$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: jFOaDSCr0hq/YjriPS2zPYyYTxnQnRhng2Ki6vYjFyA= Subject key identifier: DB:BB:83:C7:C8:56:43:98:91:EC:95:E7:55:E2:18:63:BD:75:45:1D Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019C8E73DC37B86887B241A43A622DB5EC8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 129A Signing time: Tue 24 Feb 2026 07:01:23 +0000 Manifest this update: Tue 24 Feb 2026 07:01:23 +0000 Manifest next update: Wed 25 Feb 2026 07:01:23 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: l7N8X3m2/tS3DHynUm6dg9g1rhdVDXWY5lY3a8bkQA8=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 25 Feb 2026 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:8e:73:dc:37:b8:68:87:b2:41:a4:3a:62:2d:b5:ec:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Feb 24 07:01:23 2026 GMT Not After : Feb 25 07:01:23 2026 GMT Subject: CN=dbbb83c7c856439891ec95e755e21863bd75451d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:70:65:fd:ed:59:87:6b:0d:a8:6d:d4:4b:b6: a9:35:c6:62:31:89:df:ab:d8:e1:9c:58:13:e4:e9: a3:ec:75:0d:ca:d8:61:8a:02:b2:c2:04:f7:e0:77: a6:a2:ea:d4:b5:78:7c:19:7e:21:e9:91:b6:78:36: a4:ed:24:2f:b3:76:10:02:e0:ac:52:71:e5:a7:50: 53:e7:36:04:ff:f7:90:cc:45:75:f6:94:8a:a8:56: e4:61:00:09:57:76:12:59:57:d0:3a:1f:07:be:0d: 43:49:8f:49:e2:02:27:60:bf:58:31:a7:d2:74:f8: 39:2c:11:34:6a:a3:51:3d:85:84:ed:4d:c0:39:a0: 05:68:53:a3:3e:ff:a3:e9:86:7c:81:bf:be:f4:70: ce:6b:0a:10:ac:df:e7:3c:b3:a7:98:06:09:ca:04: 6c:13:a3:71:ac:0c:52:41:cf:7d:b7:0a:c2:ab:54: 57:0c:51:63:95:8d:62:95:2d:e2:7c:4a:a5:60:14: b9:85:75:45:a8:be:72:86:55:f1:89:bc:77:96:cb: 73:4c:ee:02:49:49:31:31:4e:bd:e8:5a:fe:55:ae: 9d:d0:73:5b:ec:2a:5f:fa:a3:ad:97:b7:21:e6:d4: b1:29:d1:45:19:e5:7d:0b:53:32:2e:0a:29:c7:c6: 3d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BB:83:C7:C8:56:43:98:91:EC:95:E7:55:E2:18:63:BD:75:45:1D X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6e:b7:2f:5a:0a:05:1e:b7:ff:91:53:93:b1:d4:90:3a:a3: 62:3a:24:3c:e7:4c:26:ed:7b:31:bd:de:0b:bb:94:fa:7a:d7: e7:6e:49:78:49:71:6e:70:87:18:bf:21:56:26:5d:02:10:bb: 3b:72:ca:b4:8e:cd:bd:7b:07:3d:c9:9a:41:02:53:4e:7d:29: 98:cf:3d:fe:4d:2e:d6:38:fe:3e:5b:5a:0e:a2:a9:1b:ac:16: fa:1c:86:5a:7a:ba:f9:23:70:9e:8c:7d:13:98:74:7e:97:bd: e5:9f:d0:e1:04:3a:25:b1:0c:98:0e:5d:d9:aa:9c:13:a5:86: a6:86:6b:54:e8:25:6b:a6:66:dd:72:25:bb:0e:8e:35:87:d2: 52:a8:6d:d7:ae:47:32:d0:24:46:6f:78:c0:d1:03:ea:02:52: 35:a6:ef:4b:b9:98:f2:a7:44:b1:f3:94:a9:d0:2f:c0:07:0d: 41:39:bb:b7:ee:80:5b:d9:f0:fc:c2:9b:d8:33:19:a9:31:5b: da:0d:99:f3:d1:15:f8:26:84:8c:b4:d7:b8:8c:40:37:b4:a1: 36:2d:56:05:41:74:7b:e5:6d:01:b1:a0:a2:2d:86:20:e6:54: f4:b2:f6:61:01:66:31:f0:2d:18:7d:6f:9c:e4:cc:3d:e6:2d: 82:eb:23:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyOc9w3uGiHskGkOmItteyPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMjI0MDcwMTIzWhcNMjYwMjI1MDcwMTIzWjAzMTEwLwYDVQQD EyhkYmJiODNjN2M4NTY0Mzk4OTFlYzk1ZTc1NWUyMTg2M2JkNzU0NTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHBl/e1Zh2sNqG3US7apNcZiMYnf q9jhnFgT5Omj7HUNythhigKywgT34HemourUtXh8GX4h6ZG2eDak7SQvs3YQAuCs UnHlp1BT5zYE//eQzEV19pSKqFbkYQAJV3YSWVfQOh8Hvg1DSY9J4gInYL9YMafS dPg5LBE0aqNRPYWE7U3AOaAFaFOjPv+j6YZ8gb++9HDOawoQrN/nPLOnmAYJygRs E6NxrAxSQc99twrCq1RXDFFjlY1ilS3ifEqlYBS5hXVFqL5yhlXxibx3lstzTO4C SUkxMU696Fr+Va6d0HNb7Cpf+qOtl7ch5tSxKdFFGeV9C1MyLgopx8Y9EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNu7g8fIVkOYkeyV51XiGGO9dUUdMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC263L1oK BR63/5FTk7HUkDqjYjokPOdMJu17Mb3eC7uU+nrX525JeElxbnCHGL8hViZdAhC7 O3LKtI7NvXsHPcmaQQJTTn0pmM89/k0u1jj+PltaDqKpG6wW+hyGWnq6+SNwnox9 E5h0fpe95Z/Q4QQ6JbEMmA5d2aqcE6WGpoZrVOgla6Zm3XIluw6ONYfSUqht165H MtAkRm94wNED6gJSNabvS7mY8qdEsfOUqdAvwAcNQTm7t+6AW9nw/MKb2DMZqTFb 2g2Z89EV+CaEjLTXuIxAN7ShNi1WBUF0e+VtAbGgoi2GIOZU9LL2YQFmMfAtGH1v nOTMPeYtgusjOw== -----END CERTIFICATE-----Generated at Tue Feb 24 12:01:36 2026 by rpki-client