$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: sCS1j8ZRd3ul7BsLqLRi1R7FX6zoazPfjir+Z+aPxRc= Subject key identifier: 61:39:25:43:C2:6A:01:56:CD:8B:9C:4E:2E:E5:58:D2:5E:95:C4:02 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E87908645E8CBD243E1BB44A4779B979F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13A1 Signing time: Tue 02 Jun 2026 09:00:56 +0000 Manifest this update: Tue 02 Jun 2026 09:00:56 +0000 Manifest next update: Wed 03 Jun 2026 09:00:56 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: tW0FuC2gD5c+cREEz4u10INpQXTR7ZNUJbl+BqwGIzQ=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 03 Jun 2026 09:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:87:90:86:45:e8:cb:d2:43:e1:bb:44:a4:77:9b:97:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 2 09:00:56 2026 GMT Not After : Jun 3 09:00:56 2026 GMT Subject: CN=61392543c26a0156cd8b9c4e2ee558d25e95c402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:91:7f:0b:dd:4d:61:25:2e:08:88:f1:f7:14: dc:d5:72:1c:68:81:1c:b6:39:ed:77:b3:20:83:6a: 11:c6:bf:86:c4:9e:64:4a:6b:76:60:a8:fd:03:7e: fd:80:63:c5:aa:cc:e8:fb:21:b8:00:87:88:8c:85: 24:6e:74:be:2e:6e:15:43:bd:5e:d0:94:8e:45:c1: f9:21:f4:88:4b:ce:61:4f:61:50:25:51:94:f1:8b: b8:5f:c9:8b:2a:52:0c:02:7c:19:3f:16:58:41:c5: 3d:b9:6b:3d:66:da:43:60:49:29:6a:97:1c:94:ab: 4b:b2:2e:a7:04:dc:be:07:82:ee:57:7e:24:b9:0e: 06:4e:ff:01:5f:d5:de:ba:ff:ad:df:f6:42:b5:cf: 30:1e:de:76:af:b3:65:25:59:95:e0:44:94:d3:9f: 67:72:ac:b5:5e:c8:70:de:9a:7b:c8:7d:e1:91:d9: 95:fc:4e:cf:12:e3:d9:bb:9f:6b:f2:34:e9:30:ed: 2a:90:13:c7:36:70:3e:9e:d5:37:0d:eb:9e:8a:3e: f8:81:e6:ea:77:d8:03:c5:e1:67:0c:8a:90:ad:59: 45:b7:11:83:a3:c4:39:bd:fa:64:70:ac:db:ca:a0: c1:47:94:73:ef:dd:2b:ca:ef:96:34:79:fa:4b:e2: 0f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:39:25:43:C2:6A:01:56:CD:8B:9C:4E:2E:E5:58:D2:5E:95:C4:02 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:d5:b5:af:f4:79:ab:61:1d:10:54:1b:2e:9d:cf:ba:96:8f: 1d:c4:f4:4f:22:f1:22:ac:32:89:d1:5f:fe:37:a7:78:2d:d3: 21:ae:d2:e6:3c:a8:e4:23:a5:ad:1e:44:0e:f9:de:8d:c8:8d: e6:8d:c7:b4:cb:c0:7c:bd:c0:57:6b:24:a2:aa:b4:ea:da:b1: a9:51:0f:74:93:bb:51:7e:2c:fa:a5:ce:06:3c:45:50:49:74: 13:b6:c8:a2:ba:dc:46:c3:d1:11:fe:56:7c:f3:16:5c:06:26: b8:0b:bc:bc:1c:06:2c:15:7b:dd:0e:64:7c:96:44:d3:17:4e: fc:46:c6:d0:46:be:dc:a9:1b:5d:76:13:98:72:1f:e6:63:e2: a4:b8:12:92:a7:ff:51:74:66:47:45:54:b4:be:0e:e7:ef:d4: 1b:ac:6f:3c:d0:23:42:ed:2b:74:fc:ae:00:41:96:07:3e:96: c8:16:d1:ab:25:e0:d2:28:ea:8d:17:e0:e4:7d:a0:5a:60:f9: aa:34:a1:7f:4d:54:91:5d:97:7c:52:18:10:91:d7:20:0e:44: 59:82:c6:40:87:cf:06:d1:7b:d2:99:24:9d:ca:8b:71:12:62: 27:f5:d6:78:f9:b2:86:89:57:11:0f:bf:4e:41:d9:99:0e:df: 8a:de:75:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6HkIZF6MvSQ+G7RKR3m5efMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjAyMDkwMDU2WhcNMjYwNjAzMDkwMDU2WjAzMTEwLwYDVQQD Eyg2MTM5MjU0M2MyNmEwMTU2Y2Q4YjljNGUyZWU1NThkMjVlOTVjNDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZF/C91NYSUuCIjx9xTc1XIcaIEc tjntd7Mgg2oRxr+GxJ5kSmt2YKj9A379gGPFqszo+yG4AIeIjIUkbnS+Lm4VQ71e 0JSORcH5IfSIS85hT2FQJVGU8Yu4X8mLKlIMAnwZPxZYQcU9uWs9ZtpDYEkpapcc lKtLsi6nBNy+B4LuV34kuQ4GTv8BX9Xeuv+t3/ZCtc8wHt52r7NlJVmV4ESU059n cqy1Xshw3pp7yH3hkdmV/E7PEuPZu59r8jTpMO0qkBPHNnA+ntU3Deueij74gebq d9gDxeFnDIqQrVlFtxGDo8Q5vfpkcKzbyqDBR5Rz790ryu+WNHn6S+IP2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGE5JUPCagFWzYucTi7lWNJelcQCMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVdW1r/R5 q2EdEFQbLp3PupaPHcT0TyLxIqwyidFf/jeneC3TIa7S5jyo5COlrR5EDvnejciN 5o3HtMvAfL3AV2skoqq06tqxqVEPdJO7UX4s+qXOBjxFUEl0E7bIorrcRsPREf5W fPMWXAYmuAu8vBwGLBV73Q5kfJZE0xdO/EbG0Ea+3KkbXXYTmHIf5mPipLgSkqf/ UXRmR0VUtL4O5+/UG6xvPNAjQu0rdPyuAEGWBz6WyBbRqyXg0ijqjRfg5H2gWmD5 qjShf01UkV2XfFIYEJHXIA5EWYLGQIfPBtF70pkkncqLcRJiJ/XWePmyholXEQ+/ TkHZmQ7fit51tA== -----END CERTIFICATE-----Generated at Tue Jun 2 18:39:41 2026 by rpki-client