$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: XDZJiN+uChFQJvh8yHjvrHDvYzKWRwlyQeRI/Ua/yZ4= Subject key identifier: F5:8B:28:14:C2:D1:45:CD:9C:20:C9:79:AB:F6:E1:73:88:10:33:F6 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E30A95F985CE0F4E5DE2431EA01BA26CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1374 Signing time: Sat 16 May 2026 12:01:06 +0000 Manifest this update: Sat 16 May 2026 12:01:06 +0000 Manifest next update: Sun 17 May 2026 12:01:06 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: BZIgcrG+1jmx8cXWhd0kROEgPN1WDpjFZ9FQ5e7ZGCc=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 17 May 2026 12:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:30:a9:5f:98:5c:e0:f4:e5:de:24:31:ea:01:ba:26:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 16 12:01:06 2026 GMT Not After : May 17 12:01:06 2026 GMT Subject: CN=f58b2814c2d145cd9c20c979abf6e173881033f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a9:48:7e:f1:01:ac:3b:f9:a5:fd:ae:28:7c: cd:16:5d:cf:32:8f:04:8f:b2:d7:0d:f9:b4:2c:99: a4:15:fa:af:62:cf:e6:ed:33:d8:5d:90:2b:94:7d: 22:c8:fe:da:7a:4c:c1:16:cc:04:0b:e8:6f:98:47: 4f:67:6d:e3:47:4b:d9:27:6b:40:0c:9d:b2:44:cb: b0:26:1d:5f:24:a2:ce:15:96:3f:3c:ab:37:e9:b3: d0:cd:71:c0:07:6b:d7:3e:58:46:0e:03:dd:ad:38: 48:c2:4e:63:05:93:7f:09:f1:ec:e1:72:02:3b:44: 21:c3:e1:3f:cd:a8:72:4d:cf:d3:9e:b4:68:93:64: fd:df:2b:d2:54:25:76:ad:07:55:e0:da:ac:f0:1f: 16:0a:18:a9:b1:a1:07:3d:0f:de:2d:8b:4d:4f:31: 61:87:73:a8:87:ec:d0:94:8a:0f:88:a3:78:df:42: 5e:55:d8:61:c1:2e:d2:52:48:e2:bb:3b:c4:95:77: d1:b3:3a:04:bb:70:7f:7d:41:73:e4:59:aa:b4:83: 87:19:56:7a:9d:56:0c:77:3e:81:8d:0c:38:84:f3: 6d:fc:92:e9:42:cd:c4:dd:3c:3a:e9:da:d5:54:71: 14:6b:f6:ff:b0:82:94:26:78:a7:1e:d7:48:a8:dc: f4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8B:28:14:C2:D1:45:CD:9C:20:C9:79:AB:F6:E1:73:88:10:33:F6 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:b8:b3:54:11:cd:4e:d2:dc:9b:54:77:fe:b0:4f:50:4e:60: bc:04:b2:84:6c:13:f9:4e:00:4b:b4:b9:77:07:fe:59:6e:d1: bc:86:9d:c8:b4:81:aa:13:b9:c3:6f:e3:6e:a9:e0:85:5c:7e: 72:a7:da:4e:ad:9d:4d:ba:38:1b:11:07:48:f3:46:43:c3:23: 9c:ba:6e:c1:20:03:2b:ad:20:98:49:0a:5d:2d:c1:a4:90:3b: 7c:21:04:7c:a8:d1:03:89:fa:16:7d:08:03:47:18:ec:4c:32: 1e:37:b3:ea:72:f2:a9:18:86:46:5f:6f:1a:fd:e2:bb:09:6f: 10:37:50:b2:6a:85:19:db:99:d5:17:df:31:07:f7:47:3f:30: 05:90:01:1a:32:e9:c3:fd:e5:5e:48:bc:27:ef:62:27:3c:64: b1:44:cd:31:99:79:e2:85:92:41:69:f7:1e:6b:9e:00:f9:5d: 3b:4a:70:9a:03:95:98:76:a3:04:97:69:b6:01:2f:c3:87:e6: 27:de:17:f5:80:2e:ab:e5:07:68:b5:7a:53:2d:64:f0:92:28: 20:76:f2:4e:c1:57:ce:8f:5f:b7:f3:30:2f:66:ba:70:33:98: 14:02:6f:be:2b:34:ec:25:82:19:0a:ab:29:08:de:f5:84:5e: a1:ca:a5:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ4wqV+YXOD05d4kMeoBuibPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTE2MTIwMTA2WhcNMjYwNTE3MTIwMTA2WjAzMTEwLwYDVQQD EyhmNThiMjgxNGMyZDE0NWNkOWMyMGM5NzlhYmY2ZTE3Mzg4MTAzM2Y2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqlIfvEBrDv5pf2uKHzNFl3PMo8E j7LXDfm0LJmkFfqvYs/m7TPYXZArlH0iyP7aekzBFswEC+hvmEdPZ23jR0vZJ2tA DJ2yRMuwJh1fJKLOFZY/PKs36bPQzXHAB2vXPlhGDgPdrThIwk5jBZN/CfHs4XIC O0Qhw+E/zahyTc/TnrRok2T93yvSVCV2rQdV4Nqs8B8WChipsaEHPQ/eLYtNTzFh h3Ooh+zQlIoPiKN430JeVdhhwS7SUkjiuzvElXfRszoEu3B/fUFz5FmqtIOHGVZ6 nVYMdz6BjQw4hPNt/JLpQs3E3Tw66drVVHEUa/b/sIKUJninHtdIqNz0bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPWLKBTC0UXNnCDJeav24XOIEDP2MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkbizVBHN TtLcm1R3/rBPUE5gvASyhGwT+U4AS7S5dwf+WW7RvIadyLSBqhO5w2/jbqnghVx+ cqfaTq2dTbo4GxEHSPNGQ8MjnLpuwSADK60gmEkKXS3BpJA7fCEEfKjRA4n6Fn0I A0cY7EwyHjez6nLyqRiGRl9vGv3iuwlvEDdQsmqFGduZ1RffMQf3Rz8wBZABGjLp w/3lXki8J+9iJzxksUTNMZl54oWSQWn3HmueAPldO0pwmgOVmHajBJdptgEvw4fm J94X9YAuq+UHaLV6Uy1k8JIoIHbyTsFXzo9ft/MwL2a6cDOYFAJvvis07CWCGQqr KQje9YReocql1g== -----END CERTIFICATE-----Generated at Sat May 16 17:56:13 2026 by rpki-client