$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: Gj356jMe8hanzdgDLkvtox307y3OqZFjjcNuCDDnWos= Subject key identifier: 1F:8B:0F:AC:91:66:C8:9C:F5:D3:83:82:00:51:13:BF:BC:35:48:96 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E062D4DBB41BF628001C1CA2828831E29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 135E Signing time: Fri 08 May 2026 06:01:32 +0000 Manifest this update: Fri 08 May 2026 06:01:32 +0000 Manifest next update: Sat 09 May 2026 06:01:32 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: YAAouK9SOljEmPssHAokYKK7Q5OK24Eib8F7s+2j1kg=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 09 May 2026 06:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:06:2d:4d:bb:41:bf:62:80:01:c1:ca:28:28:83:1e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 8 06:01:32 2026 GMT Not After : May 9 06:01:32 2026 GMT Subject: CN=1f8b0fac9166c89cf5d38382005113bfbc354896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:55:aa:9f:ff:44:7b:15:1c:ef:94:fb:dc: df:a5:c9:44:31:bf:ef:5b:fd:6d:a5:63:04:42:c3: 2d:4a:1e:42:a5:f9:03:a6:66:82:32:a5:ba:43:6a: b6:67:71:63:ae:61:86:d7:0d:11:f7:93:e5:2b:fd: 91:5c:7b:f1:a9:a4:a1:f1:b6:d9:29:60:d4:7d:45: 7f:cf:b8:50:71:3c:ec:91:1f:95:8d:29:77:cc:af: 7a:99:19:53:50:bb:0f:98:c4:06:ce:55:0b:1e:17: 40:56:b3:ee:db:19:5f:80:5e:7a:3b:69:71:58:b0: c3:ed:0d:43:4d:71:95:9c:d0:50:a2:df:79:93:c9: 77:4d:b5:f8:39:98:d5:16:84:fc:27:36:5b:5d:d6: eb:a2:e2:d2:5f:e3:36:d4:f1:1a:55:20:7e:25:e0: a9:c1:c2:82:03:50:c6:2e:1f:b4:64:8b:46:37:8c: ee:f6:c2:17:ef:31:17:8d:ab:0d:9f:91:1e:20:da: 19:37:a3:b3:58:03:e2:68:75:f7:16:07:34:35:34: b1:11:a6:ce:05:2f:1c:b4:e3:dc:f9:bb:3e:59:5e: 31:21:05:1c:fe:b2:e4:66:29:99:42:04:a7:ab:fe: 04:e0:b7:7c:f4:a9:5c:51:17:0a:29:56:97:03:f8: 7c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8B:0F:AC:91:66:C8:9C:F5:D3:83:82:00:51:13:BF:BC:35:48:96 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:7f:8e:1e:19:2e:31:ab:4a:4b:1b:2a:e8:81:a2:39:c2:1a: e6:62:58:c6:b6:25:05:c7:5a:f7:97:49:a0:ad:d6:a7:de:d2: fd:b8:bf:fa:bb:ef:97:60:f5:18:52:60:86:51:e9:84:3e:89: e3:e7:72:9a:ba:2f:55:69:76:a4:bb:7b:08:94:d5:b7:3d:67: 8d:05:9f:f2:89:f8:c4:9a:3f:bf:b4:e6:56:e1:ee:4a:5c:cb: 23:b8:a3:c0:11:a2:e2:69:30:e5:0e:0e:f7:84:4d:69:88:8b: 3a:ca:95:40:e5:53:73:56:c7:90:cf:f4:b6:87:bb:d7:8a:ec: d3:25:41:1b:75:71:30:61:6f:d1:11:bf:53:e9:da:66:93:37: 5c:57:3d:30:6a:9d:0c:50:d8:3d:e9:d4:b9:39:fc:85:c0:28: a6:bc:b2:ce:e6:cb:6c:04:62:89:74:17:7a:cd:17:7e:ad:d2: f1:c4:1e:7b:da:ec:40:7c:c6:cb:86:02:75:43:2e:f9:bd:87: 6b:41:dd:c6:ad:49:8a:ae:6b:55:a3:84:82:9a:dd:b8:84:0e: 87:68:fa:e3:16:7c:82:af:59:00:e5:06:d6:d3:c1:ed:ff:b9: 2e:ce:ba:3e:17:2e:fc:bc:86:27:a8:3d:f4:eb:34:41:1c:f9: 66:a2:3c:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4GLU27Qb9igAHByigogx4pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTA4MDYwMTMyWhcNMjYwNTA5MDYwMTMyWjAzMTEwLwYDVQQD EygxZjhiMGZhYzkxNjZjODljZjVkMzgzODIwMDUxMTNiZmJjMzU0ODk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOBVqp//RHsVHO+U+9zfpclEMb/v W/1tpWMEQsMtSh5CpfkDpmaCMqW6Q2q2Z3FjrmGG1w0R95PlK/2RXHvxqaSh8bbZ KWDUfUV/z7hQcTzskR+VjSl3zK96mRlTULsPmMQGzlULHhdAVrPu2xlfgF56O2lx WLDD7Q1DTXGVnNBQot95k8l3TbX4OZjVFoT8JzZbXdbrouLSX+M21PEaVSB+JeCp wcKCA1DGLh+0ZItGN4zu9sIX7zEXjasNn5EeINoZN6OzWAPiaHX3Fgc0NTSxEabO BS8ctOPc+bs+WV4xIQUc/rLkZimZQgSnq/4E4Ld89KlcURcKKVaXA/h8qQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+LD6yRZsic9dODggBRE7+8NUiWMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkX+OHhku MatKSxsq6IGiOcIa5mJYxrYlBcda95dJoK3Wp97S/bi/+rvvl2D1GFJghlHphD6J 4+dymrovVWl2pLt7CJTVtz1njQWf8on4xJo/v7TmVuHuSlzLI7ijwBGi4mkw5Q4O 94RNaYiLOsqVQOVTc1bHkM/0toe714rs0yVBG3VxMGFv0RG/U+naZpM3XFc9MGqd DFDYPenUuTn8hcAopryyzubLbARiiXQXes0Xfq3S8cQee9rsQHzGy4YCdUMu+b2H a0Hdxq1Jiq5rVaOEgprduIQOh2j64xZ8gq9ZAOUG1tPB7f+5Ls66Phcu/LyGJ6g9 9Os0QRz5ZqI8rg== -----END CERTIFICATE-----Generated at Fri May 8 17:01:05 2026 by rpki-client