$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: x/D0n5nUGr53tBjyWOKQqfzvgOpe820qTLDB19/T+6c= Subject key identifier: 93:07:5B:61:0C:31:8F:48:6F:B6:23:8B:FC:99:E1:7F:98:7C:E9:E6 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019CB32521439BDD9AFB218267664B8C9C8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 12AD Signing time: Tue 03 Mar 2026 10:01:20 +0000 Manifest this update: Tue 03 Mar 2026 10:01:20 +0000 Manifest next update: Wed 04 Mar 2026 10:01:20 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: SOkBPapOEKH9h15OaucIhr8LKAw8bgolEd5q+FUOg2Q=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Mar 2026 07:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:b3:25:21:43:9b:dd:9a:fb:21:82:67:66:4b:8c:9c:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 3 10:01:20 2026 GMT Not After : Mar 4 10:01:20 2026 GMT Subject: CN=93075b610c318f486fb6238bfc99e17f987ce9e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:e4:2f:da:ec:48:2a:e0:ae:83:4d:97:be: c9:76:d0:cf:8d:b2:d4:f9:9e:ef:e9:4f:3e:74:7b: 8e:89:bb:95:4d:9e:f2:16:62:f9:a3:5b:93:b8:ec: cf:24:df:e9:42:1e:c8:e2:f7:ec:ce:88:f9:54:ef: 40:b8:5a:95:df:7b:16:38:53:39:5e:c8:95:04:b7: 69:06:f5:25:8b:61:55:e9:ef:b8:c2:f3:89:07:ae: 8a:d7:2f:85:3c:e8:90:10:3f:49:45:08:b3:da:5f: 20:8e:14:cf:4a:2c:b3:42:3b:f4:17:de:a2:24:8a: 76:83:ae:77:f1:02:37:e6:4b:9c:67:ac:b9:ef:ea: 9d:33:6c:58:52:e0:c2:74:e0:48:8e:c7:a1:53:cb: 48:9c:9d:e3:76:87:3d:59:f7:92:8e:75:ff:7c:e3: cd:76:0c:1f:81:09:39:87:f4:96:25:4c:0a:86:d4: af:c9:5b:ee:b9:fd:ad:57:f5:b4:18:dd:b3:e6:14: 5a:4f:46:1a:3e:d3:39:79:11:91:07:8d:34:4c:e0: 33:0b:c6:db:b0:f4:7f:9b:83:1b:24:1f:9d:9d:8a: 8b:c5:0e:28:02:ed:3c:d1:69:62:3e:2e:bf:ec:54: 96:cd:fc:35:18:34:37:69:b6:c2:dc:4c:45:d5:b4: 3a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:07:5B:61:0C:31:8F:48:6F:B6:23:8B:FC:99:E1:7F:98:7C:E9:E6 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:82:86:e5:50:49:2c:f1:02:33:52:0f:1f:27:da:61:4d:d4: 73:09:f7:54:78:f8:d2:85:f0:3a:cd:a5:75:95:e0:9a:a5:97: 68:ea:d2:7a:9c:ab:1f:ae:ef:7d:bb:a0:51:8a:cc:60:02:2f: 26:a2:b7:14:e9:93:e9:47:23:88:00:c9:3f:8b:2b:64:0d:e1: f0:97:32:66:03:36:a7:2b:39:36:37:7d:6c:8e:80:23:2d:b7: 7d:f1:fc:4d:e0:a1:5a:cc:f7:30:99:eb:25:72:d3:5d:d4:fa: 73:dc:8b:28:ef:d1:b9:0e:0b:ea:14:b8:31:d9:d6:92:b1:6c: 90:b1:ce:5c:50:3a:75:41:81:a8:00:ee:fd:77:a4:80:11:1b: 97:a9:08:48:17:f1:62:08:3a:90:90:bb:fc:a5:48:2d:d7:c2: 64:61:4a:10:52:77:d4:b8:20:98:f2:28:7e:11:49:07:9e:8b: f9:17:bf:9b:ee:af:07:5a:74:d9:73:e7:e9:6e:a8:b5:44:83: be:8a:38:af:ec:cf:aa:1f:df:e7:5c:c5:fd:f7:97:38:ae:d6: 9a:9a:3c:49:b2:d3:f4:a0:04:56:5e:d5:40:47:a9:20:6f:7d: 0f:dd:cd:fb:8d:ef:51:1c:82:07:f0:d0:86:ee:80:e9:4d:7a: 4a:e6:69:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZyzJSFDm92a+yGCZ2ZLjJyOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMzAzMTAwMTIwWhcNMjYwMzA0MTAwMTIwWjAzMTEwLwYDVQQD Eyg5MzA3NWI2MTBjMzE4ZjQ4NmZiNjIzOGJmYzk5ZTE3Zjk4N2NlOWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxXkL9rsSCrgroNNl77JdtDPjbLU +Z7v6U8+dHuOibuVTZ7yFmL5o1uTuOzPJN/pQh7I4vfszoj5VO9AuFqV33sWOFM5 XsiVBLdpBvUli2FV6e+4wvOJB66K1y+FPOiQED9JRQiz2l8gjhTPSiyzQjv0F96i JIp2g6538QI35kucZ6y57+qdM2xYUuDCdOBIjsehU8tInJ3jdoc9WfeSjnX/fOPN dgwfgQk5h/SWJUwKhtSvyVvuuf2tV/W0GN2z5hRaT0YaPtM5eRGRB400TOAzC8bb sPR/m4MbJB+dnYqLxQ4oAu080WliPi6/7FSWzfw1GDQ3abbC3ExF1bQ6kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJMHW2EMMY9Ib7Yji/yZ4X+YfOnmMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApoKG5VBJ LPECM1IPHyfaYU3Ucwn3VHj40oXwOs2ldZXgmqWXaOrSepyrH67vfbugUYrMYAIv JqK3FOmT6UcjiADJP4srZA3h8JcyZgM2pys5Njd9bI6AIy23ffH8TeChWsz3MJnr JXLTXdT6c9yLKO/RuQ4L6hS4MdnWkrFskLHOXFA6dUGBqADu/XekgBEbl6kISBfx Ygg6kJC7/KVILdfCZGFKEFJ31LggmPIofhFJB56L+Re/m+6vB1p02XPn6W6otUSD voo4r+zPqh/f51zF/feXOK7Wmpo8SbLT9KAEVl7VQEepIG99D93N+43vURyCB/DQ hu6A6U16SuZpWg== -----END CERTIFICATE-----Generated at Tue Mar 3 12:55:00 2026 by rpki-client