$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 4bpT9eXk5tzx3cEKxAs5f8FvBy6nDseIsE8sNkj/EXk= Subject key identifier: 12:E1:FF:D9:9C:D1:CA:3D:46:A6:D3:CD:3F:36:A4:BD:23:8D:A6:41 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019A80184FC920EAD9E57F9208FDE0729090 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1188 Signing time: Fri 14 Nov 2025 02:01:08 +0000 Manifest this update: Fri 14 Nov 2025 02:01:08 +0000 Manifest next update: Sat 15 Nov 2025 02:01:08 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: okLLnlgcD+WbJaKutI59DullHnwv5GBoquESIFGqJO4=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 15 Nov 2025 00:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:80:18:4f:c9:20:ea:d9:e5:7f:92:08:fd:e0:72:90:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Nov 14 02:01:08 2025 GMT Not After : Nov 15 02:01:08 2025 GMT Subject: CN=12e1ffd99cd1ca3d46a6d3cd3f36a4bd238da641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1c:b7:94:fc:77:10:88:35:3f:30:b7:bb:16: 10:65:06:9e:09:c9:e2:44:f7:31:96:66:96:f4:9e: 81:3e:11:24:e9:e6:fe:e7:3f:75:e4:70:28:9b:9b: b2:e3:3b:19:83:a6:06:16:e3:bc:c4:5b:39:9a:81: 20:51:41:98:dc:61:c0:26:11:65:06:37:b0:47:1b: 09:64:10:29:de:e0:b9:ba:98:b2:40:ff:c4:eb:ae: 1b:76:a2:34:ec:f7:18:84:d0:62:2e:a4:f2:10:b0: e5:5a:e2:d3:6b:bf:a1:57:69:12:11:37:59:cc:ea: cf:78:d0:32:e6:29:a9:c3:38:6c:d0:0d:c8:22:1b: 59:83:fe:7a:c8:c7:71:91:8c:6b:cf:6a:dd:b3:9a: 1b:d3:87:3c:35:04:ac:25:f4:d4:19:e6:5b:a9:a0: ec:58:5d:25:78:b1:90:a1:22:af:3a:7f:a5:c8:a3: 06:b1:40:48:5c:67:c2:59:73:a6:5b:60:e2:9e:bc: 6c:12:e5:5d:ef:0f:42:cc:44:b3:11:7d:79:6c:4f: 23:65:b7:18:b2:2f:e6:cf:78:a0:cc:7b:00:ec:6a: 05:83:7f:77:25:20:be:ba:31:e1:98:01:d6:23:a2: 1b:35:69:c3:ac:98:b9:35:4e:81:1e:b6:ee:d9:7d: 45:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E1:FF:D9:9C:D1:CA:3D:46:A6:D3:CD:3F:36:A4:BD:23:8D:A6:41 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:d8:55:15:6b:8c:2e:34:1f:df:0c:98:66:55:b1:3a:ed:fd: d4:3e:d7:93:f3:a4:d6:bc:3e:e2:58:20:86:53:ec:07:97:ea: 7d:81:22:07:d9:4d:4e:6c:c8:0a:6d:8a:fe:b5:90:39:7e:87: 89:34:a8:07:81:4e:6a:61:49:73:d2:f7:48:dc:5c:7a:28:d0: c5:57:d6:5f:0b:21:a0:ca:81:6d:0d:65:b7:c7:f4:5f:80:dc: ce:a6:0c:2b:df:ab:35:d9:2b:94:f9:42:0f:31:23:b6:a4:07: 98:0b:c7:65:4b:9b:96:1f:49:9e:ec:05:8d:09:b4:bc:05:e5: c0:19:a3:fe:e7:28:f8:e5:ce:91:51:ac:80:f7:4d:a6:78:b5: 47:ea:26:5d:a3:8f:b7:4b:30:c8:dd:ee:a1:ea:a6:f6:48:e3: bc:13:09:ea:9b:d3:5a:42:4f:40:f6:d3:c3:80:5e:06:69:c6: b0:d6:0f:06:99:a0:12:d8:9e:7e:97:53:52:55:a4:75:96:75: 40:0e:20:5b:08:e4:9b:05:f0:ad:2e:f7:ee:86:d4:b1:66:65: a5:b9:d7:82:fc:59:a9:3f:f4:ae:b2:41:c2:7c:5a:20:37:f8: 7f:7b:fd:67:22:c2:4a:7b:c8:0a:11:eb:5d:25:24:66:85:cc: 26:d9:2b:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqAGE/JIOrZ5X+SCP3gcpCQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMTE0MDIwMTA4WhcNMjUxMTE1MDIwMTA4WjAzMTEwLwYDVQQD EygxMmUxZmZkOTljZDFjYTNkNDZhNmQzY2QzZjM2YTRiZDIzOGRhNjQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBy3lPx3EIg1PzC3uxYQZQaeCcni RPcxlmaW9J6BPhEk6eb+5z915HAom5uy4zsZg6YGFuO8xFs5moEgUUGY3GHAJhFl BjewRxsJZBAp3uC5upiyQP/E664bdqI07PcYhNBiLqTyELDlWuLTa7+hV2kSETdZ zOrPeNAy5impwzhs0A3IIhtZg/56yMdxkYxrz2rds5ob04c8NQSsJfTUGeZbqaDs WF0leLGQoSKvOn+lyKMGsUBIXGfCWXOmW2DinrxsEuVd7w9CzESzEX15bE8jZbcY si/mz3igzHsA7GoFg393JSC+ujHhmAHWI6IbNWnDrJi5NU6BHrbu2X1F+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBLh/9mc0co9RqbTzT82pL0jjaZBMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqthVFWuM LjQf3wyYZlWxOu391D7Xk/Ok1rw+4lgghlPsB5fqfYEiB9lNTmzICm2K/rWQOX6H iTSoB4FOamFJc9L3SNxceijQxVfWXwshoMqBbQ1lt8f0X4DczqYMK9+rNdkrlPlC DzEjtqQHmAvHZUublh9JnuwFjQm0vAXlwBmj/uco+OXOkVGsgPdNpni1R+omXaOP t0swyN3uoeqm9kjjvBMJ6pvTWkJPQPbTw4BeBmnGsNYPBpmgEtiefpdTUlWkdZZ1 QA4gWwjkmwXwrS737obUsWZlpbnXgvxZqT/0rrJBwnxaIDf4f3v9ZyLCSnvIChHr XSUkZoXMJtkrWQ== -----END CERTIFICATE-----Generated at Fri Nov 14 10:55:45 2025 by rpki-client