$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: AkKMlD8Mswr92ob+XgOfXdyVDD1a+pAgSpRpSnaj3vI= Subject key identifier: 6B:2A:42:B1:B5:E1:E9:48:87:78:E6:A7:EB:4A:2F:E8:E0:29:E0:EE Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019EE254D2F44F1A9E93E219F897A909CB77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13D0 Signing time: Sat 20 Jun 2026 00:01:10 +0000 Manifest this update: Sat 20 Jun 2026 00:01:10 +0000 Manifest next update: Sun 21 Jun 2026 00:01:10 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: VhAzH+d22VKsFodgqtYExqXR84oM4Y0GI4sC+WZDHrE=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Jun 2026 23:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:e2:54:d2:f4:4f:1a:9e:93:e2:19:f8:97:a9:09:cb:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 20 00:01:10 2026 GMT Not After : Jun 21 00:01:10 2026 GMT Subject: CN=6b2a42b1b5e1e9488778e6a7eb4a2fe8e029e0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5e:c8:e3:72:95:58:ac:eb:23:62:eb:2a:6a: 3c:57:30:cf:2d:c9:55:28:5d:8f:30:8d:fa:a4:a2: aa:4e:f3:fc:40:0d:b5:a8:fd:85:58:1c:5f:ef:44: 75:31:3c:86:a4:95:24:67:3a:4b:49:3e:48:06:b1: 8e:f3:66:76:67:e3:1e:bb:03:45:38:01:07:55:95: 39:f6:8a:e8:b5:a8:22:ec:41:a3:9d:0e:d4:8d:89: db:7d:11:ed:1a:46:fa:6f:32:19:4b:3c:ae:62:aa: 0c:a0:a5:ea:dc:f6:21:65:49:df:d5:0e:00:ec:57: e3:b3:29:5f:c5:5d:77:52:df:c2:58:d0:0c:75:ca: 6c:13:2d:79:70:ed:46:a2:fd:cd:ba:ea:ca:26:f2: d6:75:d6:8f:e0:db:fe:d3:c2:58:e1:47:a9:59:67: be:73:3c:d9:14:0c:76:da:b3:9a:9a:4a:4f:f4:67: a1:04:ac:ee:68:db:f6:e0:10:4e:fb:47:1f:de:0a: eb:51:a8:aa:cd:32:fb:57:8a:8e:07:de:aa:46:4e: 35:68:5e:31:f8:21:20:09:ac:95:0c:e9:01:77:71: 8f:ae:99:92:75:f1:a8:d7:c7:10:e4:80:59:92:b7: a8:3d:6c:ef:8f:19:3e:82:fd:54:a2:ff:1e:3c:c8: ce:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2A:42:B1:B5:E1:E9:48:87:78:E6:A7:EB:4A:2F:E8:E0:29:E0:EE X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:19:f6:9b:81:39:00:a8:49:69:a4:25:4c:d2:61:be:55:69: 04:16:e7:58:74:2b:01:5a:bf:47:95:e3:98:ea:6d:95:e6:99: ed:09:2d:ff:00:34:7f:b3:06:79:f7:7c:69:fb:f5:34:4e:fe: 0b:ee:78:54:dc:10:1c:af:21:3d:98:d4:1e:9e:2e:e2:16:3b: 51:c9:22:59:b2:55:06:10:4d:3e:0e:7f:09:e6:25:a2:79:57: 42:a7:3c:73:59:be:3e:65:ea:ce:73:94:f3:c5:de:ae:71:7d: 82:26:ad:5a:ec:6a:da:29:0b:31:1d:76:d2:91:70:66:02:4f: 1f:7d:9f:d1:6f:dd:9c:33:fe:6a:fd:b8:e9:91:01:d1:ab:17: 88:64:64:f7:2f:6a:e8:61:d4:7c:94:e0:77:f3:f0:9a:18:a1: b6:a0:0d:cc:9f:8c:2a:62:ed:e9:00:7f:1b:fc:ef:a6:03:6b: 88:8d:c0:ce:ee:6e:da:ff:dc:9c:ba:66:75:3c:6b:74:81:5c: f3:1f:e9:26:98:4d:45:56:8e:71:f2:18:06:63:33:4c:fa:35: 9b:30:bf:31:6a:70:bc:b1:dd:1b:0e:ba:b9:c4:3e:04:6b:21: 11:30:27:96:15:6d:e3:23:c6:ca:ca:24:cb:ea:ac:89:cb:4b: 28:ea:9e:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ7iVNL0Txqek+IZ+JepCct3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjIwMDAwMTEwWhcNMjYwNjIxMDAwMTEwWjAzMTEwLwYDVQQD Eyg2YjJhNDJiMWI1ZTFlOTQ4ODc3OGU2YTdlYjRhMmZlOGUwMjllMGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkV7I43KVWKzrI2LrKmo8VzDPLclV KF2PMI36pKKqTvP8QA21qP2FWBxf70R1MTyGpJUkZzpLST5IBrGO82Z2Z+MeuwNF OAEHVZU59orotagi7EGjnQ7UjYnbfRHtGkb6bzIZSzyuYqoMoKXq3PYhZUnf1Q4A 7FfjsylfxV13Ut/CWNAMdcpsEy15cO1Gov3NuurKJvLWddaP4Nv+08JY4UepWWe+ czzZFAx22rOamkpP9GehBKzuaNv24BBO+0cf3grrUaiqzTL7V4qOB96qRk41aF4x +CEgCayVDOkBd3GPrpmSdfGo18cQ5IBZkreoPWzvjxk+gv1Uov8ePMjOhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGsqQrG14elIh3jmp+tKL+jgKeDuMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQxn2m4E5 AKhJaaQlTNJhvlVpBBbnWHQrAVq/R5XjmOptleaZ7Qkt/wA0f7MGefd8afv1NE7+ C+54VNwQHK8hPZjUHp4u4hY7UckiWbJVBhBNPg5/CeYlonlXQqc8c1m+PmXqznOU 88XernF9giatWuxq2ikLMR120pFwZgJPH32f0W/dnDP+av246ZEB0asXiGRk9y9q 6GHUfJTgd/PwmhihtqANzJ+MKmLt6QB/G/zvpgNriI3Azu5u2v/cnLpmdTxrdIFc 8x/pJphNRVaOcfIYBmMzTPo1mzC/MWpwvLHdGw66ucQ+BGshETAnlhVt4yPGysok y+qsictLKOqeyA== -----END CERTIFICATE-----Generated at Sat Jun 20 09:04:58 2026 by rpki-client