIxujOZvLGmksuk7c8zq63iPgyBvnyiWWdp7s38/GT A+BVePJnyFYK/1hmkVPlocopWQzh4SVusqFpyAMf+sFmUSbwImXv5sOq2oNBtZi1 UAJBCr9bz2dAPj3z9Eb/+lRgYKjxoaJs0ufL6WR+1s+qGfdm1aSK0zL3ZLvVGiM1 KaXYuVsz+p52U7GSyyVLvabVTFgGUX9Kjt8WMm0Q4aX5R5Pt8ykLo0wxGdJbvTP+ Nyue8lIRcYc+xQ3ERK3TLo4aCIIBgHVnG4wz8LaRijWkrolXYQ8kXixEdWBqpQAH FuFSfP7ag8WbQA== -----END CERTIFICATE-----Generated at Sat May 30 02:24:19 2026 by rpki-client