$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 82MZpaOsGGgv4KY/xgKx2r50bZnmeATYaLrjiGo3nHs= Subject key identifier: D0:ED:49:49:A0:D1:AA:18:36:8C:94:B3:78:D1:CB:FB:9E:8D:93:65 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019CDF8FC16A5927255D5E203BD2B8936B8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 12C4 Signing time: Thu 12 Mar 2026 01:01:05 +0000 Manifest this update: Thu 12 Mar 2026 01:01:05 +0000 Manifest next update: Fri 13 Mar 2026 01:01:05 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: +Lj3NNGTZIMEi4h75A5OJlSfUcVsLibYw+G90YEDUzE=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 13 Mar 2026 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:df:8f:c1:6a:59:27:25:5d:5e:20:3b:d2:b8:93:6b:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 12 01:01:05 2026 GMT Not After : Mar 13 01:01:05 2026 GMT Subject: CN=d0ed4949a0d1aa18368c94b378d1cbfb9e8d9365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:35:81:73:2e:8c:97:58:b3:22:b0:ce:0e:f5: 06:00:b2:c2:54:e3:b9:ef:18:ac:ac:22:32:a8:e4: d4:8b:5d:28:e2:1e:60:4d:c0:df:e4:13:fd:73:34: c4:3c:ec:87:b6:f2:65:09:ee:46:37:9a:67:f9:2c: c7:e7:d3:4b:c1:a6:45:09:5e:ef:ac:82:7b:a8:3d: ef:28:a7:7f:bc:a3:65:b4:0e:44:e8:0c:5a:bb:e2: d0:ed:03:e6:b5:85:81:79:31:2f:c3:8d:c3:60:b5: 6a:d3:38:2a:8d:d6:c7:76:81:2f:ee:32:12:64:fe: 0f:2e:82:3d:08:06:37:80:3b:ed:c4:4c:a4:47:04: e3:01:10:40:7a:b1:77:b0:ff:52:c2:4e:7d:bd:d5: de:cf:f4:88:54:2d:06:5d:3e:dc:53:4f:c6:04:5d: ff:54:eb:3a:7a:42:e6:41:0b:07:af:9c:bc:43:10: 9d:9f:ee:fd:0e:a1:32:9d:25:85:d2:78:76:96:0f: 9d:4b:b3:be:06:a4:16:09:62:21:5d:3d:b0:fa:dd: ba:34:c6:fb:7f:9f:0a:83:70:73:9b:3f:7a:f2:dd: e2:fd:de:55:a4:c5:e8:5c:e4:98:d1:68:f4:05:f9: f1:c6:5e:b6:72:cc:3c:4e:cc:5d:6f:19:ad:5e:46: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:ED:49:49:A0:D1:AA:18:36:8C:94:B3:78:D1:CB:FB:9E:8D:93:65 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:32:25:1c:91:59:80:5f:10:10:4f:e3:38:28:41:5f:f6:e8: 86:ed:eb:c5:e0:e4:35:f9:96:12:bc:1c:eb:1c:66:14:bb:bf: 8d:6c:48:9c:4f:d0:f3:09:2f:41:a4:69:ee:33:62:b7:22:e1: 95:85:f5:a0:cc:cc:44:9d:0a:98:af:46:b5:92:98:1c:38:27: 45:fb:80:5e:d9:24:fb:b9:55:e5:1b:54:47:ed:8a:2a:ba:ab: 55:3c:28:c9:37:4e:6f:9d:51:8e:b3:9a:5e:88:3e:04:4e:47: 87:4e:6e:f5:cb:3e:ae:81:72:41:f3:bc:78:5a:16:01:ac:0d: 31:a3:c9:6f:d5:ab:ce:1c:9a:a4:fd:5e:94:16:0d:3c:8b:0a: 55:8e:db:2b:b5:34:b2:19:84:c4:7a:fb:88:2a:88:b3:ff:52: 26:48:c7:1a:76:fa:d4:23:5e:83:e3:a2:41:bf:9e:93:02:70: 62:54:47:39:93:69:35:ff:92:cd:f5:9c:39:3d:94:bb:2f:9a: f3:91:f2:01:a2:ef:11:2a:6c:93:69:0f:18:32:29:34:81:68: a4:8d:0e:f1:2e:9d:e0:c1:64:7f:71:9f:40:5c:7b:c2:64:18: 8b:a6:88:ec:90:5b:66:ad:11:5d:08:e0:32:f5:93:39:8d:95: 60:c8:16:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZzfj8FqWSclXV4gO9K4k2uMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMzEyMDEwMTA1WhcNMjYwMzEzMDEwMTA1WjAzMTEwLwYDVQQD EyhkMGVkNDk0OWEwZDFhYTE4MzY4Yzk0YjM3OGQxY2JmYjllOGQ5MzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgTWBcy6Ml1izIrDODvUGALLCVOO5 7xisrCIyqOTUi10o4h5gTcDf5BP9czTEPOyHtvJlCe5GN5pn+SzH59NLwaZFCV7v rIJ7qD3vKKd/vKNltA5E6Axau+LQ7QPmtYWBeTEvw43DYLVq0zgqjdbHdoEv7jIS ZP4PLoI9CAY3gDvtxEykRwTjARBAerF3sP9Swk59vdXez/SIVC0GXT7cU0/GBF3/ VOs6ekLmQQsHr5y8QxCdn+79DqEynSWF0nh2lg+dS7O+BqQWCWIhXT2w+t26NMb7 f58Kg3Bzmz968t3i/d5VpMXoXOSY0Wj0Bfnxxl62csw8TsxdbxmtXkacZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDtSUmg0aoYNoyUs3jRy/uejZNlMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKDIlHJFZ gF8QEE/jOChBX/bohu3rxeDkNfmWErwc6xxmFLu/jWxInE/Q8wkvQaRp7jNityLh lYX1oMzMRJ0KmK9GtZKYHDgnRfuAXtkk+7lV5RtUR+2KKrqrVTwoyTdOb51RjrOa Xog+BE5Hh05u9cs+roFyQfO8eFoWAawNMaPJb9WrzhyapP1elBYNPIsKVY7bK7U0 shmExHr7iCqIs/9SJkjHGnb61CNeg+OiQb+ekwJwYlRHOZNpNf+SzfWcOT2Uuy+a 85HyAaLvESpsk2kPGDIpNIFopI0O8S6d4MFkf3GfQFx7wmQYi6aI7JBbZq0RXQjg MvWTOY2VYMgWvw== -----END CERTIFICATE-----Generated at Thu Mar 12 05:07:40 2026 by rpki-client