$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: oHyzzYmJumtisDmzjEe5uLHilIqCYSDs1YOUhhuKJIs= Subject key identifier: 20:07:3F:EE:85:85:89:4A:1B:E0:88:50:EE:4C:35:64:31:8A:95:6D Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019EF5A48149A8EEACFAE396B806F56C9378 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13DA Signing time: Tue 23 Jun 2026 18:00:59 +0000 Manifest this update: Tue 23 Jun 2026 18:00:59 +0000 Manifest next update: Wed 24 Jun 2026 18:00:59 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: ksJY6txK0D5O5OnEfFbNNkU8Zg9gSGjsYVRw1uJn6MY=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Jun 2026 13:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:f5:a4:81:49:a8:ee:ac:fa:e3:96:b8:06:f5:6c:93:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 23 18:00:59 2026 GMT Not After : Jun 24 18:00:59 2026 GMT Subject: CN=20073fee8585894a1be08850ee4c3564318a956d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:93:74:ed:3c:8e:62:2f:d2:02:63:3c:43: e4:cd:bd:96:92:18:ba:03:37:04:bf:89:e4:4f:a4: 9f:a7:f3:92:d5:89:39:e6:d1:25:25:38:cb:72:8e: 0e:20:ac:f6:9b:16:09:c5:99:2b:10:81:88:c2:4f: e2:b2:8c:4e:8a:0f:7a:92:cc:29:9e:6a:9a:c7:95: 5d:1c:6b:bc:f3:60:f1:14:ee:5f:75:e3:8c:af:f6: 62:71:c7:99:11:32:32:7b:17:96:9f:1a:94:3e:19: 63:4b:f3:46:c4:0f:71:b3:ec:16:68:0b:6d:f3:e4: 4d:80:00:b2:c2:4e:2e:f8:48:0d:bc:5d:e0:23:66: 8a:33:31:28:a8:6e:3e:5e:5c:a4:37:62:98:7f:af: 32:1c:87:00:d8:23:e5:93:e5:56:39:84:55:73:bc: 36:b2:9c:a5:ff:52:73:fc:0d:76:08:c8:92:14:49: 9a:27:bc:71:8f:2a:d6:72:eb:24:6d:60:be:83:05: 8a:40:af:f8:f1:f7:36:c8:23:10:40:8a:9f:c2:33: 67:8c:c1:39:0d:82:d1:cc:5c:e3:75:5b:7b:25:bb: b2:11:34:cb:a2:0d:7d:4b:f2:7d:36:c1:2d:d5:8d: d4:50:7a:b3:ce:11:07:67:82:a2:1d:01:9d:3c:b5: 41:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:07:3F:EE:85:85:89:4A:1B:E0:88:50:EE:4C:35:64:31:8A:95:6D X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:4f:8a:4a:41:e8:78:31:42:24:89:d2:c2:75:da:75:d3:57: 6a:a5:5d:b5:fc:bb:6b:0d:62:a0:6b:7a:4c:fc:ff:56:9c:56: 90:65:91:ca:a6:bd:ab:c4:de:a6:23:ea:91:17:3f:97:25:39: 2e:ad:33:52:05:2c:71:5a:94:a0:dd:fc:1f:9b:33:43:c1:b2: f1:93:b6:01:6e:d2:8b:25:37:13:81:81:fe:26:ff:23:9c:78: 0d:ee:5c:eb:72:fb:60:17:09:e6:c3:22:07:20:99:cf:71:7f: 74:63:b9:f0:a1:b0:ef:fa:33:76:9d:bb:68:96:00:bd:d6:81: b9:a1:a7:d5:ec:15:74:ee:44:6a:e5:7c:00:05:58:05:0d:3b: ed:f0:f9:aa:e7:b6:d7:0e:79:0e:1f:fc:22:1d:a7:07:14:c4: b9:b2:27:82:22:3b:41:2c:a3:f8:83:4e:aa:88:6d:16:42:90: 00:b9:f2:41:c1:2d:a3:ea:95:78:0a:e2:ab:17:7f:84:15:1a: 10:c5:17:1b:3c:5e:22:13:7b:40:66:dc:b9:c7:9f:3e:e5:7c: 63:3a:7e:97:04:08:01:dc:27:68:8f:fc:bd:71:c4:eb:8e:68: e5:36:dc:3b:0b:5b:ce:02:bc:3c:60:5a:df:2a:4e:ee:f3:d1: 7d:2d:a4:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ71pIFJqO6s+uOWuAb1bJN4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjIzMTgwMDU5WhcNMjYwNjI0MTgwMDU5WjAzMTEwLwYDVQQD EygyMDA3M2ZlZTg1ODU4OTRhMWJlMDg4NTBlZTRjMzU2NDMxOGE5NTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6qTdO08jmIv0gJjPEPkzb2Wkhi6 AzcEv4nkT6Sfp/OS1Yk55tElJTjLco4OIKz2mxYJxZkrEIGIwk/isoxOig96kswp nmqax5VdHGu882DxFO5fdeOMr/ZicceZETIyexeWnxqUPhljS/NGxA9xs+wWaAtt 8+RNgACywk4u+EgNvF3gI2aKMzEoqG4+XlykN2KYf68yHIcA2CPlk+VWOYRVc7w2 spyl/1Jz/A12CMiSFEmaJ7xxjyrWcuskbWC+gwWKQK/48fc2yCMQQIqfwjNnjME5 DYLRzFzjdVt7JbuyETTLog19S/J9NsEt1Y3UUHqzzhEHZ4KiHQGdPLVBAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCAHP+6FhYlKG+CIUO5MNWQxipVtMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdU+KSkHo eDFCJInSwnXaddNXaqVdtfy7aw1ioGt6TPz/VpxWkGWRyqa9q8TepiPqkRc/lyU5 Lq0zUgUscVqUoN38H5szQ8Gy8ZO2AW7SiyU3E4GB/ib/I5x4De5c63L7YBcJ5sMi ByCZz3F/dGO58KGw7/ozdp27aJYAvdaBuaGn1ewVdO5EauV8AAVYBQ077fD5que2 1w55Dh/8Ih2nBxTEubIngiI7QSyj+INOqohtFkKQALnyQcEto+qVeAriqxd/hBUa EMUXGzxeIhN7QGbcucefPuV8Yzp+lwQIAdwnaI/8vXHE645o5TbcOwtbzgK8PGBa 3ypO7vPRfS2kYw== -----END CERTIFICATE-----Generated at Tue Jun 23 23:17:46 2026 by rpki-client