$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: IBnOoPGKTmYu4ohDp7I7l0MQyJG5DSvMfT4CTGeTpp8= Subject key identifier: ED:6A:23:AE:BB:24:FA:BF:4A:F2:C8:10:72:C2:90:EF:2B:24:2A:56 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D98F494BCB6A4EA1B3F145229C09292F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1324 Signing time: Fri 17 Apr 2026 01:00:58 +0000 Manifest this update: Fri 17 Apr 2026 01:00:58 +0000 Manifest next update: Sat 18 Apr 2026 01:00:58 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: kuV51+kIxSMfRIbaZVHnO72HsvHvkjQNr+5usvC05U8=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 01:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:98:f4:94:bc:b6:a4:ea:1b:3f:14:52:29:c0:92:92:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 17 01:00:58 2026 GMT Not After : Apr 18 01:00:58 2026 GMT Subject: CN=ed6a23aebb24fabf4af2c81072c290ef2b242a56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8d:5a:65:cb:7e:93:04:8a:d5:8c:e4:c1:75: f7:88:7b:8d:a4:fd:d1:62:18:40:cd:6b:d9:e4:e0: 2b:54:42:e6:89:f6:f1:9e:55:7a:7f:d4:ce:4f:65: 4e:a7:ac:79:86:ef:00:b7:3e:3b:38:1b:3e:c4:32: a4:e0:7e:d4:4a:df:fc:df:eb:9c:27:94:b6:87:17: ef:19:cf:e0:88:59:48:f0:5f:5e:b0:ec:cd:61:d1: c5:bd:66:20:4e:63:25:d3:4a:34:79:18:04:58:d7: 7c:07:ec:0c:d9:8b:08:bf:75:38:bc:08:58:ed:ca: 2d:55:63:83:3c:94:bb:29:6a:f3:8a:f8:25:19:a8: 9d:ab:d7:d5:86:d6:41:06:06:a2:72:93:a2:bb:93: 63:0e:18:a3:d5:8a:6f:6d:a1:d9:d4:81:44:6f:67: a3:65:1c:24:14:cb:7b:77:80:ea:54:d7:92:87:1b: 17:b4:35:26:40:1c:64:eb:4d:9e:25:da:01:06:58: 5e:c4:82:de:85:cc:ce:02:f9:d3:66:bb:b2:e1:bd: 16:bb:35:91:a0:07:68:09:15:28:b5:ea:4b:58:0e: 88:42:98:07:82:05:b7:e7:a9:96:97:fd:c8:46:f6: 5e:91:f6:f1:15:3d:ee:ac:1d:5a:3e:35:16:fd:35: 14:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6A:23:AE:BB:24:FA:BF:4A:F2:C8:10:72:C2:90:EF:2B:24:2A:56 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:bb:8e:17:75:1b:95:0a:bd:1e:8a:f3:f4:d1:4b:90:4c:b4: 83:a9:3f:be:de:87:55:c5:50:06:1c:c0:10:4e:45:94:6a:79: 16:de:7e:c1:60:e6:4d:69:b7:f5:78:57:6b:d4:89:a3:84:e9: 36:d4:44:69:db:99:78:1d:b7:da:ea:d7:ab:b0:be:ea:f1:6e: 58:fd:94:69:be:c1:9a:12:a1:03:aa:f9:82:8a:8e:0d:65:3b: f1:b8:e3:73:e3:69:0e:b9:b3:ba:4c:0c:bb:dc:f7:c7:9d:ea: 91:88:63:3a:2f:c2:fc:73:3c:a1:bc:02:f9:3b:71:cd:3c:59: a6:44:27:71:4f:3c:32:11:a5:d9:96:6d:40:f5:b5:52:c8:67: 99:ff:d1:8b:ce:47:5f:24:4d:91:62:1b:4b:88:01:ac:fa:a1: 85:cc:fd:e1:c9:aa:fa:ed:5f:44:bc:c9:c6:d7:41:b6:0d:4c: f5:24:c5:a4:09:0c:de:fe:24:da:07:3e:3d:a6:66:c6:b5:7a: 02:e8:54:ea:1f:e0:26:fd:c2:0b:24:fe:4a:31:ff:e8:7f:db: 07:c8:a1:1a:9e:22:b8:f8:70:51:b3:ac:bd:ba:99:31:37:42: d5:58:d0:3f:29:8d:44:f5:a7:cb:26:8d:9f:89:80:32:a3:a5: 85:f8:fc:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2Y9JS8tqTqGz8UUinAkpLzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDE3MDEwMDU4WhcNMjYwNDE4MDEwMDU4WjAzMTEwLwYDVQQD EyhlZDZhMjNhZWJiMjRmYWJmNGFmMmM4MTA3MmMyOTBlZjJiMjQyYTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmY1aZct+kwSK1YzkwXX3iHuNpP3R YhhAzWvZ5OArVELmifbxnlV6f9TOT2VOp6x5hu8Atz47OBs+xDKk4H7USt/83+uc J5S2hxfvGc/giFlI8F9esOzNYdHFvWYgTmMl00o0eRgEWNd8B+wM2YsIv3U4vAhY 7cotVWODPJS7KWrzivglGaidq9fVhtZBBgaicpOiu5NjDhij1YpvbaHZ1IFEb2ej ZRwkFMt7d4DqVNeShxsXtDUmQBxk602eJdoBBlhexILehczOAvnTZruy4b0WuzWR oAdoCRUotepLWA6IQpgHggW356mWl/3IRvZekfbxFT3urB1aPjUW/TUUowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1qI667JPq/SvLIEHLCkO8rJCpWMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUruOF3Ub lQq9Horz9NFLkEy0g6k/vt6HVcVQBhzAEE5FlGp5Ft5+wWDmTWm39XhXa9SJo4Tp NtREaduZeB232urXq7C+6vFuWP2Uab7BmhKhA6r5goqODWU78bjjc+NpDrmzukwM u9z3x53qkYhjOi/C/HM8obwC+TtxzTxZpkQncU88MhGl2ZZtQPW1Ushnmf/Ri85H XyRNkWIbS4gBrPqhhcz94cmq+u1fRLzJxtdBtg1M9STFpAkM3v4k2gc+PaZmxrV6 AuhU6h/gJv3CCyT+SjH/6H/bB8ihGp4iuPhwUbOsvbqZMTdC1VjQPymNRPWnyyaN n4mAMqOlhfj88w== -----END CERTIFICATE-----Generated at Fri Apr 17 08:25:43 2026 by rpki-client