
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: 8Se8DNgYD+Sn3gGPE8cCa+HKBOKh864WBwKao6pOCuY=
Subject key identifier: 5D:34:38:7F:AA:69:76:6E:F5:F2:55:9E:F7:04:E1:A9:43:B7:57:FC
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019EB3FB0EE5FFFB648B1D160FAABD5D5416
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 13B8
Signing time: Thu 11 Jun 2026 00:00:35 +0000
Manifest this update: Thu 11 Jun 2026 00:00:35 +0000
Manifest next update: Fri 12 Jun 2026 00:00:35 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: ifV4lQEOk2VhHUcLh9aY+8W6h5/9TouGEU994pQKc4g=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 11 Jun 2026 23:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b3:fb:0e:e5:ff:fb:64:8b:1d:16:0f:aa:bd:5d:54:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jun 11 00:00:35 2026 GMT
Not After : Jun 12 00:00:35 2026 GMT
Subject: CN=5d34387faa69766ef5f2559ef704e1a943b757fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e7:a3:45:5a:e1:24:d2:8f:86:4b:32:ad:31:
88:2d:f7:f8:0c:4c:fb:34:83:ec:e0:a2:04:30:4e:
bd:5a:ee:23:38:1b:91:11:45:69:a3:14:ed:06:6f:
48:82:e4:82:30:0d:10:72:ea:ce:33:7a:43:7e:85:
d6:70:73:7d:c0:76:e5:6a:eb:02:78:5e:9a:99:27:
a6:81:15:36:6a:cf:1e:60:68:a5:2d:60:a1:ee:d6:
cf:5c:d2:ae:70:ad:3c:04:ca:4e:94:d1:65:a5:07:
9e:5d:c1:e1:9f:f0:2d:03:a1:75:5c:a4:03:26:5b:
d9:12:c5:83:3a:fe:c5:77:2f:a1:4a:ed:44:40:a6:
85:a2:56:c3:2b:01:a5:d0:e1:78:d7:f9:87:71:51:
0d:82:ea:a5:e9:08:46:93:01:bb:14:f6:9e:85:69:
d1:17:71:93:b6:1e:77:40:b3:9d:80:e4:81:2f:dc:
cd:bf:ae:2b:ae:75:dc:3e:30:ef:0b:6b:e3:2a:8e:
ba:e8:ea:63:38:59:47:5a:7f:b3:6e:6d:a3:fb:0b:
10:5b:0c:99:5f:c1:fa:2f:b8:48:6d:20:f1:20:8c:
4d:c7:b0:ab:d6:d3:bf:83:8e:b2:3d:e5:5f:70:55:
30:46:da:fe:a0:d8:a6:88:82:bf:76:d1:c8:bb:d3:
ef:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:34:38:7F:AA:69:76:6E:F5:F2:55:9E:F7:04:E1:A9:43:B7:57:FC
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:0d:46:ef:62:d3:23:85:c4:0c:c3:91:8c:a6:8a:3a:a2:49:
de:fd:18:ff:a1:89:a3:e0:75:76:eb:84:be:31:9e:d0:a6:53:
67:77:3e:38:09:5f:44:7d:7f:1c:ea:eb:2e:ee:86:75:42:dd:
4f:cc:38:7f:6e:21:7b:1a:3c:63:0e:fc:67:16:81:af:39:fa:
dc:7f:41:ca:c7:d5:bf:64:07:ae:b5:c5:c6:21:0a:e0:ec:e3:
9a:86:bb:7c:94:0f:31:fd:9e:b6:d7:0a:3d:dc:7e:ea:54:a7:
1f:d9:49:c4:80:4e:7c:70:ee:3a:22:9d:47:35:88:0e:b9:b0:
85:88:bc:b8:1b:83:d0:74:6f:7f:9e:ca:f1:1c:df:c0:ed:53:
cd:cf:94:56:78:a1:cf:f3:23:53:6c:25:7b:90:09:eb:81:f1:
ec:fe:ee:b2:bc:39:6a:f9:23:0c:bf:47:82:e9:f1:c5:3a:ea:
96:14:d6:b8:cf:b5:28:c5:6e:0f:5d:2b:d9:79:32:35:f1:bd:
9d:9f:8d:84:d5:8f:f8:4e:ec:81:c8:c2:18:4f:3f:e9:bf:07:
9a:26:f9:84:93:b9:38:0a:8f:a1:28:aa:b1:2b:21:24:04:95:
33:2f:3c:a9:91:46:9a:6f:51:ee:41:14:c7:80:b1:ce:85:ae:
f1:20:ce:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 06:25:33 2026 by rpki-client