
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: 2ZoF9OQ9dRBXFBLkjfRb/7spkfe9IeE2rfWIXwzsHPc=
Subject key identifier: 84:58:2A:9C:09:9F:9E:07:2A:72:22:D4:CC:38:C2:BC:9C:BF:6E:AF
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019DB5ED0F9A4DBD3CC21DEC79D41C06051F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 1333
Signing time: Wed 22 Apr 2026 16:01:45 +0000
Manifest this update: Wed 22 Apr 2026 16:01:45 +0000
Manifest next update: Thu 23 Apr 2026 16:01:45 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=)
3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=)
8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: T6cSXVk03hgeD6IJuT0D9IJ7m8w1OsQ8jKe7+An/T/I=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 16:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b5:ed:0f:9a:4d:bd:3c:c2:1d:ec:79:d4:1c:06:05:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Apr 22 16:01:45 2026 GMT
Not After : Apr 23 16:01:45 2026 GMT
Subject: CN=84582a9c099f9e072a7222d4cc38c2bc9cbf6eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:88:0c:e5:30:b1:bd:8f:09:9a:85:ee:3b:50:
64:3e:f3:6e:bb:b1:1d:5e:a7:94:3a:a4:f8:5b:58:
0a:c9:41:dd:08:12:85:2e:16:dc:34:65:69:6e:62:
d1:d7:bc:cb:65:2f:a9:72:51:c7:c7:56:28:64:c0:
83:1c:6f:3d:b4:1a:28:88:4a:8a:30:49:aa:a0:3f:
ee:5b:5d:01:de:3b:21:71:85:99:e1:12:8b:50:80:
65:01:81:af:a9:82:fe:82:ee:92:5d:3d:dd:87:3c:
ae:c1:3e:a1:ef:fd:e2:7e:5a:3d:92:6f:7b:4b:3f:
1f:cc:88:a0:a4:48:c0:7d:14:ab:d9:72:62:dc:eb:
57:93:b6:be:c6:df:65:44:e1:66:67:e2:bb:92:c0:
d9:8e:05:b3:4c:55:bf:60:42:70:ab:ca:2f:d8:95:
0e:0e:50:b6:dd:16:b4:b1:bf:a0:c1:cd:03:5d:38:
5e:70:8d:85:ab:48:1a:2e:50:21:37:68:9c:1e:3e:
69:fe:fd:b7:28:ed:b7:c0:c7:84:83:23:ff:de:5c:
22:03:87:d5:2c:9f:22:ba:40:25:1e:5a:29:52:14:
93:2a:8a:15:34:93:8f:dd:1b:88:2e:e6:26:e4:13:
e3:3c:37:0f:09:6c:48:21:79:76:f7:fc:aa:d3:74:
5f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:58:2A:9C:09:9F:9E:07:2A:72:22:D4:CC:38:C2:BC:9C:BF:6E:AF
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:73:91:81:0f:e4:ca:f1:9a:0f:43:98:f3:e6:78:17:b6:ee:
69:46:11:73:af:11:8a:98:1d:7d:cb:b6:8e:a5:21:20:f7:54:
6d:cc:1a:75:71:5a:16:a1:23:50:5a:bc:4c:77:6c:fc:87:19:
12:96:69:42:83:f3:e2:01:83:1f:52:89:13:42:88:aa:0f:e3:
8b:1c:8e:0e:7c:6d:b7:20:81:2f:19:43:ee:d9:2c:e7:64:c8:
7e:06:d2:c1:1b:74:07:22:36:f2:08:83:17:47:07:7b:0b:f9:
5c:1f:bf:27:b3:96:d6:37:8c:26:42:f1:79:4e:c6:42:d4:c7:
ba:c6:61:f7:e0:c6:a4:f0:e6:e1:a2:05:b8:9b:10:f9:64:8a:
eb:d3:f2:ad:e2:60:d8:b2:62:0e:18:2c:7c:83:cf:18:76:c3:
f8:aa:48:9a:ad:36:df:9a:09:55:02:35:f3:6e:fa:0c:d3:f8:
25:db:2d:4d:7e:99:12:e3:b2:2b:21:ce:a6:f5:34:88:bf:e6:
5b:91:ce:1b:1d:19:1c:f4:48:f9:91:63:98:74:dd:20:52:1a:
6c:2a:30:9e:21:5f:c3:b0:38:4a:2d:79:cf:93:60:98:ee:0f:
4f:34:e3:11:bc:80:f5:c5:c3:ff:75:b9:27:70:1f:52:5a:8b:
8d:fd:3f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 23 01:42:19 2026 by rpki-client