$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: dsa0PM+r849NqkZv2fRaRy9gH9T3YJHgVfKiD90T/ng= Subject key identifier: 57:C0:1D:AF:B0:2D:A4:F9:D4:F2:2B:8A:AE:3E:C6:B8:4F:07:37:2F Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D9329E48574F102187F89AD03CC0559CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1321 Signing time: Wed 15 Apr 2026 22:01:29 +0000 Manifest this update: Wed 15 Apr 2026 22:01:29 +0000 Manifest next update: Thu 16 Apr 2026 22:01:29 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: mCg8gybi/usbQFnxjvQ/NSY/sCO4yq6o8soCi7NiHJA=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 16 Apr 2026 22:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:93:29:e4:85:74:f1:02:18:7f:89:ad:03:cc:05:59:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 15 22:01:29 2026 GMT Not After : Apr 16 22:01:29 2026 GMT Subject: CN=57c01dafb02da4f9d4f22b8aae3ec6b84f07372f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4f:e9:bb:0f:d0:b0:93:28:76:0b:d4:69:90: 34:fc:46:9b:95:72:d1:ee:34:6f:51:1f:76:0b:8c: b4:88:2a:9f:a9:11:5e:df:46:6e:de:1a:df:0b:6e: df:ba:1c:34:19:03:70:e4:bf:e5:0d:4e:c1:de:4b: ab:c1:f8:49:7c:14:e6:51:e3:07:27:cc:ed:c0:39: 92:f8:a7:6b:9e:bb:2a:c0:7b:d4:61:64:7b:24:a0: 27:28:c6:3e:f7:51:93:22:3c:50:fe:5b:4c:d7:20: b2:95:cd:6d:3c:d6:b2:9c:29:ce:50:7e:99:1f:6e: 0e:d9:d6:15:34:11:09:da:36:97:38:de:db:d7:02: e2:e1:92:87:24:9c:98:2c:1a:3f:8e:d1:7f:42:3f: 62:62:e4:9f:a9:e1:a5:2e:f9:cc:ca:a8:04:e4:3a: 0e:1b:62:a1:7b:d0:3e:ed:5e:e6:36:5b:6f:43:ca: 4e:40:ae:fd:bd:cf:ba:b6:68:ec:b8:ea:d4:e3:99: c9:3f:28:a7:d9:66:82:66:d5:f1:65:cd:0b:04:f0: ef:f9:3c:e7:63:4a:eb:eb:a7:f6:9c:b7:55:02:81: 14:61:76:97:79:d5:09:f9:af:d3:21:72:b4:d7:f5: 8c:e3:f9:07:7b:3e:d3:26:e2:7a:33:2f:6b:32:75: 07:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C0:1D:AF:B0:2D:A4:F9:D4:F2:2B:8A:AE:3E:C6:B8:4F:07:37:2F X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:61:5f:c1:79:80:61:47:57:8c:71:61:40:a5:90:94:b6:a6: 5b:a7:ee:eb:18:df:9c:ad:d5:68:e3:8e:c7:cd:9e:7c:45:fb: f7:b5:14:f0:27:a2:b9:16:54:d0:6f:fa:b6:ba:86:80:3c:12: cc:b1:80:3e:48:7b:b9:ba:4e:38:f5:8e:8e:1c:ee:c3:f4:04: 66:15:8c:47:8b:49:a7:0b:55:ef:6b:0c:d8:a7:41:a1:b2:8f: 83:fb:45:a6:cb:3e:25:6e:ca:77:3a:c6:13:54:b8:32:47:6a: 80:da:ba:82:f0:42:c0:8a:90:04:a8:a2:60:6d:ba:18:e1:b8: db:bb:bc:aa:7f:b8:67:a1:e3:a7:82:3a:4c:aa:72:a2:c3:e9: f4:1b:d5:88:75:27:5f:cd:d6:34:f3:14:8d:6f:65:5e:67:85: d3:2e:f3:cb:aa:ef:89:d7:c0:c4:ae:aa:d2:f3:4f:27:12:e6: b5:d9:ff:fd:df:6a:db:9c:2e:a4:3a:78:29:6e:f5:7d:11:f7: 56:bb:25:61:f1:21:ce:9d:82:6c:cb:00:0f:6b:25:b5:11:17: 4b:1f:00:1f:96:e5:22:64:ae:43:f1:7a:44:18:71:49:fc:3b: c2:10:02:35:59:9e:2d:cf:9a:7e:75:9c:23:8f:cc:2e:10:36: 8c:70:ca:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2TKeSFdPECGH+JrQPMBVnMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDE1MjIwMTI5WhcNMjYwNDE2MjIwMTI5WjAzMTEwLwYDVQQD Eyg1N2MwMWRhZmIwMmRhNGY5ZDRmMjJiOGFhZTNlYzZiODRmMDczNzJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk/puw/QsJModgvUaZA0/EablXLR 7jRvUR92C4y0iCqfqRFe30Zu3hrfC27fuhw0GQNw5L/lDU7B3kurwfhJfBTmUeMH J8ztwDmS+KdrnrsqwHvUYWR7JKAnKMY+91GTIjxQ/ltM1yCylc1tPNaynCnOUH6Z H24O2dYVNBEJ2jaXON7b1wLi4ZKHJJyYLBo/jtF/Qj9iYuSfqeGlLvnMyqgE5DoO G2Khe9A+7V7mNltvQ8pOQK79vc+6tmjsuOrU45nJPyin2WaCZtXxZc0LBPDv+Tzn Y0rr66f2nLdVAoEUYXaXedUJ+a/TIXK01/WM4/kHez7TJuJ6My9rMnUH5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfAHa+wLaT51PIriq4+xrhPBzcvMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcGFfwXmA YUdXjHFhQKWQlLamW6fu6xjfnK3VaOOOx82efEX797UU8CeiuRZU0G/6trqGgDwS zLGAPkh7ubpOOPWOjhzuw/QEZhWMR4tJpwtV72sM2KdBobKPg/tFpss+JW7KdzrG E1S4MkdqgNq6gvBCwIqQBKiiYG26GOG427u8qn+4Z6Hjp4I6TKpyosPp9BvViHUn X83WNPMUjW9lXmeF0y7zy6rvidfAxK6q0vNPJxLmtdn//d9q25wupDp4KW71fRH3 VrslYfEhzp2CbMsAD2sltREXSx8AH5blImSuQ/F6RBhxSfw7whACNVmeLc+afnWc I4/MLhA2jHDK9A== -----END CERTIFICATE-----Generated at Thu Apr 16 07:40:09 2026 by rpki-client