$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: QwXlrJowogn7JRHmRhQR5fGZDdSMR0Fo7wgnqvWTuU8= Subject key identifier: 19:8C:A4:8B:CC:20:B4:64:59:38:7F:67:C5:75:60:16:0A:B5:1B:FB Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E68AACEE053C86A8FFB00B95143ED8584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1391 Signing time: Wed 27 May 2026 09:01:24 +0000 Manifest this update: Wed 27 May 2026 09:01:24 +0000 Manifest next update: Thu 28 May 2026 09:01:24 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: JpEdqJQIBbCGR39P1h4ERq5YrlK0aJXP+8WOoRHkpgE=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 28 May 2026 09:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:68:aa:ce:e0:53:c8:6a:8f:fb:00:b9:51:43:ed:85:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 27 09:01:24 2026 GMT Not After : May 28 09:01:24 2026 GMT Subject: CN=198ca48bcc20b46459387f67c57560160ab51bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4f:d8:b8:ec:6e:9a:a5:1c:6e:5a:ed:e5:e7: c9:c6:80:67:a4:cc:98:1a:e3:eb:a9:02:43:58:06: 78:bf:e5:5d:47:14:31:58:7d:d4:68:e7:50:d1:32: b2:19:2b:05:1d:06:a7:dd:d2:f6:86:e6:aa:2e:3f: 07:ab:d8:de:e4:86:8f:d3:be:7a:97:e7:ee:e6:f6: 54:b6:fb:11:85:44:e2:ff:b2:df:c9:f3:79:df:cb: bb:16:9d:39:cb:1b:fa:61:15:25:25:e2:e1:6b:b2: 7c:b1:83:91:bc:43:bb:a9:ee:d3:e5:de:96:3b:4b: 44:a6:ce:fb:2b:81:11:67:e2:bc:c8:ca:2a:5f:10: 8b:69:a3:a3:8c:7f:33:74:d3:98:46:b4:02:3a:eb: d2:04:03:32:47:e1:5d:8d:d9:e5:32:be:88:b2:84: d7:19:c2:45:c8:f5:88:3d:05:aa:d0:d1:62:63:10: b4:85:0a:1e:8e:68:0d:c2:4a:22:32:ca:3a:c3:f4: 8e:b6:50:1a:f6:44:0d:fd:d3:ef:dd:a1:0b:eb:55: 73:35:ef:20:12:6a:ba:35:7d:12:81:40:6d:ad:1a: 93:27:83:ff:c7:f6:c0:5c:e1:8d:29:db:54:7c:12: e1:58:75:7c:6e:99:94:6a:d8:f4:d1:ec:f1:09:7c: 20:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8C:A4:8B:CC:20:B4:64:59:38:7F:67:C5:75:60:16:0A:B5:1B:FB X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:20:00:16:be:d2:bf:7c:a6:62:a1:cc:aa:25:d4:0e:49:7a: cf:b6:6d:4f:d2:dd:33:e8:d8:62:0a:52:5f:d7:1b:e7:80:71: 87:fc:c4:23:0d:8d:20:ca:ef:de:5b:bb:d4:d5:d9:b3:72:40: ba:b4:ff:2d:77:a7:a8:6a:fa:49:47:46:85:f8:8e:93:a8:38: 61:1e:ed:53:e2:a3:33:fe:50:19:e3:af:4d:0b:1a:b7:f7:cd: 44:5b:a1:52:0b:ed:a2:1d:f0:d6:2f:1b:a1:04:22:3f:58:ad: 28:81:20:23:0d:c5:cd:a5:8e:e3:a1:c1:85:08:63:0c:e1:62: 21:dd:09:0c:71:b2:f2:b9:29:1c:19:ce:ac:5f:81:7e:2d:b0: 97:56:6f:90:c6:ff:bb:87:fc:24:fb:20:05:e6:aa:59:3f:05: 61:ec:35:af:c0:8e:74:a5:23:93:67:e0:bb:3b:c1:ff:1f:6f: 29:2b:e4:62:ca:63:14:5f:01:f0:16:81:4d:f1:5c:07:f7:73: d3:40:fb:d7:e4:46:cc:c5:2d:40:48:62:15:3c:c4:23:4e:3f: 4d:5b:cb:b0:a2:40:e8:c2:1f:a6:78:83:0f:5a:25:a2:34:00: d9:08:a6:77:95:7d:a4:d9:14:80:72:8a:5f:5d:b7:6c:de:5e: 02:4a:2e:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ5oqs7gU8hqj/sAuVFD7YWEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTI3MDkwMTI0WhcNMjYwNTI4MDkwMTI0WjAzMTEwLwYDVQQD EygxOThjYTQ4YmNjMjBiNDY0NTkzODdmNjdjNTc1NjAxNjBhYjUxYmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0/YuOxumqUcblrt5efJxoBnpMyY GuPrqQJDWAZ4v+VdRxQxWH3UaOdQ0TKyGSsFHQan3dL2huaqLj8Hq9je5IaP0756 l+fu5vZUtvsRhUTi/7LfyfN538u7Fp05yxv6YRUlJeLha7J8sYORvEO7qe7T5d6W O0tEps77K4ERZ+K8yMoqXxCLaaOjjH8zdNOYRrQCOuvSBAMyR+FdjdnlMr6IsoTX GcJFyPWIPQWq0NFiYxC0hQoejmgNwkoiMso6w/SOtlAa9kQN/dPv3aEL61VzNe8g Emq6NX0SgUBtrRqTJ4P/x/bAXOGNKdtUfBLhWHV8bpmUatj00ezxCXwgMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmMpIvMILRkWTh/Z8V1YBYKtRv7MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqiAAFr7S v3ymYqHMqiXUDkl6z7ZtT9LdM+jYYgpSX9cb54Bxh/zEIw2NIMrv3lu71NXZs3JA urT/LXenqGr6SUdGhfiOk6g4YR7tU+KjM/5QGeOvTQsat/fNRFuhUgvtoh3w1i8b oQQiP1itKIEgIw3FzaWO46HBhQhjDOFiId0JDHGy8rkpHBnOrF+Bfi2wl1ZvkMb/ u4f8JPsgBeaqWT8FYew1r8COdKUjk2fguzvB/x9vKSvkYspjFF8B8BaBTfFcB/dz 00D71+RGzMUtQEhiFTzEI04/TVvLsKJA6MIfpniDD1olojQA2Qimd5V9pNkUgHKK X123bN5eAkoulQ== -----END CERTIFICATE-----Generated at Wed May 27 19:10:10 2026 by rpki-client