$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 9k43pQVfZiMAbhdQqavFqQALwat3bHacHQlCE5hgRhM= Subject key identifier: C8:63:A5:E7:0B:D3:80:C2:B4:1B:7D:D0:19:20:2A:71:78:5D:EE:75 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019F1679408D13313997ACBD8B7A4C97D724 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13EB Signing time: Tue 30 Jun 2026 03:01:12 +0000 Manifest this update: Tue 30 Jun 2026 03:01:12 +0000 Manifest next update: Wed 01 Jul 2026 03:01:12 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: Skrsc3S3htB5sJUWP6f0QFxPbRA5hcW1yKemPDDQAag=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 23:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9f:16:79:40:8d:13:31:39:97:ac:bd:8b:7a:4c:97:d7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 30 03:01:12 2026 GMT Not After : Jul 1 03:01:12 2026 GMT Subject: CN=c863a5e70bd380c2b41b7dd019202a71785dee75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:52:7b:4a:ea:c1:bc:6c:11:af:25:ce:f9:f1: a7:85:a3:fd:c4:4d:09:e1:ea:f3:1b:18:16:a5:49: 98:da:9c:a8:0c:b5:a2:16:83:9d:87:48:3a:19:90: 3b:ae:e7:3b:13:ab:66:df:c7:57:14:19:94:e3:7c: 9d:72:21:6a:c8:22:14:02:a5:8c:f2:67:9c:ab:cf: 61:40:4a:4e:0c:e0:98:9c:30:00:ae:8a:f1:28:31: af:00:1d:ce:81:74:9f:87:b8:a4:bf:40:0f:33:bd: e5:c7:58:92:db:a4:d2:90:cf:69:97:b3:2e:e3:18: b1:6d:e5:a9:f7:16:a5:35:4c:d7:ea:fe:b1:17:ad: 9a:79:ef:18:78:50:46:b3:f1:06:db:3e:b6:bb:0c: cc:54:85:38:ee:06:20:74:5c:dc:aa:b8:b4:1d:08: 91:32:ce:5f:62:c5:18:78:15:5a:62:7b:db:51:13: 64:63:3e:78:fc:ec:c1:78:c9:10:4e:a8:26:14:cf: 46:3a:dd:8c:15:43:4d:e6:0c:2e:ea:13:d0:00:6c: c0:9a:8e:75:9f:1f:37:70:8d:40:c5:b4:62:27:8a: 67:9c:e1:7b:c8:bb:c3:2a:67:14:4e:4b:96:05:43: 2a:b8:c3:10:a9:88:07:0e:96:aa:91:ab:5c:c5:70: 44:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:63:A5:E7:0B:D3:80:C2:B4:1B:7D:D0:19:20:2A:71:78:5D:EE:75 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:48:ea:88:5a:08:98:92:5d:99:ca:4b:4c:b5:d1:2f:81:90: 22:c8:e1:cb:8c:c7:85:c2:fe:92:d8:10:1c:53:5d:45:1c:5c: d8:9c:90:53:86:90:8e:d8:0d:7f:b9:58:a6:a3:06:f5:a8:4f: eb:e6:d5:93:15:53:af:85:cc:9c:18:2d:87:1e:f6:f2:8e:ff: 7c:0d:86:d9:df:b3:ca:a6:e6:53:aa:71:eb:5e:97:90:14:82: 1a:ee:4e:87:7b:4a:02:de:43:aa:9f:8f:2b:07:72:5f:fa:65: a8:de:54:84:ac:41:ae:ab:cb:57:7e:e7:22:aa:53:b1:b1:16: b8:03:20:7f:5e:9d:8f:66:dc:6a:88:e3:0b:04:4c:a0:2b:e7: db:9a:c5:f6:0e:8f:fc:b1:3d:3d:d6:8a:dd:fe:37:28:89:86: 1d:ff:2d:7e:0b:aa:21:b6:a6:2c:90:ed:56:e9:c9:70:7b:77: a9:16:7c:8a:69:93:4e:80:94:fd:19:fb:09:22:67:cd:ba:61: ea:4c:61:7e:f3:17:67:5b:3a:38:b7:cd:12:e6:6f:07:01:47: c5:d6:dd:95:6f:b5:00:66:3a:d2:80:43:68:1d:0d:03:48:0d: 2d:60:95:c8:b3:ff:8d:b9:ab:d6:a1:d4:e0:e1:07:e8:f8:f3: 46:e3:42:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ8WeUCNEzE5l6y9i3pMl9ckMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjMwMDMwMTEyWhcNMjYwNzAxMDMwMTEyWjAzMTEwLwYDVQQD EyhjODYzYTVlNzBiZDM4MGMyYjQxYjdkZDAxOTIwMmE3MTc4NWRlZTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVJ7SurBvGwRryXO+fGnhaP9xE0J 4erzGxgWpUmY2pyoDLWiFoOdh0g6GZA7ruc7E6tm38dXFBmU43ydciFqyCIUAqWM 8mecq89hQEpODOCYnDAArorxKDGvAB3OgXSfh7ikv0APM73lx1iS26TSkM9pl7Mu 4xixbeWp9xalNUzX6v6xF62aee8YeFBGs/EG2z62uwzMVIU47gYgdFzcqri0HQiR Ms5fYsUYeBVaYnvbURNkYz54/OzBeMkQTqgmFM9GOt2MFUNN5gwu6hPQAGzAmo51 nx83cI1AxbRiJ4pnnOF7yLvDKmcUTkuWBUMquMMQqYgHDpaqkatcxXBEMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMhjpecL04DCtBt90BkgKnF4Xe51MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPUjqiFoI mJJdmcpLTLXRL4GQIsjhy4zHhcL+ktgQHFNdRRxc2JyQU4aQjtgNf7lYpqMG9ahP 6+bVkxVTr4XMnBgthx728o7/fA2G2d+zyqbmU6px616XkBSCGu5Oh3tKAt5Dqp+P KwdyX/plqN5UhKxBrqvLV37nIqpTsbEWuAMgf16dj2bcaojjCwRMoCvn25rF9g6P /LE9PdaK3f43KImGHf8tfguqIbamLJDtVunJcHt3qRZ8immTToCU/Rn7CSJnzbph 6kxhfvMXZ1s6OLfNEuZvBwFHxdbdlW+1AGY60oBDaB0NA0gNLWCVyLP/jbmr1qHU 4OEH6PjzRuNCxg== -----END CERTIFICATE-----Generated at Tue Jun 30 08:37:29 2026 by rpki-client