
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier: Psu1EvHdlRu6Vqq7SpCYnNuCtaJkgygWr2jZrtpJ8VI=
Subject key identifier: E4:14:28:82:94:DE:B8:9C:DB:E0:FE:60:18:E5:3F:F9:C2:F3:3B:B9
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019EBF91BF2A1DE171BC0E2D08C8C7E67B13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest number: 13BE
Signing time: Sat 13 Jun 2026 06:01:00 +0000
Manifest this update: Sat 13 Jun 2026 06:01:00 +0000
Manifest next update: Sun 14 Jun 2026 06:01:00 +0000
Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=)
2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=)
3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=)
4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=)
5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=)
6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=)
7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=)
8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=)
9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=)
10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=)
11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=)
12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=)
13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=)
14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: DyGNYqE++iQru2J+dGxv/LirKrYIO4XgbQATkrg71qg=)
15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=)
16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=)
17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:bf:2a:1d:e1:71:bc:0e:2d:08:c8:c7:e6:7b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jun 13 06:01:00 2026 GMT
Not After : Jun 14 06:01:00 2026 GMT
Subject: CN=e414288294deb89cdbe0fe6018e53ff9c2f33bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4d:fa:97:59:d5:55:71:43:ba:a2:9e:c7:b9:
2e:d8:ef:a8:90:97:02:1c:2a:66:ea:ec:44:ab:9f:
fa:fe:17:99:38:1a:1b:3e:23:55:78:05:42:f8:bb:
76:36:46:d6:a5:6a:8f:e9:7d:ca:02:de:28:e1:b2:
d8:31:f9:c8:58:8f:ff:47:a2:54:90:2c:36:59:51:
a0:c1:59:a4:70:e2:93:e2:ec:8a:ec:27:3a:17:2a:
a0:ed:a1:95:16:19:c4:9b:52:7f:0a:e0:52:d9:1d:
6e:5c:87:66:db:73:fa:ef:de:ca:ee:9b:72:38:33:
3a:be:3f:6e:70:01:4b:3b:50:9e:45:02:35:0a:36:
25:73:76:3d:fb:e8:10:f6:7b:95:f0:dd:27:50:c9:
3c:97:19:cd:3c:61:63:e2:2f:20:c9:a3:16:29:74:
8f:d7:9d:cd:ed:f4:94:04:ac:05:97:f7:d7:b2:79:
b9:da:33:b8:21:0c:02:13:ad:3f:a6:11:7a:f3:36:
36:19:12:90:3b:a6:37:b7:48:f6:9d:c6:a2:ef:31:
1d:dc:49:63:bb:50:bf:d4:29:8e:85:2a:2e:ab:d2:
65:2e:e7:0b:6a:0e:e5:f8:6f:69:cc:a7:3b:42:27:
b7:1e:ec:9d:8b:70:ad:d9:ee:86:f8:0a:37:9c:70:
aa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:14:28:82:94:DE:B8:9C:DB:E0:FE:60:18:E5:3F:F9:C2:F3:3B:B9
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:9b:65:4b:b1:0a:e4:d9:72:91:93:36:a0:51:f0:62:55:c9:
2d:fd:37:43:8c:6b:c5:70:22:6c:4a:ed:c4:51:1d:98:af:3e:
2d:b1:10:81:a7:1a:2d:01:1d:7f:a5:d5:62:7b:c9:cb:1a:f9:
e9:8c:47:ff:9d:f6:86:67:b5:d6:e8:9d:31:99:33:60:a5:9d:
a4:96:1b:10:e8:98:c4:44:75:ed:03:0a:30:35:17:1c:44:f4:
b7:aa:0f:53:d4:bd:b3:85:30:93:10:93:ea:7a:57:9a:6d:bd:
b9:cc:af:30:dc:83:d2:a1:39:84:35:4c:5e:78:85:bc:8e:e2:
4a:8e:96:b8:8e:18:9e:e4:52:23:22:85:70:2b:93:b8:ae:7b:
5b:95:be:80:5e:22:32:b8:8a:62:35:56:63:f8:f1:6a:b3:17:
43:ec:5e:9a:e5:ea:ca:e0:af:2e:94:a8:50:7a:39:04:1e:da:
0e:f1:8c:2f:c6:2a:ff:e4:e6:87:a2:fd:27:ab:74:e5:df:99:
64:43:33:28:a4:a7:ac:ae:a8:2a:43:f2:9b:83:8a:6b:1c:6f:
8a:b7:f9:dd:82:99:ed:d1:29:21:89:c9:f2:50:ec:da:cd:9c:
fb:b1:0e:b6:bf:c9:3a:b0:49:46:dd:0d:33:cc:aa:9e:50:da:
05:e1:7f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:05:07 2026 by rpki-client