$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: JSM21IbCzX6WmT9BQ9qxR9dBZrW+4W2WpjVJOxQFJ/c= Subject key identifier: 61:5E:B5:45:07:9E:11:EE:53:F1:02:CD:61:21:AD:50:AD:65:49:20 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E23247DC827A056AF2BFCA15002A0F4B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 136D Signing time: Wed 13 May 2026 21:00:54 +0000 Manifest this update: Wed 13 May 2026 21:00:54 +0000 Manifest next update: Thu 14 May 2026 21:00:54 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 1rKLhErvauPGxwSJQ9+g4ju/9xs//A4NWXE1tNLcuNg=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:23:24:7d:c8:27:a0:56:af:2b:fc:a1:50:02:a0:f4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 13 21:00:54 2026 GMT Not After : May 14 21:00:54 2026 GMT Subject: CN=615eb545079e11ee53f102cd6121ad50ad654920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5e:b6:04:0f:36:28:9d:c8:81:17:f8:4f:aa: 32:9a:9e:dd:77:c7:32:6d:c3:49:d0:cc:37:7e:d3: 64:b2:f9:c3:89:2c:f6:ce:d5:54:48:b9:f6:9a:a4: e9:a5:28:64:e9:1d:99:22:ab:9c:23:83:f8:fe:0d: fb:75:8d:1f:42:cb:7a:5c:99:03:ae:54:49:35:71: c0:9b:d6:d1:84:56:99:53:cc:80:78:c1:77:69:d7: 53:63:2d:b5:7c:85:ab:61:55:fd:35:b4:a5:6f:11: 5b:7d:39:fb:49:92:d9:82:ed:db:77:2b:94:1a:e9: f6:d8:d8:15:44:d0:d0:84:96:31:af:a1:41:12:1b: e1:69:ec:d8:b2:d5:41:f1:cd:91:09:5c:cd:2d:35: b9:6b:fb:65:5a:f9:52:1d:da:91:06:de:ac:6d:6d: 28:1c:6e:bf:f4:1e:72:99:7d:e9:9b:fd:5a:a6:e8: cd:60:5d:21:3e:a1:11:9d:8b:fa:f5:9d:5a:75:32: f7:c5:31:9e:65:bb:c3:ad:ee:a2:62:eb:84:3f:11: 30:54:5b:f7:b2:eb:ce:a8:65:da:cc:f5:ab:52:08: de:ae:ae:cf:e9:22:de:bd:45:75:0a:34:79:49:a4: 5b:66:99:88:04:ca:c8:18:78:7f:e4:a8:c5:fe:f9: 3a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5E:B5:45:07:9E:11:EE:53:F1:02:CD:61:21:AD:50:AD:65:49:20 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:e8:43:3d:6d:d5:12:6d:98:b6:16:cc:74:73:17:62:02:90: aa:d4:b5:ca:20:87:8f:90:2c:7d:a6:84:31:65:59:5a:d3:53: a5:e8:0e:1f:d2:fd:9f:d4:b0:5f:16:73:a7:46:c0:62:e3:e0: a1:08:74:bd:29:86:1b:00:ee:11:57:38:37:e1:75:f3:ca:0e: c1:51:6c:8e:81:43:5a:5d:bb:19:f5:e6:08:4a:a9:19:bb:e0: 59:d8:49:60:53:08:3f:ae:3b:c3:c9:e4:88:08:bc:e6:a6:9b: b3:bf:ab:22:2f:51:77:0d:62:3c:26:ff:6f:bc:fd:f7:2b:6b: 76:0c:b9:76:60:10:ba:fc:17:8b:67:5b:df:3e:69:26:6e:8f: 86:5c:32:66:6a:60:60:1e:72:78:bc:1a:bc:77:43:ff:58:ed: 93:ad:bf:9c:bf:68:cd:ec:6f:76:ef:14:ca:26:fe:6a:50:5d: 7d:de:54:ee:a7:6d:be:33:f1:46:72:be:69:23:aa:2c:ad:ac: b9:63:76:ee:2e:24:26:c5:db:02:a0:61:76:4a:31:81:e8:64: 42:82:ce:0f:69:99:59:27:91:5a:77:94:bd:a2:c1:8d:b5:43: 27:b9:8f:e9:96:b8:59:ce:24:24:7c:23:10:69:77:6d:cc:a1: 81:17:bf:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4jJH3IJ6BWryv8oVACoPSwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTEzMjEwMDU0WhcNMjYwNTE0MjEwMDU0WjAzMTEwLwYDVQQD Eyg2MTVlYjU0NTA3OWUxMWVlNTNmMTAyY2Q2MTIxYWQ1MGFkNjU0OTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArV62BA82KJ3IgRf4T6oymp7dd8cy bcNJ0Mw3ftNksvnDiSz2ztVUSLn2mqTppShk6R2ZIqucI4P4/g37dY0fQst6XJkD rlRJNXHAm9bRhFaZU8yAeMF3addTYy21fIWrYVX9NbSlbxFbfTn7SZLZgu3bdyuU Gun22NgVRNDQhJYxr6FBEhvhaezYstVB8c2RCVzNLTW5a/tlWvlSHdqRBt6sbW0o HG6/9B5ymX3pm/1apujNYF0hPqERnYv69Z1adTL3xTGeZbvDre6iYuuEPxEwVFv3 suvOqGXazPWrUgjerq7P6SLevUV1CjR5SaRbZpmIBMrIGHh/5KjF/vk60QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGFetUUHnhHuU/ECzWEhrVCtZUkgMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo+hDPW3V Em2YthbMdHMXYgKQqtS1yiCHj5AsfaaEMWVZWtNTpegOH9L9n9SwXxZzp0bAYuPg oQh0vSmGGwDuEVc4N+F188oOwVFsjoFDWl27GfXmCEqpGbvgWdhJYFMIP647w8nk iAi85qabs7+rIi9Rdw1iPCb/b7z99ytrdgy5dmAQuvwXi2db3z5pJm6PhlwyZmpg YB5yeLwavHdD/1jtk62/nL9ozexvdu8Uyib+alBdfd5U7qdtvjPxRnK+aSOqLK2s uWN27i4kJsXbAqBhdkoxgehkQoLOD2mZWSeRWneUvaLBjbVDJ7mP6Za4Wc4kJHwj EGl3bcyhgRe/ig== -----END CERTIFICATE-----Generated at Thu May 14 07:48:30 2026 by rpki-client