$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: PwOkCaJoxma/6htVGm4j2MoH2XG2nSymsRMvy/WHU+s= Subject key identifier: 32:4D:37:87:52:0D:88:C7:EA:04:BB:A4:07:D6:DC:26:D0:6E:6E:E5 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019A38A3EF62CE7F0DA4D87E661C87B2F40A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1163 Signing time: Fri 31 Oct 2025 05:00:58 +0000 Manifest this update: Fri 31 Oct 2025 05:00:58 +0000 Manifest next update: Sat 01 Nov 2025 05:00:58 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: hpuT/MYHd095jJZTao9N8oGaxsjcnjAfuCzLbEh7DOk=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Nov 2025 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:38:a3:ef:62:ce:7f:0d:a4:d8:7e:66:1c:87:b2:f4:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Oct 31 05:00:58 2025 GMT Not After : Nov 1 05:00:58 2025 GMT Subject: CN=324d3787520d88c7ea04bba407d6dc26d06e6ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:08:bf:69:cf:d5:60:ab:1d:18:fc:7b:f3: a8:0d:f7:38:59:1a:88:2d:18:28:9f:b1:0f:f6:5d: c0:7f:34:d8:0d:0e:1d:91:d5:86:8a:77:4f:2a:72: 35:eb:49:23:0f:89:ad:31:f6:2c:85:a0:7f:dc:62: aa:4f:a7:ec:df:fe:77:f5:38:9e:8b:59:4e:70:02: a5:7e:ba:8e:be:42:1a:f2:5e:eb:57:dd:dc:13:b1: cf:da:d1:dd:25:26:bc:26:19:57:e2:a1:22:a1:99: 3a:f1:d0:95:fd:4a:83:22:75:d4:4c:4f:ad:37:d8: f7:98:3d:61:c4:5e:d5:06:b6:25:c8:1a:6b:8d:0e: 9a:6b:73:3b:3b:a3:45:68:36:f5:12:56:3a:e1:d5: d6:31:03:62:08:a9:9a:14:81:9f:fc:11:4a:05:76: 38:6f:7d:f1:31:99:80:ce:9c:d1:d4:6e:29:02:e0: a1:7d:42:82:83:29:a1:49:d4:05:6c:7f:a1:8b:77: 98:da:84:b5:a3:da:9d:4d:9e:f0:dd:37:7c:04:57: 96:c6:58:89:f5:43:0f:b8:d9:a9:dd:34:b2:71:a6: 50:a1:d8:17:6e:9a:9b:99:86:b1:de:43:25:67:61: 7b:7b:c8:02:04:7f:34:76:63:a2:0e:29:24:58:68: 63:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4D:37:87:52:0D:88:C7:EA:04:BB:A4:07:D6:DC:26:D0:6E:6E:E5 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:b3:8b:14:f6:78:8b:0e:f1:9a:7f:c8:5a:f6:4d:12:61:1f: e9:11:29:7b:db:a7:93:59:45:fb:36:60:11:b8:05:ff:b8:ec: 8b:bd:36:d5:c1:6b:9f:40:1e:a3:17:8c:0c:01:52:b5:c9:75: 6a:6b:46:b1:01:ba:08:64:a5:34:12:15:f9:f4:2b:df:3b:d4: ea:31:26:6f:37:22:a4:c0:c3:f8:72:f4:74:1f:eb:6d:60:5f: f4:e1:fd:90:24:ce:1f:a1:f3:de:00:4d:59:d4:53:a1:f8:1e: 4c:20:ee:24:c6:81:c8:36:6b:1f:85:81:f5:f3:27:16:57:5f: 89:a8:ce:85:a2:44:46:2f:58:7b:5a:96:dc:47:cf:94:e5:c8: 98:82:b0:98:1e:78:15:4d:dc:0a:25:84:c8:dd:3b:85:05:6d: fd:b5:ba:11:30:bc:d7:bf:9b:ad:d6:17:40:69:0c:b1:34:62: 2c:b5:1c:54:85:47:c7:af:0f:5a:5b:f6:c9:60:2c:ec:69:7d: 1f:2a:38:8a:34:7d:7c:07:43:ca:59:bf:ce:56:02:bd:0f:78: a6:42:65:21:9f:76:14:58:e7:4b:4f:08:8b:86:c3:0c:5b:53: 10:a6:cf:f4:71:0c:35:c6:77:19:80:1e:e5:f6:a4:c3:de:9c: 02:23:70:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZo4o+9izn8NpNh+ZhyHsvQKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMDMxMDUwMDU4WhcNMjUxMTAxMDUwMDU4WjAzMTEwLwYDVQQD EygzMjRkMzc4NzUyMGQ4OGM3ZWEwNGJiYTQwN2Q2ZGMyNmQwNmU2ZWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvc8Iv2nP1WCrHRj8e/OoDfc4WRqI LRgon7EP9l3AfzTYDQ4dkdWGindPKnI160kjD4mtMfYshaB/3GKqT6fs3/539Tie i1lOcAKlfrqOvkIa8l7rV93cE7HP2tHdJSa8JhlX4qEioZk68dCV/UqDInXUTE+t N9j3mD1hxF7VBrYlyBprjQ6aa3M7O6NFaDb1ElY64dXWMQNiCKmaFIGf/BFKBXY4 b33xMZmAzpzR1G4pAuChfUKCgymhSdQFbH+hi3eY2oS1o9qdTZ7w3Td8BFeWxliJ 9UMPuNmp3TSycaZQodgXbpqbmYax3kMlZ2F7e8gCBH80dmOiDikkWGhjgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDJNN4dSDYjH6gS7pAfW3CbQbm7lMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQLOLFPZ4 iw7xmn/IWvZNEmEf6REpe9unk1lF+zZgEbgF/7jsi7021cFrn0AeoxeMDAFStcl1 amtGsQG6CGSlNBIV+fQr3zvU6jEmbzcipMDD+HL0dB/rbWBf9OH9kCTOH6Hz3gBN WdRTofgeTCDuJMaByDZrH4WB9fMnFldfiajOhaJERi9Ye1qW3EfPlOXImIKwmB54 FU3cCiWEyN07hQVt/bW6ETC817+brdYXQGkMsTRiLLUcVIVHx68PWlv2yWAs7Gl9 Hyo4ijR9fAdDylm/zlYCvQ94pkJlIZ92FFjnS08Ii4bDDFtTEKbP9HEMNcZ3GYAe 5fakw96cAiNwlg== -----END CERTIFICATE-----Generated at Fri Oct 31 11:55:12 2025 by rpki-client