$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: SptRkLJBfY5mrISXKvD5RIGJqbmdNDLmiY2E9f47pWA= Subject key identifier: 9C:F4:5B:E3:D9:BC:79:51:38:2E:69:F1:B1:7A:E2:17:BD:DB:62:5E Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E9514DE69677E73651CE5BEA0B1C0DB15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13A8 Signing time: Fri 05 Jun 2026 00:00:33 +0000 Manifest this update: Fri 05 Jun 2026 00:00:33 +0000 Manifest next update: Sat 06 Jun 2026 00:00:33 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: KqqriccS6+vPyU+tguR3AJT3Q52NltvDfmJwYFAvmsQ=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 00:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:95:14:de:69:67:7e:73:65:1c:e5:be:a0:b1:c0:db:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 5 00:00:33 2026 GMT Not After : Jun 6 00:00:33 2026 GMT Subject: CN=9cf45be3d9bc7951382e69f1b17ae217bddb625e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:e2:31:d4:54:71:05:91:ac:8f:e5:88:23: 3a:29:f3:10:63:54:75:9c:e3:72:74:ac:e0:b9:4e: a3:07:d2:05:f3:c0:3f:70:0d:d4:1c:30:31:dc:fa: 9b:19:25:2e:3b:21:ce:04:0e:b9:2f:72:97:1a:48: 50:13:ee:b7:79:e0:1a:60:7c:f1:c9:2f:71:73:2f: 08:95:5e:02:51:c5:3d:a8:e5:e2:87:fa:51:5d:38: 42:d8:eb:e2:49:33:9b:0c:97:04:f9:40:35:ac:54: af:55:8b:db:e4:01:fb:17:49:42:d6:41:21:00:ab: 56:da:e9:44:91:dd:d7:7f:e1:93:22:14:99:f2:4b: f9:a7:0c:f3:ee:12:aa:d7:91:2c:f6:f4:d7:14:8e: bc:0f:6a:73:02:5e:23:15:11:55:fd:b5:5d:97:f1: 3e:da:06:fc:98:1c:b8:4a:72:50:d2:b2:a3:64:15: 20:0d:7e:8e:1b:59:56:4f:46:64:bf:7e:59:56:47: 69:13:0c:3f:66:b6:81:5f:42:27:9f:64:5b:db:39: 8f:9c:4b:79:34:8b:48:6f:b0:b2:09:f8:1c:88:84: b1:e3:32:c1:60:ac:1a:d6:4d:d6:93:9b:78:3b:4a: f8:eb:b1:6b:c3:99:f7:01:bd:28:ff:80:dc:cd:ee: e0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F4:5B:E3:D9:BC:79:51:38:2E:69:F1:B1:7A:E2:17:BD:DB:62:5E X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:e5:5a:1b:9c:95:54:5f:3d:dc:96:37:e9:09:a0:40:0f:b8: 08:1b:58:ac:7b:15:00:0f:19:a0:b4:19:a0:40:1b:03:41:20: 07:2a:43:fd:19:8f:da:9c:0f:20:5e:2e:e2:07:ce:30:8c:19: c0:dc:fd:de:08:24:4c:b8:79:6f:c4:6c:95:1f:ea:df:42:9f: 21:a5:fa:d0:43:f9:46:d8:10:07:8b:99:f4:23:8d:6d:0e:33: 6b:86:50:b2:d0:b8:e2:40:d4:77:74:31:50:46:e5:5a:ea:3b: d9:77:d5:44:0f:b6:05:1c:06:95:1a:0c:4c:30:4f:df:ab:61: 53:a1:12:42:dd:75:6d:af:75:4d:77:ad:47:61:6b:a0:5a:91: e7:52:1e:f3:8b:ef:1a:63:e0:0d:e9:c4:58:e4:00:80:3c:5d: 73:2c:51:1e:0b:a3:01:2a:0b:ba:ac:a0:b1:b2:7f:d6:1d:31: 6c:18:14:55:1b:85:75:3e:50:7e:fc:83:1d:9a:d6:5f:9c:42: c4:fe:cf:da:43:24:a7:46:5c:11:83:82:3e:cb:4d:43:22:58: 3b:ed:d0:d4:93:8a:c4:86:d2:35:39:bd:7f:ce:79:2b:2c:2d: d8:03:ac:01:eb:de:e3:1b:2f:f3:3b:09:50:d1:7b:9c:06:e9: 49:26:48:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ6VFN5pZ35zZRzlvqCxwNsVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjA1MDAwMDMzWhcNMjYwNjA2MDAwMDMzWjAzMTEwLwYDVQQD Eyg5Y2Y0NWJlM2Q5YmM3OTUxMzgyZTY5ZjFiMTdhZTIxN2JkZGI2MjVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYriMdRUcQWRrI/liCM6KfMQY1R1 nONydKzguU6jB9IF88A/cA3UHDAx3PqbGSUuOyHOBA65L3KXGkhQE+63eeAaYHzx yS9xcy8IlV4CUcU9qOXih/pRXThC2OviSTObDJcE+UA1rFSvVYvb5AH7F0lC1kEh AKtW2ulEkd3Xf+GTIhSZ8kv5pwzz7hKq15Es9vTXFI68D2pzAl4jFRFV/bVdl/E+ 2gb8mBy4SnJQ0rKjZBUgDX6OG1lWT0Zkv35ZVkdpEww/ZraBX0Inn2Rb2zmPnEt5 NItIb7CyCfgciISx4zLBYKwa1k3Wk5t4O0r467Frw5n3Ab0o/4Dcze7gNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJz0W+PZvHlROC5p8bF64he922JeMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ+VaG5yV VF893JY36QmgQA+4CBtYrHsVAA8ZoLQZoEAbA0EgBypD/RmP2pwPIF4u4gfOMIwZ wNz93ggkTLh5b8RslR/q30KfIaX60EP5RtgQB4uZ9CONbQ4za4ZQstC44kDUd3Qx UEblWuo72XfVRA+2BRwGlRoMTDBP36thU6ESQt11ba91TXetR2FroFqR51Ie84vv GmPgDenEWOQAgDxdcyxRHgujASoLuqygsbJ/1h0xbBgUVRuFdT5QfvyDHZrWX5xC xP7P2kMkp0ZcEYOCPstNQyJYO+3Q1JOKxIbSNTm9f855Kywt2AOsAeve4xsv8zsJ UNF7nAbpSSZI3g== -----END CERTIFICATE-----Generated at Fri Jun 5 05:08:23 2026 by rpki-client