$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: sJaZFLCh0WoLh69DiVvJhjwED6y7NI4jsVv9Y0k6Igo= Subject key identifier: 1C:4F:8A:6C:55:FA:09:FF:3B:1D:52:89:A7:92:98:C4:3D:8F:7D:02 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DBF94388AAAA3C58B56CF0470326E6699 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1338 Signing time: Fri 24 Apr 2026 13:00:55 +0000 Manifest this update: Fri 24 Apr 2026 13:00:55 +0000 Manifest next update: Sat 25 Apr 2026 13:00:55 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: fSas1LVF3kYuSRHjx1uESif2G3r7CKHYqlIyAmUsptQ=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Apr 2026 08:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:bf:94:38:8a:aa:a3:c5:8b:56:cf:04:70:32:6e:66:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 24 13:00:55 2026 GMT Not After : Apr 25 13:00:55 2026 GMT Subject: CN=1c4f8a6c55fa09ff3b1d5289a79298c43d8f7d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:04:27:8d:94:64:0c:64:2e:11:19:52:9a:62: 9b:e1:b3:35:b1:0e:f6:b6:ac:3b:b4:46:ed:df:5d: f8:4f:8f:86:66:cb:33:fa:5a:b5:74:b9:36:60:4c: 19:01:24:93:57:36:52:fa:63:d9:41:f9:5f:0c:5e: 6f:ef:4e:61:ea:9a:7b:65:84:13:74:0a:03:e7:72: 54:20:50:af:93:35:13:41:09:ba:08:1d:2a:8a:19: 04:d2:e3:6e:cb:c2:08:61:d7:a1:1d:f8:6e:e3:6e: 6e:3a:46:fe:cc:e8:fc:ae:bf:84:f5:72:25:d0:dc: bb:21:52:25:73:82:84:1e:94:07:d2:3d:64:78:a2: 43:11:c4:60:5a:93:c0:cc:2d:80:48:1b:c0:ae:9a: 83:6c:3f:11:0f:5b:70:77:8c:cc:49:06:fa:0e:41: 53:5a:8a:57:7d:a5:ec:3b:32:b5:27:bb:cf:98:c5: a4:73:7f:c6:f2:7a:b2:60:d3:d7:10:f4:ab:3f:fc: b7:dd:4c:9b:32:83:50:e1:a1:e4:90:b8:93:60:f6: a4:33:4c:7e:9a:aa:0a:98:6c:4a:c7:27:8d:45:53: 38:5a:33:24:38:51:5f:c5:ca:0b:4b:e0:17:d3:44: 60:9f:0d:23:d5:82:69:52:28:5d:22:ed:46:f4:93: 40:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4F:8A:6C:55:FA:09:FF:3B:1D:52:89:A7:92:98:C4:3D:8F:7D:02 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:23:7b:1a:e7:f9:0e:1e:63:2d:2d:ca:dc:a9:48:c4:ae:6f: 45:16:7d:7a:bc:4a:b0:27:06:3a:99:14:0f:21:a5:98:51:6f: f6:eb:58:19:10:67:21:e9:97:54:c2:97:32:d0:d3:28:8f:ba: 49:89:68:ad:95:a1:a1:a3:2d:e9:b5:70:f2:33:c0:4e:df:d0: 49:36:24:5d:db:a1:41:89:17:a3:4c:47:38:79:f9:ed:9f:88: 11:35:1a:19:df:12:5d:83:ab:86:8f:62:da:e2:7d:c1:0c:ab: 13:c7:5d:dc:58:5e:a4:f0:1d:1a:dd:f0:2c:85:03:2b:c0:09: f7:0c:39:44:95:3e:17:d2:7d:27:8f:43:64:8e:76:0e:8e:77: 57:1f:c7:97:5d:92:42:28:6d:b1:a4:80:5d:4d:8d:cb:df:21: e3:15:10:8a:72:69:1d:07:b2:7b:83:5f:af:4b:14:dd:9b:2d: e0:f7:21:f5:d7:87:3d:5a:b9:75:ac:f5:95:13:38:fc:0d:78: 40:7f:2c:1d:f0:56:ee:bd:92:13:a4:ad:3e:23:85:b5:58:4b: c6:b5:a8:34:ac:94:b2:f9:99:9e:53:07:a8:e4:c7:bf:6b:68: 5b:2d:52:7f:ae:8c:49:b9:fc:f4:50:0e:39:9f:78:a4:ca:8d: 2d:9f:6e:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2/lDiKqqPFi1bPBHAybmaZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDI0MTMwMDU1WhcNMjYwNDI1MTMwMDU1WjAzMTEwLwYDVQQD EygxYzRmOGE2YzU1ZmEwOWZmM2IxZDUyODlhNzkyOThjNDNkOGY3ZDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2AQnjZRkDGQuERlSmmKb4bM1sQ72 tqw7tEbt3134T4+GZssz+lq1dLk2YEwZASSTVzZS+mPZQflfDF5v705h6pp7ZYQT dAoD53JUIFCvkzUTQQm6CB0qihkE0uNuy8IIYdehHfhu425uOkb+zOj8rr+E9XIl 0Ny7IVIlc4KEHpQH0j1keKJDEcRgWpPAzC2ASBvArpqDbD8RD1twd4zMSQb6DkFT WopXfaXsOzK1J7vPmMWkc3/G8nqyYNPXEPSrP/y33UybMoNQ4aHkkLiTYPakM0x+ mqoKmGxKxyeNRVM4WjMkOFFfxcoLS+AX00Rgnw0j1YJpUihdIu1G9JNA1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxPimxV+gn/Ox1SiaeSmMQ9j30CMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKCN7Guf5 Dh5jLS3K3KlIxK5vRRZ9erxKsCcGOpkUDyGlmFFv9utYGRBnIemXVMKXMtDTKI+6 SYlorZWhoaMt6bVw8jPATt/QSTYkXduhQYkXo0xHOHn57Z+IETUaGd8SXYOrho9i 2uJ9wQyrE8dd3FhepPAdGt3wLIUDK8AJ9ww5RJU+F9J9J49DZI52Do53Vx/Hl12S QihtsaSAXU2Ny98h4xUQinJpHQeye4Nfr0sU3Zst4Pch9deHPVq5daz1lRM4/A14 QH8sHfBW7r2SE6StPiOFtVhLxrWoNKyUsvmZnlMHqOTHv2toWy1Sf66MSbn89FAO OZ94pMqNLZ9uRA== -----END CERTIFICATE-----Generated at Fri Apr 24 14:49:40 2026 by rpki-client