$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: godaSr8/Fop0O+wuhByJ2vCvCPlvP0ezC7c6ig/mkig= Subject key identifier: D1:88:F8:55:9E:47:AB:CD:28:10:13:B9:EA:4A:52:F6:9E:38:3F:92 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019D9CD12EE7AE12CB037F87448046556D92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1326 Signing time: Fri 17 Apr 2026 19:00:47 +0000 Manifest this update: Fri 17 Apr 2026 19:00:47 +0000 Manifest next update: Sat 18 Apr 2026 19:00:47 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: nBTFoHtXa570kuVDYh4O2gPGGQiwl74R1czCasXF7Ik=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 16:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:9c:d1:2e:e7:ae:12:cb:03:7f:87:44:80:46:55:6d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 17 19:00:47 2026 GMT Not After : Apr 18 19:00:47 2026 GMT Subject: CN=d188f8559e47abcd281013b9ea4a52f69e383f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1b:a1:35:69:b7:e7:55:8d:17:66:5f:ef:fb: 1c:17:b2:d4:49:17:cc:22:b9:ab:9d:d2:3e:49:40: 10:73:af:1c:9a:f4:6a:fc:7a:c1:98:c6:a0:35:b9: 07:0b:3a:c9:29:dc:f7:2a:9b:63:be:9f:4b:4c:af: 69:11:06:d7:25:6b:35:0e:c9:92:97:75:55:69:12: 71:a4:48:85:07:eb:98:67:3e:24:4a:d6:fb:37:1b: ee:0b:91:1a:cc:17:fb:cf:f5:db:e6:a1:3b:30:5a: 31:63:27:6f:1e:4f:64:2d:f8:dd:99:17:cb:a1:8c: bb:30:a2:fa:83:e5:40:ed:7d:78:a9:b7:05:0e:85: e8:2e:6e:ae:86:ff:53:01:ec:b3:6b:8a:26:bd:8f: cc:6f:29:60:1a:11:8e:f2:09:17:c0:6d:99:6e:1e: 11:ea:99:00:64:4b:de:fb:41:31:5f:03:c3:e3:58: 86:f8:1a:fc:27:75:a2:b7:94:13:94:7f:cb:c0:2a: 8f:24:67:ab:76:29:9d:a4:60:f3:c3:52:d7:e2:32: 64:9b:4f:a0:36:df:ed:f0:4e:ab:ca:e8:19:77:eb: 0f:e3:0a:14:1a:bd:30:0f:e2:2e:16:09:09:66:dd: a6:bb:21:12:6f:74:f0:58:37:0a:2c:ed:58:8f:22: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:88:F8:55:9E:47:AB:CD:28:10:13:B9:EA:4A:52:F6:9E:38:3F:92 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:7a:c6:a2:be:29:cb:c4:c7:33:b8:de:e6:21:f8:71:12:ad: c5:f7:20:bf:1c:f8:18:27:7c:3a:33:6b:25:3e:2a:64:b3:27: e4:3e:2c:cf:d7:c0:24:c0:da:e0:cd:c8:51:9d:c8:f1:86:d1: e2:4f:f1:9d:01:b7:09:fc:53:1e:63:7e:3a:f4:04:b9:ec:1b: 54:0d:c2:d8:e9:7d:9d:d8:e1:fd:d1:1d:6a:04:db:d1:9b:29: ad:0e:8e:07:f0:53:2e:ba:15:53:d4:3c:79:00:df:fc:9b:8a: a6:29:58:74:ac:7e:c0:fc:e2:05:6a:00:da:0d:75:b8:46:00: 10:50:ff:a9:30:e8:67:c8:e5:7b:ac:27:5d:dc:d3:23:8f:fd: e3:92:54:ed:8a:70:17:10:7f:ec:e9:af:9a:52:9e:8f:b2:02: c4:0f:cc:9f:86:75:25:48:be:fa:c4:89:37:c6:d8:0c:ac:74: 27:d6:61:a8:7b:d6:60:1e:f7:3d:9b:aa:32:fc:0e:f9:5b:b6: d5:19:6a:49:02:e1:ea:14:cc:47:ed:12:a5:a7:0e:97:ad:d8: f3:28:a6:35:ed:6f:f3:d9:e4:c4:e1:e6:c9:e8:a7:79:2b:94: ac:f5:02:e2:07:b7:35:18:3c:c2:9a:02:67:2e:dd:4c:97:68: 5a:86:16:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2c0S7nrhLLA3+HRIBGVW2SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDE3MTkwMDQ3WhcNMjYwNDE4MTkwMDQ3WjAzMTEwLwYDVQQD EyhkMTg4Zjg1NTllNDdhYmNkMjgxMDEzYjllYTRhNTJmNjllMzgzZjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhuhNWm351WNF2Zf7/scF7LUSRfM IrmrndI+SUAQc68cmvRq/HrBmMagNbkHCzrJKdz3Kptjvp9LTK9pEQbXJWs1DsmS l3VVaRJxpEiFB+uYZz4kStb7NxvuC5EazBf7z/Xb5qE7MFoxYydvHk9kLfjdmRfL oYy7MKL6g+VA7X14qbcFDoXoLm6uhv9TAeyza4omvY/MbylgGhGO8gkXwG2Zbh4R 6pkAZEve+0ExXwPD41iG+Br8J3Wit5QTlH/LwCqPJGerdimdpGDzw1LX4jJkm0+g Nt/t8E6ryugZd+sP4woUGr0wD+IuFgkJZt2muyESb3TwWDcKLO1YjyI91wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNGI+FWeR6vNKBATuepKUvaeOD+SMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfXrGor4p y8THM7je5iH4cRKtxfcgvxz4GCd8OjNrJT4qZLMn5D4sz9fAJMDa4M3IUZ3I8YbR 4k/xnQG3CfxTHmN+OvQEuewbVA3C2Ol9ndjh/dEdagTb0ZsprQ6OB/BTLroVU9Q8 eQDf/JuKpilYdKx+wPziBWoA2g11uEYAEFD/qTDoZ8jle6wnXdzTI4/945JU7Ypw FxB/7OmvmlKej7ICxA/Mn4Z1JUi++sSJN8bYDKx0J9ZhqHvWYB73PZuqMvwO+Vu2 1RlqSQLh6hTMR+0SpacOl63Y8yimNe1v89nkxOHmyeineSuUrPUC4ge3NRg8wpoC Zy7dTJdoWoYWHA== -----END CERTIFICATE-----Generated at Sat Apr 18 02:46:48 2026 by rpki-client