$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 6ColzCVKx1oLGl4haR2T6AYbjB9JM2XrvcKaeO1OdKU= Subject key identifier: 53:48:99:5A:44:45:0D:F1:59:5F:58:9D:B8:20:5E:53:1A:B2:77:E3 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D913BFB8BAC87F339248E0B8A2F4458E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1320 Signing time: Wed 15 Apr 2026 13:02:00 +0000 Manifest this update: Wed 15 Apr 2026 13:02:00 +0000 Manifest next update: Thu 16 Apr 2026 13:02:00 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: YhYZTjjSLf1L2Xefv2uPr73BghETgdWQBthVPFMY3Ig=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 16 Apr 2026 13:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:91:3b:fb:8b:ac:87:f3:39:24:8e:0b:8a:2f:44:58:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 15 13:02:00 2026 GMT Not After : Apr 16 13:02:00 2026 GMT Subject: CN=5348995a44450df1595f589db8205e531ab277e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d7:3a:0b:89:91:b7:f9:76:10:18:7f:37:41: c6:17:54:70:05:b4:26:dd:bb:74:44:74:9d:78:27: 6b:99:f6:e3:4b:63:86:67:13:12:e4:2b:fd:79:b8: d5:78:7b:71:82:36:72:fe:84:a3:cc:69:82:9a:b0: 80:58:78:fe:e3:b3:56:09:87:dc:e7:61:e7:ef:bb: 55:59:58:06:a3:15:29:09:af:3a:24:b3:c3:c3:49: 88:39:76:aa:92:96:cb:3e:4f:e6:e7:10:9f:58:ce: 0c:28:1c:a3:52:2d:5d:37:ed:cc:dd:93:28:d9:80: 20:41:42:1c:4d:26:fd:16:58:b9:7f:e2:6a:53:e9: 15:fb:0d:5e:88:89:aa:5f:64:ac:d7:98:90:ac:01: e8:87:0e:dc:41:34:9d:9b:a6:ae:19:cd:67:51:5c: a0:f0:cf:dc:95:bb:cd:e4:14:93:56:12:56:bd:24: ab:8a:27:d1:ad:76:c7:33:56:b3:60:f7:32:6c:48: dc:07:38:f2:bb:32:34:86:1e:1d:2f:71:0f:26:b7: 11:7d:a0:76:15:22:dc:e1:d9:81:80:da:e1:b5:4d: 26:67:30:76:53:ff:52:eb:b7:17:6e:66:ac:da:1d: 71:12:91:13:b5:f9:b1:41:cb:6b:d4:c3:59:26:14: 9f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:48:99:5A:44:45:0D:F1:59:5F:58:9D:B8:20:5E:53:1A:B2:77:E3 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:52:a4:ee:85:65:d3:e1:b8:c8:2e:c6:87:d3:ee:61:c9:78: 42:10:9b:32:fb:39:72:52:11:76:e9:66:3d:52:3c:73:bd:f3: 14:a3:02:fc:6a:c7:48:67:6d:b7:4e:37:2b:16:85:c8:33:87: 46:86:24:a9:2f:14:06:38:17:2e:e5:8c:cf:8b:65:3a:1e:c5: 5d:93:45:08:74:5f:cd:da:b9:1b:a5:e4:87:2f:d6:d7:b3:c3: c1:07:d7:40:17:b5:b5:d9:bb:2c:7d:98:63:89:0f:29:7f:b7: df:42:c4:01:e1:5f:63:26:fd:28:0a:c7:16:2e:5f:06:7e:8b: d4:cb:f2:3e:7c:67:f0:ab:25:4b:3f:03:0f:fb:70:8b:e8:5f: 28:72:79:6f:ce:81:17:49:6e:6c:fb:a9:af:56:8d:f5:ef:1a: 5a:61:03:5f:60:df:5d:b4:49:c0:a8:fe:e7:d3:45:41:fd:21: 75:07:08:b2:90:b1:57:81:5e:db:ef:35:f2:d8:3d:8b:17:94: a7:40:3d:53:4f:99:4d:79:69:5a:73:6a:21:6c:e4:16:84:4b: bf:a1:37:88:e7:02:86:84:c4:a1:4a:05:ac:07:57:93:25:a3: af:40:37:44:9e:c3:b4:a8:fc:99:a5:2f:0c:46:db:4c:a0:ce: a0:2d:5c:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2RO/uLrIfzOSSOC4ovRFjjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDE1MTMwMjAwWhcNMjYwNDE2MTMwMjAwWjAzMTEwLwYDVQQD Eyg1MzQ4OTk1YTQ0NDUwZGYxNTk1ZjU4OWRiODIwNWU1MzFhYjI3N2UzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNc6C4mRt/l2EBh/N0HGF1RwBbQm 3bt0RHSdeCdrmfbjS2OGZxMS5Cv9ebjVeHtxgjZy/oSjzGmCmrCAWHj+47NWCYfc 52Hn77tVWVgGoxUpCa86JLPDw0mIOXaqkpbLPk/m5xCfWM4MKByjUi1dN+3M3ZMo 2YAgQUIcTSb9Fli5f+JqU+kV+w1eiImqX2Ss15iQrAHohw7cQTSdm6auGc1nUVyg 8M/clbvN5BSTVhJWvSSriifRrXbHM1azYPcybEjcBzjyuzI0hh4dL3EPJrcRfaB2 FSLc4dmBgNrhtU0mZzB2U/9S67cXbmas2h1xEpETtfmxQctr1MNZJhSfzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNImVpERQ3xWV9YnbggXlMasnfjMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAFKk7oVl 0+G4yC7Gh9PuYcl4QhCbMvs5clIRdulmPVI8c73zFKMC/GrHSGdtt043KxaFyDOH RoYkqS8UBjgXLuWMz4tlOh7FXZNFCHRfzdq5G6Xkhy/W17PDwQfXQBe1tdm7LH2Y Y4kPKX+330LEAeFfYyb9KArHFi5fBn6L1MvyPnxn8KslSz8DD/twi+hfKHJ5b86B F0lubPupr1aN9e8aWmEDX2DfXbRJwKj+59NFQf0hdQcIspCxV4Fe2+818tg9ixeU p0A9U0+ZTXlpWnNqIWzkFoRLv6E3iOcChoTEoUoFrAdXkyWjr0A3RJ7DtKj8maUv DEbbTKDOoC1cYA== -----END CERTIFICATE-----Generated at Wed Apr 15 22:55:23 2026 by rpki-client