$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: 6YPUtfNoLU/2RdJKGspWfShlDKADk5fHWXlfR7pj9g8= Subject key identifier: 60:90:20:BF:4C:A4:6C:60:24:91:EE:EF:D5:A1:D1:38:7D:A4:E8:D0 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 01976C2AB20274F271411094BACE21BDD14D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 0FF0 Signing time: Sat 14 Jun 2025 02:00:26 +0000 Manifest this update: Sat 14 Jun 2025 02:00:26 +0000 Manifest next update: Sun 15 Jun 2025 02:00:26 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: rMA5rDyDyBmgpEY011ysR3uBG2mLwa6Agqqa9FHPvXM=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:6c:2a:b2:02:74:f2:71:41:10:94:ba:ce:21:bd:d1:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 14 02:00:26 2025 GMT Not After : Jun 15 02:00:26 2025 GMT Subject: CN=609020bf4ca46c602491eeefd5a1d1387da4e8d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:74:41:e9:8e:1b:71:db:56:fd:1f:c6:74:9a: 70:87:1f:47:ab:33:58:fd:05:92:9a:7b:44:e1:af: 4f:81:fe:a0:b1:75:69:c1:fe:a4:b7:17:ab:3a:b0: 74:35:2e:39:69:59:22:91:45:fd:3f:c2:62:38:18: 0a:9f:f2:b8:b6:b5:32:bc:de:6c:b8:a9:0b:a3:3b: 09:72:61:79:40:fa:d2:33:82:ca:4d:1c:19:5c:99: 78:45:21:14:b5:d5:98:29:ed:e3:1b:87:ff:f2:ca: 2c:bf:68:4b:2d:24:d0:3c:c6:0c:9c:4a:91:d8:45: fa:05:e0:80:32:0a:22:16:3f:01:a8:b0:c8:b4:8d: ec:63:0f:a4:8d:fa:57:13:48:80:6e:f0:1c:0f:34: 0b:fa:22:bc:ef:98:f4:bf:55:23:59:20:a7:e3:5f: c4:90:5f:a7:a3:0d:aa:ed:24:6f:e0:87:56:4d:d5: 46:6c:c5:09:db:9c:a3:24:e5:d8:1b:80:00:f5:c3: 4c:d0:5c:b8:e3:19:58:f3:67:c9:79:ac:40:26:b9: 7b:e4:53:83:a9:00:d0:50:40:44:4f:1f:7d:82:3a: 14:a0:83:89:16:68:ac:d9:28:90:b2:19:b8:f4:44: 66:51:cd:2c:be:ca:48:90:33:96:47:aa:7f:f2:9a: 87:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:90:20:BF:4C:A4:6C:60:24:91:EE:EF:D5:A1:D1:38:7D:A4:E8:D0 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:bd:3e:9b:96:c8:4d:d1:00:1d:fe:77:1f:68:68:49:76:f7: 37:39:73:d1:0b:9f:0f:fa:6a:23:d6:d6:9f:77:f4:13:22:a5: e9:12:63:1f:71:59:da:71:36:c1:ee:48:4d:2d:0d:f3:14:4a: d9:2b:61:9c:65:11:7c:48:2d:c4:ca:a9:ec:00:93:a1:52:2c: f3:10:56:33:0a:39:71:81:52:3a:b3:6a:e7:1f:29:5e:9d:b7: 66:8d:04:27:09:6d:9b:21:1b:ee:99:ce:86:91:af:4f:55:73: 03:9f:2d:77:0f:69:0f:27:73:d7:67:60:ea:46:68:e0:4b:b6: d3:28:1c:dd:11:c1:75:47:ee:e2:41:89:12:b8:90:54:ad:32: dc:50:7a:41:23:ac:a6:bf:33:86:d1:05:17:7a:4d:36:30:04: c7:ac:a5:a1:61:da:fc:33:53:43:1f:8f:f3:b7:17:04:4f:57: e5:87:1e:ce:5b:f6:e8:8d:c1:39:89:a7:14:3b:98:97:49:eb: bb:5c:91:66:0c:ff:9a:bc:53:57:ee:24:51:ed:b3:a4:11:db: 7f:ea:2d:12:27:08:5a:91:45:df:f6:ed:82:fd:6a:b7:f4:e2: 0d:52:74:9d:ca:77:6e:46:9e:25:e9:f2:5c:c0:8a:d4:f7:e3: 16:56:b8:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdsKrICdPJxQRCUus4hvdFNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUwNjE0MDIwMDI2WhcNMjUwNjE1MDIwMDI2WjAzMTEwLwYDVQQD Eyg2MDkwMjBiZjRjYTQ2YzYwMjQ5MWVlZWZkNWExZDEzODdkYTRlOGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3RB6Y4bcdtW/R/GdJpwhx9HqzNY /QWSmntE4a9Pgf6gsXVpwf6ktxerOrB0NS45aVkikUX9P8JiOBgKn/K4trUyvN5s uKkLozsJcmF5QPrSM4LKTRwZXJl4RSEUtdWYKe3jG4f/8sosv2hLLSTQPMYMnEqR 2EX6BeCAMgoiFj8BqLDItI3sYw+kjfpXE0iAbvAcDzQL+iK875j0v1UjWSCn41/E kF+now2q7SRv4IdWTdVGbMUJ25yjJOXYG4AA9cNM0Fy44xlY82fJeaxAJrl75FOD qQDQUEBETx99gjoUoIOJFmis2SiQshm49ERmUc0svspIkDOWR6p/8pqHOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGCQIL9MpGxgJJHu79Wh0Th9pOjQMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXL0+m5bI TdEAHf53H2hoSXb3Nzlz0QufD/pqI9bWn3f0EyKl6RJjH3FZ2nE2we5ITS0N8xRK 2SthnGURfEgtxMqp7ACToVIs8xBWMwo5cYFSOrNq5x8pXp23Zo0EJwltmyEb7pnO hpGvT1VzA58tdw9pDydz12dg6kZo4Eu20ygc3RHBdUfu4kGJEriQVK0y3FB6QSOs pr8zhtEFF3pNNjAEx6yloWHa/DNTQx+P87cXBE9X5Ycezlv26I3BOYmnFDuYl0nr u1yRZgz/mrxTV+4kUe2zpBHbf+otEicIWpFF3/btgv1qt/TiDVJ0ncp3bkaeJeny XMCK1PfjFla4BA== -----END CERTIFICATE-----Generated at Sat Jun 14 09:07:43 2025 by rpki-client