$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: gESn/Byyi64y/xXIqSBn5CbqdHZwaV0skRtZ+DTtD8k= Subject key identifier: 6C:37:DF:66:AE:87:D7:40:C2:DC:07:48:51:5C:52:02:3C:99:14:8D Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 0198C9B8993AF1E249A832DE39894B94CA85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 10A5 Signing time: Wed 20 Aug 2025 23:02:54 +0000 Manifest this update: Wed 20 Aug 2025 23:02:54 +0000 Manifest next update: Thu 21 Aug 2025 23:02:54 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: vjmhxgJuoMceq6vGCU0TEzks0FYIpP5uUnKVPrPl37Q=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Aug 2025 23:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:c9:b8:99:3a:f1:e2:49:a8:32:de:39:89:4b:94:ca:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Aug 20 23:02:54 2025 GMT Not After : Aug 21 23:02:54 2025 GMT Subject: CN=6c37df66ae87d740c2dc0748515c52023c99148d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ec:46:36:be:00:63:d7:b1:4d:54:3b:d2:71: 50:7c:19:2a:6a:bb:0f:b1:22:e6:d5:df:86:85:b2: 83:e8:2e:12:f1:c4:3f:1b:d4:a0:65:07:37:99:1b: d6:bf:30:31:7c:76:20:6d:21:1f:d5:44:47:ce:26: 67:82:5b:3c:d8:2f:cf:18:b9:ff:1d:1c:43:f6:87: 04:63:34:78:2d:2b:8a:b1:55:37:98:a0:01:ac:58: 5f:9a:0a:81:80:24:a6:ab:9d:89:7f:e7:97:41:95: 52:d9:84:a6:09:1b:24:9c:23:87:b6:5f:71:27:a0: 64:41:51:ae:da:7c:8a:2c:06:27:ce:4b:0c:cb:9e: c4:82:aa:32:65:f7:f7:e9:9d:bf:5c:30:8f:9b:40: b6:11:78:e2:45:4f:8d:40:cd:af:4e:23:4c:68:61: 88:24:8d:8b:f5:36:c2:95:ee:fd:e5:eb:7a:94:e2: cd:0f:10:d8:82:eb:82:bf:b2:fa:95:6f:2c:99:f8: 2a:2b:af:53:58:67:d8:a4:cc:cd:3c:4a:3f:4d:4d: ac:7f:9c:47:95:6d:5b:e3:f3:40:7e:ff:09:79:3a: d8:8d:f7:62:4a:13:bb:d6:59:d6:5a:99:7c:81:54: 2b:cd:3d:ca:d7:d0:e9:c2:77:9a:f7:53:62:c8:03: a8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:37:DF:66:AE:87:D7:40:C2:DC:07:48:51:5C:52:02:3C:99:14:8D X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:eb:01:7c:b2:1f:d2:0b:f2:80:94:ec:38:93:8f:ba:65:0f: c9:ea:4f:3f:fb:2f:6a:66:68:dd:6f:ed:73:bb:8f:3a:87:f9: 66:e7:21:c2:fc:96:4d:d4:8e:01:c1:81:7e:c9:6c:b1:58:76: f5:39:e2:d5:74:d6:0f:fa:84:31:5f:8c:43:cb:85:b7:30:4b: af:b8:0c:60:b0:16:ba:10:9d:2c:af:23:50:28:1c:a2:71:30: 4d:4f:bb:46:1a:fb:8f:5c:eb:12:3b:88:cd:e5:79:2e:ef:70: 9a:05:e5:e0:3e:e7:56:1f:7b:6f:e6:e7:79:3f:21:88:ef:df: be:7b:bf:82:c2:c5:51:6a:54:7d:3b:c5:df:46:9b:f0:80:2a: 4e:ef:33:9a:66:e2:5e:ee:68:0f:9e:b6:e5:cc:a1:7e:a4:fb: 1f:ae:e5:15:79:2f:aa:e9:54:fb:1c:77:10:a6:5a:2d:e3:13: 79:f6:d7:4d:df:5a:bd:2d:f7:1f:92:39:c8:01:18:16:b6:9d: 6f:99:c1:77:b3:c0:ae:b4:70:dc:d0:73:40:ca:41:88:af:33: 4d:3a:24:bf:97:e6:45:fe:68:69:dd:60:58:e8:2e:10:4d:81: c4:0d:1a:62:5a:38:bd:ff:19:ee:e4:b1:73:a5:3c:7a:75:f5: 9d:ac:b6:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjJuJk68eJJqDLeOYlLlMqFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUwODIwMjMwMjU0WhcNMjUwODIxMjMwMjU0WjAzMTEwLwYDVQQD Eyg2YzM3ZGY2NmFlODdkNzQwYzJkYzA3NDg1MTVjNTIwMjNjOTkxNDhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+xGNr4AY9exTVQ70nFQfBkqarsP sSLm1d+GhbKD6C4S8cQ/G9SgZQc3mRvWvzAxfHYgbSEf1URHziZngls82C/PGLn/ HRxD9ocEYzR4LSuKsVU3mKABrFhfmgqBgCSmq52Jf+eXQZVS2YSmCRsknCOHtl9x J6BkQVGu2nyKLAYnzksMy57EgqoyZff36Z2/XDCPm0C2EXjiRU+NQM2vTiNMaGGI JI2L9TbCle795et6lOLNDxDYguuCv7L6lW8smfgqK69TWGfYpMzNPEo/TU2sf5xH lW1b4/NAfv8JeTrYjfdiShO71lnWWpl8gVQrzT3K19Dpwnea91NiyAOo6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGw332auh9dAwtwHSFFcUgI8mRSNMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKOsBfLIf 0gvygJTsOJOPumUPyepPP/svamZo3W/tc7uPOof5ZuchwvyWTdSOAcGBfslssVh2 9Tni1XTWD/qEMV+MQ8uFtzBLr7gMYLAWuhCdLK8jUCgconEwTU+7Rhr7j1zrEjuI zeV5Lu9wmgXl4D7nVh97b+bneT8hiO/fvnu/gsLFUWpUfTvF30ab8IAqTu8zmmbi Xu5oD5625cyhfqT7H67lFXkvqulU+xx3EKZaLeMTefbXTd9avS33H5I5yAEYFrad b5nBd7PArrRw3NBzQMpBiK8zTTokv5fmRf5oad1gWOguEE2BxA0aYlo4vf8Z7uSx c6U8enX1nay2cw== -----END CERTIFICATE-----Generated at Thu Aug 21 03:49:08 2025 by rpki-client