$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: tTslmeeMsPHQTBrKyOGPc0MxfgfkF3azEQUSbvUthEE= Subject key identifier: 13:E6:60:94:F3:4C:E5:5B:9B:DE:5B:6B:8E:44:8C:7C:B9:52:5F:90 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019CF0F1DB433EF3D1DD14A951D037555272 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 12CD Signing time: Sun 15 Mar 2026 10:01:47 +0000 Manifest this update: Sun 15 Mar 2026 10:01:47 +0000 Manifest next update: Mon 16 Mar 2026 10:01:47 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: YYFl4OpFg2HJaAGWQt9ACsbcQHfXMjPjuyr49/vEi1E=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Mar 2026 10:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:f0:f1:db:43:3e:f3:d1:dd:14:a9:51:d0:37:55:52:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 15 10:01:47 2026 GMT Not After : Mar 16 10:01:47 2026 GMT Subject: CN=13e66094f34ce55b9bde5b6b8e448c7cb9525f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cf:d7:a2:7c:1e:ee:93:a8:33:f4:15:d8:5a: db:12:d8:01:01:98:31:f5:57:c9:83:86:7f:1a:1a: 66:0f:00:17:79:3f:5d:a0:b1:20:38:45:95:c9:4f: 53:cc:dc:a3:3b:05:58:55:67:8f:0c:f2:9f:50:7f: ca:59:c0:41:f3:7a:5d:03:21:ae:bb:10:e1:72:e6: 88:a3:3e:32:41:6f:02:f8:af:2b:8c:81:7b:56:14: 26:16:c3:8f:1c:69:1a:8a:eb:61:f2:42:af:16:2f: d7:16:68:89:a3:2c:d2:b9:92:05:57:da:51:b7:24: f7:71:0d:38:fa:47:b6:3c:34:1d:d5:e9:34:d2:64: 90:0b:99:2f:fe:e8:f8:02:9d:1f:e7:3a:32:6d:1c: 58:3f:d3:53:cb:de:9c:1f:0c:8f:73:e4:fb:67:8e: b7:ce:68:01:23:3a:bd:54:3b:ec:12:5e:aa:a8:10: d4:35:ad:48:13:1b:8b:83:3b:80:7f:3f:41:f7:a7: 91:50:db:a5:a9:cd:8d:00:ce:d8:5b:87:e1:4a:28: e8:23:85:cc:15:31:f3:c2:1b:8d:75:8f:76:6d:37: 2a:09:7b:47:96:42:fa:1e:59:d5:55:6d:84:c0:29: 61:e6:09:0a:f1:1c:6d:3c:fe:2a:24:25:31:a0:6c: 12:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E6:60:94:F3:4C:E5:5B:9B:DE:5B:6B:8E:44:8C:7C:B9:52:5F:90 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:20:06:c7:c7:da:24:3c:5e:f8:43:c4:ab:ec:fc:a8:ba:6e: 6e:6c:66:23:8b:e5:98:fb:6d:72:6e:28:59:77:3c:6b:9f:9d: cb:3e:76:a1:6a:16:68:77:75:78:e5:5b:0f:0e:4d:02:59:5b: 42:b4:76:60:59:96:21:cb:c0:ff:cb:7f:f6:44:c2:5e:05:10: e9:b7:e4:34:3a:d5:92:61:60:8b:a4:1e:d9:b0:95:eb:26:39: cb:c1:12:26:f6:26:66:f2:c2:7f:89:f5:9b:01:b0:4e:49:13: bf:d8:e6:bc:2a:1b:da:46:a7:24:b8:60:44:35:2f:43:45:14: c8:84:e9:ec:55:b6:bc:e0:45:0d:d8:09:4c:56:ad:d4:7c:05: 31:c8:98:db:3c:b0:51:b5:bb:a7:f2:81:50:16:e1:b3:2c:67: 4d:f2:38:25:64:e4:bb:b2:47:be:37:b7:de:b5:67:be:4a:7c: c2:3c:e9:6f:8d:97:38:a9:82:5d:c3:33:16:14:18:0a:a4:f1: 35:e2:64:e0:b3:14:df:69:26:00:bb:2f:8f:87:74:17:8c:cb: c4:c0:f0:12:15:cb:dd:4a:af:56:9a:ad:05:36:61:82:0b:44: 2c:17:57:48:47:42:f9:34:18:fe:7f:87:10:34:4f:f3:33:fd: ef:9d:08:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzw8dtDPvPR3RSpUdA3VVJyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMzE1MTAwMTQ3WhcNMjYwMzE2MTAwMTQ3WjAzMTEwLwYDVQQD EygxM2U2NjA5NGYzNGNlNTViOWJkZTViNmI4ZTQ0OGM3Y2I5NTI1ZjkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM/Xonwe7pOoM/QV2FrbEtgBAZgx 9VfJg4Z/GhpmDwAXeT9doLEgOEWVyU9TzNyjOwVYVWePDPKfUH/KWcBB83pdAyGu uxDhcuaIoz4yQW8C+K8rjIF7VhQmFsOPHGkaiuth8kKvFi/XFmiJoyzSuZIFV9pR tyT3cQ04+ke2PDQd1ek00mSQC5kv/uj4Ap0f5zoybRxYP9NTy96cHwyPc+T7Z463 zmgBIzq9VDvsEl6qqBDUNa1IExuLgzuAfz9B96eRUNulqc2NAM7YW4fhSijoI4XM FTHzwhuNdY92bTcqCXtHlkL6HlnVVW2EwClh5gkK8RxtPP4qJCUxoGwSfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPmYJTzTOVbm95ba45EjHy5Ul+QMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALSAGx8fa JDxe+EPEq+z8qLpubmxmI4vlmPttcm4oWXc8a5+dyz52oWoWaHd1eOVbDw5NAllb QrR2YFmWIcvA/8t/9kTCXgUQ6bfkNDrVkmFgi6Qe2bCV6yY5y8ESJvYmZvLCf4n1 mwGwTkkTv9jmvCob2kanJLhgRDUvQ0UUyITp7FW2vOBFDdgJTFat1HwFMciY2zyw UbW7p/KBUBbhsyxnTfI4JWTku7JHvje33rVnvkp8wjzpb42XOKmCXcMzFhQYCqTx NeJk4LMU32kmALsvj4d0F4zLxMDwEhXL3UqvVpqtBTZhggtELBdXSEdC+TQY/n+H EDRP8zP9750IvA== -----END CERTIFICATE-----Generated at Sun Mar 15 17:58:28 2026 by rpki-client