
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: tTslmeeMsPHQTBrKyOGPc0MxfgfkF3azEQUSbvUthEE=
Subject key identifier: 13:E6:60:94:F3:4C:E5:5B:9B:DE:5B:6B:8E:44:8C:7C:B9:52:5F:90
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019CF0F1DB433EF3D1DD14A951D037555272
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 12CD
Signing time: Sun 15 Mar 2026 10:01:47 +0000
Manifest this update: Sun 15 Mar 2026 10:01:47 +0000
Manifest next update: Mon 16 Mar 2026 10:01:47 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=)
3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=)
8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: YYFl4OpFg2HJaAGWQt9ACsbcQHfXMjPjuyr49/vEi1E=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 10:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f0:f1:db:43:3e:f3:d1:dd:14:a9:51:d0:37:55:52:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Mar 15 10:01:47 2026 GMT
Not After : Mar 16 10:01:47 2026 GMT
Subject: CN=13e66094f34ce55b9bde5b6b8e448c7cb9525f90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cf:d7:a2:7c:1e:ee:93:a8:33:f4:15:d8:5a:
db:12:d8:01:01:98:31:f5:57:c9:83:86:7f:1a:1a:
66:0f:00:17:79:3f:5d:a0:b1:20:38:45:95:c9:4f:
53:cc:dc:a3:3b:05:58:55:67:8f:0c:f2:9f:50:7f:
ca:59:c0:41:f3:7a:5d:03:21:ae:bb:10:e1:72:e6:
88:a3:3e:32:41:6f:02:f8:af:2b:8c:81:7b:56:14:
26:16:c3:8f:1c:69:1a:8a:eb:61:f2:42:af:16:2f:
d7:16:68:89:a3:2c:d2:b9:92:05:57:da:51:b7:24:
f7:71:0d:38:fa:47:b6:3c:34:1d:d5:e9:34:d2:64:
90:0b:99:2f:fe:e8:f8:02:9d:1f:e7:3a:32:6d:1c:
58:3f:d3:53:cb:de:9c:1f:0c:8f:73:e4:fb:67:8e:
b7:ce:68:01:23:3a:bd:54:3b:ec:12:5e:aa:a8:10:
d4:35:ad:48:13:1b:8b:83:3b:80:7f:3f:41:f7:a7:
91:50:db:a5:a9:cd:8d:00:ce:d8:5b:87:e1:4a:28:
e8:23:85:cc:15:31:f3:c2:1b:8d:75:8f:76:6d:37:
2a:09:7b:47:96:42:fa:1e:59:d5:55:6d:84:c0:29:
61:e6:09:0a:f1:1c:6d:3c:fe:2a:24:25:31:a0:6c:
12:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E6:60:94:F3:4C:E5:5B:9B:DE:5B:6B:8E:44:8C:7C:B9:52:5F:90
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:20:06:c7:c7:da:24:3c:5e:f8:43:c4:ab:ec:fc:a8:ba:6e:
6e:6c:66:23:8b:e5:98:fb:6d:72:6e:28:59:77:3c:6b:9f:9d:
cb:3e:76:a1:6a:16:68:77:75:78:e5:5b:0f:0e:4d:02:59:5b:
42:b4:76:60:59:96:21:cb:c0:ff:cb:7f:f6:44:c2:5e:05:10:
e9:b7:e4:34:3a:d5:92:61:60:8b:a4:1e:d9:b0:95:eb:26:39:
cb:c1:12:26:f6:26:66:f2:c2:7f:89:f5:9b:01:b0:4e:49:13:
bf:d8:e6:bc:2a:1b:da:46:a7:24:b8:60:44:35:2f:43:45:14:
c8:84:e9:ec:55:b6:bc:e0:45:0d:d8:09:4c:56:ad:d4:7c:05:
31:c8:98:db:3c:b0:51:b5:bb:a7:f2:81:50:16:e1:b3:2c:67:
4d:f2:38:25:64:e4:bb:b2:47:be:37:b7:de:b5:67:be:4a:7c:
c2:3c:e9:6f:8d:97:38:a9:82:5d:c3:33:16:14:18:0a:a4:f1:
35:e2:64:e0:b3:14:df:69:26:00:bb:2f:8f:87:74:17:8c:cb:
c4:c0:f0:12:15:cb:dd:4a:af:56:9a:ad:05:36:61:82:0b:44:
2c:17:57:48:47:42:f9:34:18:fe:7f:87:10:34:4f:f3:33:fd:
ef:9d:08:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 15 17:58:28 2026 by rpki-client