$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: Jn0CfBKSm9zEV8fUkNVtMzRO4fZ8OfSqYJGJskEDdVs= Subject key identifier: B7:1B:91:C8:04:06:24:B8:6F:AB:84:AC:A3:9E:18:57:F3:DA:0E:B6 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019E3C3FCA7E9B1C787B17F0036D234C3530 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 137A Signing time: Mon 18 May 2026 18:01:13 +0000 Manifest this update: Mon 18 May 2026 18:01:13 +0000 Manifest next update: Tue 19 May 2026 18:01:13 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: dUBhQcD7KVe9kBvgjGtpDMeaRORJ3tKjPnxE34r5peA=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 19 May 2026 14:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:3c:3f:ca:7e:9b:1c:78:7b:17:f0:03:6d:23:4c:35:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: May 18 18:01:13 2026 GMT Not After : May 19 18:01:13 2026 GMT Subject: CN=b71b91c8040624b86fab84aca39e1857f3da0eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:bc:6b:ea:8e:31:c1:ae:b7:11:14:5f:0b: 48:a8:56:c1:d6:97:cf:5c:79:7a:2c:9c:96:8b:14: 7c:7f:cd:fb:7c:ac:3c:c6:33:1e:eb:81:88:15:6b: 83:67:7a:83:c5:85:9c:c5:07:2a:3b:a5:25:c8:3c: 13:82:29:2a:af:b7:ce:22:8d:ef:e6:27:e2:6e:94: 03:f4:8b:29:6f:18:5d:95:56:9e:9c:cd:84:06:08: 7c:a7:45:ea:b4:59:1e:36:e1:fc:3c:55:f7:27:6b: a7:4a:28:20:96:7a:a5:e4:59:cd:d9:fe:1e:65:b9: d0:b6:21:11:80:5a:3c:66:14:5d:4b:de:87:ae:5f: 80:c9:d5:e1:fe:fd:15:64:39:85:aa:8c:88:ee:06: c5:f4:da:97:89:2f:d6:b5:98:9a:71:8f:0a:1b:12: 76:96:84:64:f6:73:1a:61:ad:9a:83:c1:d7:26:8c: 53:f5:43:1a:d3:31:55:ae:fc:f0:83:42:74:5b:94: 5f:48:16:27:6c:b1:89:26:c7:b4:0c:90:90:b1:60: 07:53:d3:3c:35:d6:4e:f6:a8:89:dd:f4:c0:46:47: cc:b8:6b:77:3d:6a:1d:c7:27:01:be:0f:40:8d:06: 20:c5:6c:2e:25:37:a7:07:72:2a:0a:88:ea:4d:e7: a7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1B:91:C8:04:06:24:B8:6F:AB:84:AC:A3:9E:18:57:F3:DA:0E:B6 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a5:51:47:80:da:5c:dd:85:9f:97:83:c7:2f:da:52:3c:48: db:8f:d1:55:ca:2d:e4:34:bd:a9:db:98:fd:fd:08:d6:49:a2: 61:0f:2d:a7:a6:3b:90:4c:8f:26:49:95:f0:a8:aa:7b:c2:ee: 38:24:f8:70:d0:37:ab:03:7a:84:cf:51:5f:53:d6:d7:a6:73: 64:c6:23:0f:82:6d:d2:e3:07:f0:00:34:e9:4f:d4:a5:0e:8a: b0:75:09:d6:12:0c:ea:e9:b6:e1:0a:9e:1b:40:6f:6d:c4:ce: 2b:f0:64:26:cd:82:f3:13:8d:ac:ab:b2:76:a1:84:5d:1b:7a: 78:6e:bc:b5:5c:3d:af:c4:00:0a:5e:53:9d:5d:d9:b7:5e:d2: e2:9d:e0:aa:7c:b4:b2:63:53:1e:3f:d9:00:e0:56:b5:50:74: 4b:cc:ee:a0:4f:81:d8:36:c1:7d:8a:d7:73:88:49:0c:b8:b2: 46:23:a4:5d:73:75:4e:75:10:b5:e9:84:2f:d9:b6:57:5e:18: 6c:f7:7c:41:6c:e0:61:14:27:dd:22:69:30:2b:5e:4b:67:15: 40:7c:37:7d:ca:1d:58:22:d7:84:4b:b3:17:28:d9:57:1c:be: ad:4c:ed:c7:d0:94:30:4f:4a:ac:98:3b:a4:d8:0b:59:6d:e2: b0:29:6f:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ48P8p+mxx4exfwA20jTDUwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNTE4MTgwMTEzWhcNMjYwNTE5MTgwMTEzWjAzMTEwLwYDVQQD EyhiNzFiOTFjODA0MDYyNGI4NmZhYjg0YWNhMzllMTg1N2YzZGEwZWI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvu28a+qOMcGutxEUXwtIqFbB1pfP XHl6LJyWixR8f837fKw8xjMe64GIFWuDZ3qDxYWcxQcqO6UlyDwTgikqr7fOIo3v 5ifibpQD9IspbxhdlVaenM2EBgh8p0XqtFkeNuH8PFX3J2unSigglnql5FnN2f4e ZbnQtiERgFo8ZhRdS96Hrl+AydXh/v0VZDmFqoyI7gbF9NqXiS/WtZiacY8KGxJ2 loRk9nMaYa2ag8HXJoxT9UMa0zFVrvzwg0J0W5RfSBYnbLGJJse0DJCQsWAHU9M8 NdZO9qiJ3fTARkfMuGt3PWodxycBvg9AjQYgxWwuJTenB3IqCojqTeenmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLcbkcgEBiS4b6uErKOeGFfz2g62MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH6VRR4Da XN2Fn5eDxy/aUjxI24/RVcot5DS9qduY/f0I1kmiYQ8tp6Y7kEyPJkmV8Kiqe8Lu OCT4cNA3qwN6hM9RX1PW16ZzZMYjD4Jt0uMH8AA06U/UpQ6KsHUJ1hIM6um24Qqe G0BvbcTOK/BkJs2C8xONrKuydqGEXRt6eG68tVw9r8QACl5TnV3Zt17S4p3gqny0 smNTHj/ZAOBWtVB0S8zuoE+B2DbBfYrXc4hJDLiyRiOkXXN1TnUQtemEL9m2V14Y bPd8QWzgYRQn3SJpMCteS2cVQHw3fcodWCLXhEuzFyjZVxy+rUztx9CUME9KrJg7 pNgLWW3isClvHg== -----END CERTIFICATE-----Generated at Mon May 18 22:13:23 2026 by rpki-client