$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: Tl4NB++MA2YoINOB+uGdCgxG7yNQL32FM9+zUNb/HWI= Subject key identifier: AC:0E:7E:D3:39:C6:A8:AC:AD:F4:9A:24:8F:49:80:9F:D1:80:3A:DF Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DB3FE1263CC9C19574B38B767D0E40833 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1332 Signing time: Wed 22 Apr 2026 07:01:05 +0000 Manifest this update: Wed 22 Apr 2026 07:01:05 +0000 Manifest next update: Thu 23 Apr 2026 07:01:05 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: XAlyq/UXXieRvDvGQoU9YM8jVZWta/cKLZNQ3jmraVg=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Apr 2026 07:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b3:fe:12:63:cc:9c:19:57:4b:38:b7:67:d0:e4:08:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 22 07:01:05 2026 GMT Not After : Apr 23 07:01:05 2026 GMT Subject: CN=ac0e7ed339c6a8acadf49a248f49809fd1803adf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:87:1c:c8:e4:70:d1:96:a6:88:65:be:62: da:14:e9:85:b5:a1:ba:a1:64:53:c0:e3:e0:4a:7f: 6c:93:74:70:3a:8d:64:7d:cd:3d:a6:a1:7a:57:6a: 76:66:07:cf:ce:cb:d7:c8:f1:dc:db:73:5b:38:9a: 63:01:1d:6e:b9:9a:d6:15:7a:02:f4:79:67:37:6b: 46:2d:4c:b8:3d:fb:b3:06:75:6a:da:ea:4c:0a:f5: 0f:ab:82:7d:3a:5c:81:7a:3c:05:01:71:9e:4a:bb: 0a:20:39:34:04:dd:08:44:83:b7:f4:bf:f0:b1:66: ee:fd:09:b0:a9:45:4d:6b:72:d8:23:2d:a5:eb:6c: 6b:59:15:06:7c:12:a2:6a:37:de:6b:80:70:46:65: 64:88:d9:22:9d:e9:c3:c1:bd:8c:69:15:e6:c6:d6: f1:31:99:51:66:5d:19:70:97:d3:fc:e3:71:3b:90: 53:e3:0d:7f:35:16:fb:0f:c3:49:73:9b:76:ad:30: 29:73:d4:6e:dd:99:42:24:b5:94:b2:a6:51:58:ea: 83:f0:89:fe:76:36:42:bc:59:e7:f1:90:fe:53:48: 77:be:47:11:55:a1:81:16:32:ec:ec:4f:50:9f:71: bd:64:ae:7b:2e:b0:4a:26:76:ae:1a:5c:30:01:32: ca:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0E:7E:D3:39:C6:A8:AC:AD:F4:9A:24:8F:49:80:9F:D1:80:3A:DF X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bf:70:43:a8:90:08:e6:d7:93:ff:c8:e1:5e:01:1d:ed:cd: 18:4a:e6:83:e3:9e:5d:13:a3:6d:fc:cb:97:90:8c:7c:44:74: 85:46:90:8a:ac:66:47:e8:2b:11:a6:96:23:ac:7d:83:1d:78: ae:10:47:e8:e3:08:99:60:20:1f:f4:07:9d:f4:4b:cf:3f:6f: aa:b6:60:b3:0b:36:de:b2:01:91:6e:25:8d:38:ca:bf:0e:66: d8:d4:22:6a:dc:cb:93:e2:66:4a:d6:d8:50:05:c6:67:ae:9d: 93:9f:08:fc:64:2f:76:ae:3e:08:fb:b2:3e:92:2e:22:82:36: 90:7c:4a:76:e9:2d:cb:81:4f:18:67:47:5a:f0:fa:f1:79:05: 1b:56:fe:fb:61:c1:d7:b8:85:8d:fe:a2:db:db:bb:fd:8a:28: c4:6a:a1:63:bd:a0:b5:ad:86:be:d9:f2:f1:22:78:04:9d:99: 8f:da:e3:12:76:db:8d:5c:63:00:1a:23:1b:aa:e3:e5:4d:05: 44:47:8f:53:76:8a:f3:d9:c4:50:2b:4b:8c:43:7e:dc:9c:de: 46:e8:45:db:01:d6:72:0d:b6:f0:29:13:33:e5:51:fc:74:ce: df:6f:d1:47:3d:c0:d0:32:29:ac:e5:5c:9b:8c:43:7a:69:1c: 03:3f:88:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2z/hJjzJwZV0s4t2fQ5AgzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIyMDcwMTA1WhcNMjYwNDIzMDcwMTA1WjAzMTEwLwYDVQQD EyhhYzBlN2VkMzM5YzZhOGFjYWRmNDlhMjQ4ZjQ5ODA5ZmQxODAzYWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxiHHMjkcNGWpohlvmLaFOmFtaG6 oWRTwOPgSn9sk3RwOo1kfc09pqF6V2p2ZgfPzsvXyPHc23NbOJpjAR1uuZrWFXoC 9HlnN2tGLUy4PfuzBnVq2upMCvUPq4J9OlyBejwFAXGeSrsKIDk0BN0IRIO39L/w sWbu/QmwqUVNa3LYIy2l62xrWRUGfBKiajfea4BwRmVkiNkinenDwb2MaRXmxtbx MZlRZl0ZcJfT/ONxO5BT4w1/NRb7D8NJc5t2rTApc9Ru3ZlCJLWUsqZRWOqD8In+ djZCvFnn8ZD+U0h3vkcRVaGBFjLs7E9Qn3G9ZK57LrBKJnauGlwwATLK/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKwOftM5xqisrfSaJI9JgJ/RgDrfMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL79wQ6iQ CObXk//I4V4BHe3NGErmg+OeXROjbfzLl5CMfER0hUaQiqxmR+grEaaWI6x9gx14 rhBH6OMImWAgH/QHnfRLzz9vqrZgsws23rIBkW4ljTjKvw5m2NQiatzLk+JmStbY UAXGZ66dk58I/GQvdq4+CPuyPpIuIoI2kHxKdukty4FPGGdHWvD68XkFG1b++2HB 17iFjf6i29u7/YooxGqhY72gta2Gvtny8SJ4BJ2Zj9rjEnbbjVxjABojG6rj5U0F REePU3aK89nEUCtLjEN+3JzeRuhF2wHWcg228CkTM+VR/HTO32/RRz3A0DIprOVc m4xDemkcAz+IAw== -----END CERTIFICATE-----Generated at Wed Apr 22 10:59:17 2026 by rpki-client