$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 2ZoF9OQ9dRBXFBLkjfRb/7spkfe9IeE2rfWIXwzsHPc= Subject key identifier: 84:58:2A:9C:09:9F:9E:07:2A:72:22:D4:CC:38:C2:BC:9C:BF:6E:AF Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DB5ED0F9A4DBD3CC21DEC79D41C06051F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1333 Signing time: Wed 22 Apr 2026 16:01:45 +0000 Manifest this update: Wed 22 Apr 2026 16:01:45 +0000 Manifest next update: Thu 23 Apr 2026 16:01:45 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: T6cSXVk03hgeD6IJuT0D9IJ7m8w1OsQ8jKe7+An/T/I=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 23 Apr 2026 16:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b5:ed:0f:9a:4d:bd:3c:c2:1d:ec:79:d4:1c:06:05:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 22 16:01:45 2026 GMT Not After : Apr 23 16:01:45 2026 GMT Subject: CN=84582a9c099f9e072a7222d4cc38c2bc9cbf6eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:88:0c:e5:30:b1:bd:8f:09:9a:85:ee:3b:50: 64:3e:f3:6e:bb:b1:1d:5e:a7:94:3a:a4:f8:5b:58: 0a:c9:41:dd:08:12:85:2e:16:dc:34:65:69:6e:62: d1:d7:bc:cb:65:2f:a9:72:51:c7:c7:56:28:64:c0: 83:1c:6f:3d:b4:1a:28:88:4a:8a:30:49:aa:a0:3f: ee:5b:5d:01:de:3b:21:71:85:99:e1:12:8b:50:80: 65:01:81:af:a9:82:fe:82:ee:92:5d:3d:dd:87:3c: ae:c1:3e:a1:ef:fd:e2:7e:5a:3d:92:6f:7b:4b:3f: 1f:cc:88:a0:a4:48:c0:7d:14:ab:d9:72:62:dc:eb: 57:93:b6:be:c6:df:65:44:e1:66:67:e2:bb:92:c0: d9:8e:05:b3:4c:55:bf:60:42:70:ab:ca:2f:d8:95: 0e:0e:50:b6:dd:16:b4:b1:bf:a0:c1:cd:03:5d:38: 5e:70:8d:85:ab:48:1a:2e:50:21:37:68:9c:1e:3e: 69:fe:fd:b7:28:ed:b7:c0:c7:84:83:23:ff:de:5c: 22:03:87:d5:2c:9f:22:ba:40:25:1e:5a:29:52:14: 93:2a:8a:15:34:93:8f:dd:1b:88:2e:e6:26:e4:13: e3:3c:37:0f:09:6c:48:21:79:76:f7:fc:aa:d3:74: 5f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:58:2A:9C:09:9F:9E:07:2A:72:22:D4:CC:38:C2:BC:9C:BF:6E:AF X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:73:91:81:0f:e4:ca:f1:9a:0f:43:98:f3:e6:78:17:b6:ee: 69:46:11:73:af:11:8a:98:1d:7d:cb:b6:8e:a5:21:20:f7:54: 6d:cc:1a:75:71:5a:16:a1:23:50:5a:bc:4c:77:6c:fc:87:19: 12:96:69:42:83:f3:e2:01:83:1f:52:89:13:42:88:aa:0f:e3: 8b:1c:8e:0e:7c:6d:b7:20:81:2f:19:43:ee:d9:2c:e7:64:c8: 7e:06:d2:c1:1b:74:07:22:36:f2:08:83:17:47:07:7b:0b:f9: 5c:1f:bf:27:b3:96:d6:37:8c:26:42:f1:79:4e:c6:42:d4:c7: ba:c6:61:f7:e0:c6:a4:f0:e6:e1:a2:05:b8:9b:10:f9:64:8a: eb:d3:f2:ad:e2:60:d8:b2:62:0e:18:2c:7c:83:cf:18:76:c3: f8:aa:48:9a:ad:36:df:9a:09:55:02:35:f3:6e:fa:0c:d3:f8: 25:db:2d:4d:7e:99:12:e3:b2:2b:21:ce:a6:f5:34:88:bf:e6: 5b:91:ce:1b:1d:19:1c:f4:48:f9:91:63:98:74:dd:20:52:1a: 6c:2a:30:9e:21:5f:c3:b0:38:4a:2d:79:cf:93:60:98:ee:0f: 4f:34:e3:11:bc:80:f5:c5:c3:ff:75:b9:27:70:1f:52:5a:8b: 8d:fd:3f:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ217Q+aTb08wh3sedQcBgUfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIyMTYwMTQ1WhcNMjYwNDIzMTYwMTQ1WjAzMTEwLwYDVQQD Eyg4NDU4MmE5YzA5OWY5ZTA3MmE3MjIyZDRjYzM4YzJiYzljYmY2ZWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYgM5TCxvY8JmoXuO1BkPvNuu7Ed XqeUOqT4W1gKyUHdCBKFLhbcNGVpbmLR17zLZS+pclHHx1YoZMCDHG89tBooiEqK MEmqoD/uW10B3jshcYWZ4RKLUIBlAYGvqYL+gu6SXT3dhzyuwT6h7/3iflo9km97 Sz8fzIigpEjAfRSr2XJi3OtXk7a+xt9lROFmZ+K7ksDZjgWzTFW/YEJwq8ov2JUO DlC23Ra0sb+gwc0DXThecI2Fq0gaLlAhN2icHj5p/v23KO23wMeEgyP/3lwiA4fV LJ8iukAlHlopUhSTKooVNJOP3RuILuYm5BPjPDcPCWxIIXl29/yq03RfCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRYKpwJn54HKnIi1Mw4wrycv26vMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeHORgQ/k yvGaD0OY8+Z4F7buaUYRc68Ripgdfcu2jqUhIPdUbcwadXFaFqEjUFq8THds/IcZ EpZpQoPz4gGDH1KJE0KIqg/jixyODnxttyCBLxlD7tks52TIfgbSwRt0ByI28giD F0cHewv5XB+/J7OW1jeMJkLxeU7GQtTHusZh9+DGpPDm4aIFuJsQ+WSK69PyreJg 2LJiDhgsfIPPGHbD+KpImq0235oJVQI18276DNP4JdstTX6ZEuOyKyHOpvU0iL/m W5HOGx0ZHPRI+ZFjmHTdIFIabCowniFfw7A4Si15z5NgmO4PTzTjEbyA9cXD/3W5 J3AfUlqLjf0/SQ== -----END CERTIFICATE-----Generated at Thu Apr 23 01:42:19 2026 by rpki-client