$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: trYMpBMjncjGTsTPilH9srkOEMbhSmFguuIYLreET3A= Subject key identifier: D3:C2:F9:3E:62:FB:0E:26:F3:A2:90:7E:5D:AF:B5:D6:B7:F9:87:A8 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019DB20FAB697FE0484E0DB04EC545D1BF50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1331 Signing time: Tue 21 Apr 2026 22:01:04 +0000 Manifest this update: Tue 21 Apr 2026 22:01:04 +0000 Manifest next update: Wed 22 Apr 2026 22:01:04 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: y/PbZfC7u43kJbWP+BrGxWETErn6CRF5rJutxRyx0zg=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 21:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:b2:0f:ab:69:7f:e0:48:4e:0d:b0:4e:c5:45:d1:bf:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Apr 21 22:01:04 2026 GMT Not After : Apr 22 22:01:04 2026 GMT Subject: CN=d3c2f93e62fb0e26f3a2907e5dafb5d6b7f987a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:24:54:1d:bd:ef:60:eb:9a:cb:1f:d1:13: 56:41:5f:20:fa:c6:40:3d:10:4a:76:32:f6:ee:60: 80:df:1b:dd:49:03:42:6a:af:22:4c:c1:e7:4e:60: 0d:56:61:3e:07:66:e4:5a:50:27:38:a1:4a:ac:1d: 0b:4e:b5:89:26:e9:ff:87:79:a3:6e:06:5a:2f:d3: f5:99:e9:31:b0:e7:b3:5f:2f:97:05:1f:71:36:35: 2a:5e:38:37:81:66:d6:f0:b5:95:5b:9d:80:06:1b: 46:1a:8d:ee:f9:a6:58:16:fe:a0:b6:98:1c:1d:51: 0b:4c:37:3a:c8:9c:de:30:17:00:10:fc:e4:50:b2: b8:fd:48:3b:53:bb:cb:5f:28:7b:e2:e0:15:10:61: 56:0c:55:11:b3:63:7d:93:95:4d:5d:8c:ac:2b:89: 54:bf:28:ec:ea:2c:16:3d:72:d2:3e:bd:8c:cb:b9: d7:5d:d0:a2:22:53:6d:7d:b2:eb:18:2b:0a:5d:2b: 1d:5f:17:8e:8d:f6:2c:a8:28:a0:c8:c0:50:54:43: 8e:3c:23:17:12:2c:ce:e3:37:a4:f5:97:74:ba:b3: 0a:c8:e5:c7:24:fd:78:40:60:16:82:79:69:2b:18: ee:29:e9:05:ef:6e:05:a7:ab:a8:a3:fd:a1:82:7f: 25:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C2:F9:3E:62:FB:0E:26:F3:A2:90:7E:5D:AF:B5:D6:B7:F9:87:A8 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:b6:c1:88:b5:c4:6a:08:16:05:e5:b2:e8:76:05:df:43:81: f7:03:2d:c9:52:e5:58:b1:f0:50:74:b7:1e:94:15:98:01:03: 55:6b:fb:ac:2e:82:4c:2f:03:89:1e:fe:8b:48:9c:42:4e:ef: 8e:c3:a2:2b:24:de:e3:93:64:53:e1:c2:59:90:d4:2b:b7:71: ca:f3:68:b3:63:8b:8c:cc:19:ce:b1:66:37:1c:a1:eb:ac:23: fa:b7:8d:b7:b0:4b:ab:98:97:3f:b4:61:f7:0d:ad:b2:1d:29: d5:c1:6f:49:a3:98:76:5a:10:2a:5c:a7:4e:ab:f6:64:77:84: 5a:e7:cb:04:24:43:7b:04:91:4e:5d:b0:00:df:a3:1e:1f:4a: 06:27:6c:c6:24:54:e1:d3:f2:f6:b1:fc:9e:d6:06:fd:c5:3d: 82:ec:47:b7:20:56:34:b1:e6:a0:27:2b:2c:01:5b:a2:da:b6: 15:c4:ae:65:ef:a3:3e:d7:a0:8a:25:76:79:8d:18:19:3b:44: f6:cd:44:0f:f1:b5:bc:ca:c2:59:58:3b:14:84:9e:d6:f9:b6: e6:db:7e:3a:c8:9e:b9:e7:52:0e:cb:e4:49:f4:21:b5:98:33: 99:5e:61:2d:bd:b3:c6:8e:8c:06:7b:78:4c:71:5b:b0:55:ce: c2:eb:2d:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ2yD6tpf+BITg2wTsVF0b9QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNDIxMjIwMTA0WhcNMjYwNDIyMjIwMTA0WjAzMTEwLwYDVQQD EyhkM2MyZjkzZTYyZmIwZTI2ZjNhMjkwN2U1ZGFmYjVkNmI3Zjk4N2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbEkVB2972Drmssf0RNWQV8g+sZA PRBKdjL27mCA3xvdSQNCaq8iTMHnTmANVmE+B2bkWlAnOKFKrB0LTrWJJun/h3mj bgZaL9P1mekxsOezXy+XBR9xNjUqXjg3gWbW8LWVW52ABhtGGo3u+aZYFv6gtpgc HVELTDc6yJzeMBcAEPzkULK4/Ug7U7vLXyh74uAVEGFWDFURs2N9k5VNXYysK4lU vyjs6iwWPXLSPr2My7nXXdCiIlNtfbLrGCsKXSsdXxeOjfYsqCigyMBQVEOOPCMX EizO4zek9Zd0urMKyOXHJP14QGAWgnlpKxjuKekF724Fp6uoo/2hgn8lNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPC+T5i+w4m86KQfl2vtda3+YeoMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL7bBiLXE aggWBeWy6HYF30OB9wMtyVLlWLHwUHS3HpQVmAEDVWv7rC6CTC8DiR7+i0icQk7v jsOiKyTe45NkU+HCWZDUK7dxyvNos2OLjMwZzrFmNxyh66wj+reNt7BLq5iXP7Rh 9w2tsh0p1cFvSaOYdloQKlynTqv2ZHeEWufLBCRDewSRTl2wAN+jHh9KBidsxiRU 4dPy9rH8ntYG/cU9guxHtyBWNLHmoCcrLAFbotq2FcSuZe+jPtegiiV2eY0YGTtE 9s1ED/G1vMrCWVg7FISe1vm25tt+OsieuedSDsvkSfQhtZgzmV5hLb2zxo6MBnt4 THFbsFXOwusttA== -----END CERTIFICATE-----Generated at Wed Apr 22 01:46:31 2026 by rpki-client