$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 8Se8DNgYD+Sn3gGPE8cCa+HKBOKh864WBwKao6pOCuY= Subject key identifier: 5D:34:38:7F:AA:69:76:6E:F5:F2:55:9E:F7:04:E1:A9:43:B7:57:FC Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019EB3FB0EE5FFFB648B1D160FAABD5D5416 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13B8 Signing time: Thu 11 Jun 2026 00:00:35 +0000 Manifest this update: Thu 11 Jun 2026 00:00:35 +0000 Manifest next update: Fri 12 Jun 2026 00:00:35 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: ifV4lQEOk2VhHUcLh9aY+8W6h5/9TouGEU994pQKc4g=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Jun 2026 23:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:b3:fb:0e:e5:ff:fb:64:8b:1d:16:0f:aa:bd:5d:54:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 11 00:00:35 2026 GMT Not After : Jun 12 00:00:35 2026 GMT Subject: CN=5d34387faa69766ef5f2559ef704e1a943b757fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e7:a3:45:5a:e1:24:d2:8f:86:4b:32:ad:31: 88:2d:f7:f8:0c:4c:fb:34:83:ec:e0:a2:04:30:4e: bd:5a:ee:23:38:1b:91:11:45:69:a3:14:ed:06:6f: 48:82:e4:82:30:0d:10:72:ea:ce:33:7a:43:7e:85: d6:70:73:7d:c0:76:e5:6a:eb:02:78:5e:9a:99:27: a6:81:15:36:6a:cf:1e:60:68:a5:2d:60:a1:ee:d6: cf:5c:d2:ae:70:ad:3c:04:ca:4e:94:d1:65:a5:07: 9e:5d:c1:e1:9f:f0:2d:03:a1:75:5c:a4:03:26:5b: d9:12:c5:83:3a:fe:c5:77:2f:a1:4a:ed:44:40:a6: 85:a2:56:c3:2b:01:a5:d0:e1:78:d7:f9:87:71:51: 0d:82:ea:a5:e9:08:46:93:01:bb:14:f6:9e:85:69: d1:17:71:93:b6:1e:77:40:b3:9d:80:e4:81:2f:dc: cd:bf:ae:2b:ae:75:dc:3e:30:ef:0b:6b:e3:2a:8e: ba:e8:ea:63:38:59:47:5a:7f:b3:6e:6d:a3:fb:0b: 10:5b:0c:99:5f:c1:fa:2f:b8:48:6d:20:f1:20:8c: 4d:c7:b0:ab:d6:d3:bf:83:8e:b2:3d:e5:5f:70:55: 30:46:da:fe:a0:d8:a6:88:82:bf:76:d1:c8:bb:d3: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:34:38:7F:AA:69:76:6E:F5:F2:55:9E:F7:04:E1:A9:43:B7:57:FC X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:0d:46:ef:62:d3:23:85:c4:0c:c3:91:8c:a6:8a:3a:a2:49: de:fd:18:ff:a1:89:a3:e0:75:76:eb:84:be:31:9e:d0:a6:53: 67:77:3e:38:09:5f:44:7d:7f:1c:ea:eb:2e:ee:86:75:42:dd: 4f:cc:38:7f:6e:21:7b:1a:3c:63:0e:fc:67:16:81:af:39:fa: dc:7f:41:ca:c7:d5:bf:64:07:ae:b5:c5:c6:21:0a:e0:ec:e3: 9a:86:bb:7c:94:0f:31:fd:9e:b6:d7:0a:3d:dc:7e:ea:54:a7: 1f:d9:49:c4:80:4e:7c:70:ee:3a:22:9d:47:35:88:0e:b9:b0: 85:88:bc:b8:1b:83:d0:74:6f:7f:9e:ca:f1:1c:df:c0:ed:53: cd:cf:94:56:78:a1:cf:f3:23:53:6c:25:7b:90:09:eb:81:f1: ec:fe:ee:b2:bc:39:6a:f9:23:0c:bf:47:82:e9:f1:c5:3a:ea: 96:14:d6:b8:cf:b5:28:c5:6e:0f:5d:2b:d9:79:32:35:f1:bd: 9d:9f:8d:84:d5:8f:f8:4e:ec:81:c8:c2:18:4f:3f:e9:bf:07: 9a:26:f9:84:93:b9:38:0a:8f:a1:28:aa:b1:2b:21:24:04:95: 33:2f:3c:a9:91:46:9a:6f:51:ee:41:14:c7:80:b1:ce:85:ae: f1:20:ce:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6z+w7l//tkix0WD6q9XVQWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjExMDAwMDM1WhcNMjYwNjEyMDAwMDM1WjAzMTEwLwYDVQQD Eyg1ZDM0Mzg3ZmFhNjk3NjZlZjVmMjU1OWVmNzA0ZTFhOTQzYjc1N2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuejRVrhJNKPhksyrTGILff4DEz7 NIPs4KIEME69Wu4jOBuREUVpoxTtBm9IguSCMA0QcurOM3pDfoXWcHN9wHblausC eF6amSemgRU2as8eYGilLWCh7tbPXNKucK08BMpOlNFlpQeeXcHhn/AtA6F1XKQD JlvZEsWDOv7Fdy+hSu1EQKaFolbDKwGl0OF41/mHcVENguql6QhGkwG7FPaehWnR F3GTth53QLOdgOSBL9zNv64rrnXcPjDvC2vjKo666OpjOFlHWn+zbm2j+wsQWwyZ X8H6L7hIbSDxIIxNx7Cr1tO/g46yPeVfcFUwRtr+oNimiIK/dtHIu9PvrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF00OH+qaXZu9fJVnvcE4alDt1f8MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtg1G72LT I4XEDMORjKaKOqJJ3v0Y/6GJo+B1duuEvjGe0KZTZ3c+OAlfRH1/HOrrLu6GdULd T8w4f24hexo8Yw78ZxaBrzn63H9BysfVv2QHrrXFxiEK4Ozjmoa7fJQPMf2ettcK Pdx+6lSnH9lJxIBOfHDuOiKdRzWIDrmwhYi8uBuD0HRvf57K8RzfwO1Tzc+UVnih z/MjU2wle5AJ64Hx7P7usrw5avkjDL9HgunxxTrqlhTWuM+1KMVuD10r2XkyNfG9 nZ+NhNWP+E7sgcjCGE8/6b8Hmib5hJO5OAqPoSiqsSshJASVMy88qZFGmm9R7kEU x4CxzoWu8SDOPA== -----END CERTIFICATE-----Generated at Thu Jun 11 06:25:33 2026 by rpki-client