
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: ynN6ujQvWbS8RPoJl+Gt2zvI8o77mxEjA3HHZX4FQpw=
Subject key identifier: 1A:D8:C9:6B:45:B8:27:0D:29:5C:10:3D:C1:D5:BF:AD:E1:FC:6C:7B
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019DB02119E2A3EDF63F036695F5E9A9D4E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 1330
Signing time: Tue 21 Apr 2026 13:00:52 +0000
Manifest this update: Tue 21 Apr 2026 13:00:52 +0000
Manifest next update: Wed 22 Apr 2026 13:00:52 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=)
3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=)
8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 890KlFdsLwCWKRZ9NOoNKEOoG90LFBkNrq0uEctS1FE=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b0:21:19:e2:a3:ed:f6:3f:03:66:95:f5:e9:a9:d4:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Apr 21 13:00:52 2026 GMT
Not After : Apr 22 13:00:52 2026 GMT
Subject: CN=1ad8c96b45b8270d295c103dc1d5bfade1fc6c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:80:79:1a:a6:7b:10:0c:e1:11:56:69:17:b7:
d3:2f:65:3d:fc:75:94:82:da:26:5e:b5:e9:3a:67:
68:11:07:83:72:32:ff:50:c0:1e:c5:98:c7:01:5d:
35:7d:79:fc:eb:6a:32:b9:c1:e0:27:bc:28:c4:00:
92:2a:47:22:96:5c:be:f6:0d:c2:9d:79:bf:f6:4c:
72:5e:ba:bc:dd:86:32:f9:18:f5:cf:85:bf:56:8f:
b1:5f:55:88:81:3a:23:de:33:e1:ff:ee:02:92:89:
02:70:a1:cb:d7:aa:3f:aa:97:a1:b5:02:ed:71:f2:
7d:cb:43:da:20:32:87:ba:dc:91:75:7c:bb:0c:16:
55:cc:95:27:91:48:85:bc:f2:11:6a:f6:e6:f3:f9:
bf:37:be:b2:4b:7f:8b:51:ca:8b:e4:f4:aa:e6:02:
bd:ff:8f:c7:02:78:e4:c4:e1:ac:82:26:9e:4b:5f:
c0:e4:9a:c8:7a:0f:c9:ea:81:f0:75:a0:87:e7:77:
b2:f8:35:74:ba:55:44:f6:fa:44:1f:3b:58:3a:32:
d7:2c:e9:07:fa:2f:58:1f:3f:2d:c5:a3:ab:c2:30:
62:45:8c:e6:76:7d:71:53:5c:ba:d8:03:de:a0:eb:
62:9d:78:13:07:dd:8d:66:9b:65:7d:f5:da:b6:1b:
13:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:D8:C9:6B:45:B8:27:0D:29:5C:10:3D:C1:D5:BF:AD:E1:FC:6C:7B
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:0e:97:bf:0a:eb:fe:d3:60:60:30:b7:c5:fe:10:67:74:49:
34:e5:bc:6b:18:49:57:f2:c6:81:fa:2e:fe:63:72:c4:9a:a2:
a9:dd:6c:52:30:d0:0e:c1:e0:ed:43:a3:6c:20:fc:42:ce:cf:
7d:01:a3:b7:b9:30:49:51:6c:ea:e1:55:72:8d:e1:d4:7a:dc:
85:40:0a:27:3c:f3:90:77:ca:76:20:9a:d4:fc:4f:91:6b:1f:
36:d0:eb:1d:56:b3:f9:7c:20:a9:b3:53:48:da:08:76:26:3f:
82:1e:9c:76:f8:33:2e:b0:bc:a8:15:0a:47:a6:19:49:c1:21:
75:e2:42:88:62:5d:43:51:b7:cb:7f:6d:26:46:20:e8:62:49:
a8:b3:60:db:fb:00:a7:77:57:7b:44:cd:f0:ba:f4:5a:25:cc:
8e:ea:77:99:08:80:9a:88:91:94:a7:2a:68:2f:31:0a:33:de:
8b:cd:c8:0f:00:69:fe:e4:26:0c:e2:42:fa:90:4c:30:85:17:
c3:0a:bc:f8:9a:ce:32:f6:12:ba:b7:1f:44:5c:a9:7b:cb:48:
e9:59:e0:9a:9e:f2:66:41:1b:3d:e3:22:4b:1d:c7:9a:c5:4d:
df:0c:b1:4b:db:d7:35:59:82:95:1c:b7:88:73:21:49:ff:2b:
a9:b2:ec:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 22:53:29 2026 by rpki-client