$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: vg9cTR2SQxut1vtuJrr1fZ96t2ICAlfWYL+mIdbdQU8= Subject key identifier: 62:5B:0D:70:44:E7:63:AA:37:52:D9:CB:3D:4A:E6:5B:E5:B9:DC:D5 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DB7DADCA6F368DB86BA6B1EBCAEA00713 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1334 Signing time: Thu 23 Apr 2026 01:01:06 +0000 Manifest this update: Thu 23 Apr 2026 01:01:06 +0000 Manifest next update: Fri 24 Apr 2026 01:01:06 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: laOTlNKNjrGDprtYGlZ0AQi9214DDlFwijTnDxYxymE=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Apr 2026 22:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b7:da:dc:a6:f3:68:db:86:ba:6b:1e:bc:ae:a0:07:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 23 01:01:06 2026 GMT Not After : Apr 24 01:01:06 2026 GMT Subject: CN=625b0d7044e763aa3752d9cb3d4ae65be5b9dcd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:36:31:d3:65:3e:4f:c6:04:9c:b6:a3:78:b2: 6e:bd:5f:c0:4f:6f:70:42:88:b5:36:53:d5:55:8a: 3a:e8:2b:87:74:d4:4b:6f:10:e6:c5:cd:bb:2a:0b: 40:df:21:c7:fb:a4:d8:85:dd:51:7c:8a:33:2b:06: 4e:c2:fa:41:d8:b3:c6:a8:d6:b7:21:d2:28:cc:3a: 5a:e3:0e:36:ca:11:c4:29:96:3f:f4:8f:6b:a8:2f: 03:eb:4d:ea:06:13:a8:a0:3a:f9:dd:fe:28:aa:64: da:15:b1:e1:aa:34:c6:04:30:e7:26:cb:39:c3:ce: 14:27:e2:5b:eb:ff:31:4a:5f:a0:7c:d4:69:75:db: 70:ab:eb:1a:25:e2:e2:ef:28:f7:52:25:13:8f:47: 28:58:06:e3:27:8d:7a:35:72:97:e2:e8:75:90:1e: 6c:ad:d0:f0:3b:bb:b0:0c:8f:a4:10:a7:a4:5f:de: 40:cc:93:ed:c2:34:92:dc:f2:dc:7d:68:39:06:d8: de:2e:11:58:f7:81:c8:4c:1d:ef:1c:b0:a6:b2:0f: 82:23:b1:77:49:0b:53:e0:41:b3:59:75:4c:63:61: 3d:de:01:f2:d9:46:92:53:cc:fc:aa:47:bb:89:d3: 5c:6c:ce:74:0d:42:98:9d:ca:62:7a:5d:46:97:3f: 54:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5B:0D:70:44:E7:63:AA:37:52:D9:CB:3D:4A:E6:5B:E5:B9:DC:D5 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:fe:8a:db:27:32:12:91:97:89:3e:0b:7c:8f:38:44:16:96: 7b:d0:fc:1a:55:63:7a:e2:80:a5:2a:95:0c:5d:c8:84:05:69: f7:b0:c1:c8:1f:f7:4b:00:2d:a5:79:1d:98:1f:fe:bc:07:bd: 2c:d0:ae:12:3f:55:b8:d5:cc:fe:17:46:37:1a:b4:40:9c:85: 07:51:6b:ea:40:d9:5c:fb:2d:1c:81:8f:72:54:fb:01:43:5c: a3:f4:68:fe:7f:49:f8:eb:3d:8e:94:7d:e3:40:32:4e:41:f0: d8:62:cb:6d:6d:af:a9:a2:89:ba:a3:7a:ed:93:34:b0:f0:c7: 80:76:55:98:8c:78:2e:14:90:78:f4:5b:b4:75:3b:b1:53:c4: 89:63:a8:1d:2c:e0:46:5d:e6:cf:f9:17:05:6f:5c:cd:73:9a: c2:c1:01:f4:3e:27:3e:54:cb:d2:10:6b:d9:2d:90:36:57:31: d2:01:4d:51:d7:ae:70:20:8f:a8:3c:1c:a1:2c:16:97:f1:58: 70:3d:04:2d:40:7b:e1:ee:60:b0:7d:af:16:04:ad:2a:1d:9e: 00:de:ab:ff:81:f4:5b:61:e1:8e:e6:9f:22:18:15:54:2d:d9: 52:d1:d3:89:f6:59:e9:c3:37:96:62:ad:6d:d8:81:e3:ed:1d: ce:44:c8:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ232tym82jbhrprHryuoAcTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIzMDEwMTA2WhcNMjYwNDI0MDEwMTA2WjAzMTEwLwYDVQQD Eyg2MjViMGQ3MDQ0ZTc2M2FhMzc1MmQ5Y2IzZDRhZTY1YmU1YjlkY2Q1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhjYx02U+T8YEnLajeLJuvV/AT29w Qoi1NlPVVYo66CuHdNRLbxDmxc27KgtA3yHH+6TYhd1RfIozKwZOwvpB2LPGqNa3 IdIozDpa4w42yhHEKZY/9I9rqC8D603qBhOooDr53f4oqmTaFbHhqjTGBDDnJss5 w84UJ+Jb6/8xSl+gfNRpddtwq+saJeLi7yj3UiUTj0coWAbjJ416NXKX4uh1kB5s rdDwO7uwDI+kEKekX95AzJPtwjSS3PLcfWg5BtjeLhFY94HITB3vHLCmsg+CI7F3 SQtT4EGzWXVMY2E93gHy2UaSU8z8qke7idNcbM50DUKYncpiel1Glz9UIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJbDXBE52OqN1LZyz1K5lvludzVMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjv6K2ycy EpGXiT4LfI84RBaWe9D8GlVjeuKApSqVDF3IhAVp97DByB/3SwAtpXkdmB/+vAe9 LNCuEj9VuNXM/hdGNxq0QJyFB1Fr6kDZXPstHIGPclT7AUNco/Ro/n9J+Os9jpR9 40AyTkHw2GLLbW2vqaKJuqN67ZM0sPDHgHZVmIx4LhSQePRbtHU7sVPEiWOoHSzg Rl3mz/kXBW9czXOawsEB9D4nPlTL0hBr2S2QNlcx0gFNUdeucCCPqDwcoSwWl/FY cD0ELUB74e5gsH2vFgStKh2eAN6r/4H0W2HhjuafIhgVVC3ZUtHTifZZ6cM3lmKt bdiB4+0dzkTIVw== -----END CERTIFICATE-----Generated at Thu Apr 23 03:52:35 2026 by rpki-client