
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: wuSr2qa5oySXESQj+ibGZ7FIjbQeQh1Xc2mjbmI9YEg=
Subject key identifier: 83:A9:D7:28:C7:C0:BF:F0:9E:F5:46:4B:F9:7D:4F:66:8D:39:E2:91
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019F6F4F1F4AA3AF1B81D13CCBCCE02B4A52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 141A
Signing time: Fri 17 Jul 2026 09:01:24 +0000
Manifest this update: Fri 17 Jul 2026 09:01:24 +0000
Manifest next update: Sat 18 Jul 2026 09:01:24 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: I0ycopSi6_q86tsS_2ZsGMaSE7E.roa (hash: X5k67tgIigX44haykK5HKygDUVpwt1sPzwvIgtRhgUo=)
4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: /b3cTUq2Ut79H76zAF+yNLi36HpTUXAOo/FmjDQE2a0=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Jul 2026 08:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:6f:4f:1f:4a:a3:af:1b:81:d1:3c:cb:cc:e0:2b:4a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jul 17 09:01:24 2026 GMT
Not After : Jul 18 09:01:24 2026 GMT
Subject: CN=83a9d728c7c0bff09ef5464bf97d4f668d39e291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:30:01:af:1e:a7:d2:ab:50:c0:1f:d4:f8:f1:
70:18:f3:21:e3:b7:35:42:9a:fc:9c:81:08:cd:9f:
a5:5c:ba:bf:4e:53:dc:d7:0e:45:4e:ca:45:70:dd:
ae:eb:2f:0c:a3:02:be:7e:b8:c6:21:8b:0d:ff:d9:
a7:44:8e:e5:ae:6a:a7:29:76:d7:b0:d3:5f:b4:cf:
6b:93:c5:a4:2b:18:78:7f:98:03:9c:eb:77:38:f7:
df:54:d0:0c:b2:71:2e:f6:81:5a:3f:43:d5:c5:79:
67:48:27:ca:08:06:cf:9e:19:1d:4a:23:63:9e:9d:
55:85:2d:ae:8c:90:70:55:b5:3a:45:5c:27:68:68:
16:87:bf:98:f3:0a:b4:6d:cf:78:8a:e5:d8:6f:e6:
ce:1d:2c:8a:c4:d7:87:79:e4:1a:1a:f1:07:f4:e5:
ea:5e:ed:11:1d:9f:c2:b6:b1:2f:db:40:10:44:80:
1f:bf:b2:8c:18:37:a0:fa:72:8f:75:b2:1f:58:15:
6c:92:ff:7a:82:e2:e1:85:c3:6e:f9:27:18:27:95:
78:cc:12:29:f3:fd:59:93:7f:3e:9a:bc:95:06:71:
53:32:46:f2:d5:22:89:ed:56:78:77:b8:b7:b8:75:
45:b8:72:6d:45:dc:74:06:6a:46:cb:b2:8d:52:21:
62:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A9:D7:28:C7:C0:BF:F0:9E:F5:46:4B:F9:7D:4F:66:8D:39:E2:91
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:ed:d9:cf:88:bc:98:ab:88:be:99:0b:84:d6:00:ff:b9:95:
d9:65:e0:6f:73:a6:76:26:8d:21:3f:0d:02:65:f3:77:80:f7:
ac:a6:f5:4b:6e:32:41:de:11:c2:54:31:a4:09:c2:47:8f:df:
51:17:50:90:77:8a:8b:b0:2d:55:70:0f:53:5d:c9:e7:85:b6:
52:30:e9:ac:93:56:3d:c3:c4:5f:7f:bc:90:a1:ce:fb:bc:68:
85:4e:b8:e2:c9:03:4e:e0:8f:f6:cd:c1:3c:6b:5b:70:c0:f3:
8f:50:10:dd:af:9a:80:d0:5d:e0:36:5b:c2:80:bb:a5:b4:ee:
40:0e:3a:cc:29:c1:8a:ff:29:ed:b0:b0:c6:eb:97:55:61:67:
25:88:f2:0e:83:08:57:61:12:0e:48:27:cd:fe:ac:f6:ae:2b:
19:db:80:42:8e:70:36:a8:f3:70:87:4b:6c:0b:d0:c8:ac:3d:
63:fe:5d:7d:29:e2:4d:c8:8d:78:19:0a:e3:30:64:8f:48:c6:
fa:b6:92:06:29:40:a7:06:fa:b3:ce:e5:99:db:e3:0e:ce:7b:
46:d2:7b:fd:d3:ad:39:c9:24:65:bf:0e:40:5b:14:1d:aa:13:
da:46:9a:79:4f:72:be:2f:99:95:7c:80:c7:e3:a8:69:12:96:
92:33:c9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 14:42:27 2026 by rpki-client