
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: 7TRukCK1knQlXRgciGcaufLDL6+4m4Z/s2ndpy1GxU4=
Subject key identifier: 11:59:51:25:97:D0:E7:0D:31:C2:F2:52:E0:4B:71:AE:F6:97:C4:0E
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019F355F1C74BE888F05446E431D2AC324E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 13FC
Signing time: Mon 06 Jul 2026 03:00:53 +0000
Manifest this update: Mon 06 Jul 2026 03:00:53 +0000
Manifest next update: Tue 07 Jul 2026 03:00:53 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: gTCPK1bYVjXDTEAWXZVRpO3YrBM63RCzZDIripJDggE=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:35:5f:1c:74:be:88:8f:05:44:6e:43:1d:2a:c3:24:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jul 6 03:00:53 2026 GMT
Not After : Jul 7 03:00:53 2026 GMT
Subject: CN=1159512597d0e70d31c2f252e04b71aef697c40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:a5:80:ae:07:11:fd:22:af:e6:29:7e:b1:
8d:54:c2:91:7a:00:43:73:24:23:55:18:e6:c5:ed:
ce:a2:5f:ee:f2:55:c5:e7:c1:71:e8:ee:82:27:8c:
11:a2:f9:1b:db:86:d4:59:e8:9d:04:07:3a:24:75:
71:46:cd:3f:86:b9:1b:4c:f6:cf:3d:23:e4:b8:24:
5c:b4:9d:64:21:7a:7c:c8:68:8d:04:b8:c3:22:64:
87:97:39:81:70:f1:ca:82:61:73:0e:3e:b4:47:92:
d9:4a:6f:cb:a5:83:ba:38:ab:79:89:94:d8:11:56:
72:db:4c:0f:20:d8:51:65:d0:98:d0:11:42:fe:5e:
16:2d:5e:12:c5:76:59:eb:7a:c5:62:44:79:2e:e2:
07:7a:88:d6:54:db:d4:b3:d3:f6:dd:09:74:be:f2:
e2:d9:bf:0c:d2:3b:33:3a:ab:5a:9d:44:c7:2c:bc:
c7:64:e3:64:a8:82:8a:c2:92:a1:92:ba:a3:45:e4:
bc:fe:9b:1b:1a:85:ef:62:4e:25:89:09:3d:8a:da:
dc:fe:92:a2:ee:60:e6:28:85:d2:a7:54:d4:d3:97:
43:96:36:89:7e:b7:ee:57:64:4b:72:4e:e8:73:59:
fd:5e:5f:c8:f4:37:89:2e:d2:f8:93:10:76:84:c9:
96:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:59:51:25:97:D0:E7:0D:31:C2:F2:52:E0:4B:71:AE:F6:97:C4:0E
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:e3:15:74:74:93:2f:e3:ab:1f:7e:e3:0f:6f:b9:4e:52:3e:
04:58:5e:0f:e9:8c:da:b3:2b:8c:5b:9a:4c:7b:c1:63:80:6b:
d5:34:02:78:00:e3:9a:d8:c6:1d:fe:24:0c:9d:e4:cf:98:8b:
9a:3d:e8:e5:0c:67:5c:4b:43:40:ae:91:b8:2b:f6:81:63:bf:
f7:21:3e:69:2f:e2:c0:19:06:c1:ef:a5:38:49:5b:60:e8:41:
f3:28:b1:7b:3c:8a:d0:fc:b3:d4:01:62:8a:5f:42:96:68:58:
34:41:aa:85:7e:bc:76:8d:fc:51:88:18:ac:2f:15:cc:ac:f8:
25:77:d0:41:8c:65:71:f3:89:83:9c:89:c5:fd:36:aa:5d:19:
7a:17:3f:ac:14:f8:ad:3d:3e:55:94:fc:bd:a6:85:17:14:e8:
37:30:f4:e5:6b:7e:96:a3:5f:c9:fd:ef:64:89:b5:e7:c0:b6:
41:be:b1:5e:32:3f:3e:95:72:ab:2e:16:e0:3a:66:01:e4:31:
5c:8f:77:0b:9d:13:bd:0f:b0:d3:89:ac:a7:c7:ef:79:c0:b1:
79:16:34:b0:f1:54:a0:b2:6f:42:96:0d:c6:5e:df:91:b2:5f:
2d:06:6a:bb:2f:4f:cf:75:30:cf:3c:5a:90:52:e0:a1:61:45:
13:4a:b8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 09:39:15 2026 by rpki-client