$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: oRITrZQBuj1I9QyB22e67I5Um8//GDpLTVMup+pA4ME= Subject key identifier: 18:D2:A1:1E:B4:9F:FF:49:81:8E:25:26:4C:00:C0:D2:62:F5:D7:BE Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019874BD8452CE2E7C790E054BFE48438636 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1079 Signing time: Mon 04 Aug 2025 11:00:33 +0000 Manifest this update: Mon 04 Aug 2025 11:00:33 +0000 Manifest next update: Tue 05 Aug 2025 11:00:33 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 9ivqr2OpAhdT5Q9P4IwkbIfQkErpBGvp1TyM4JmF3LQ=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 05 Aug 2025 11:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:74:bd:84:52:ce:2e:7c:79:0e:05:4b:fe:48:43:86:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Aug 4 11:00:33 2025 GMT Not After : Aug 5 11:00:33 2025 GMT Subject: CN=18d2a11eb49fff49818e25264c00c0d262f5d7be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:85:b1:19:15:1d:f9:48:b0:4d:db:f9:34:7d: 9d:eb:e9:90:b7:19:0d:c3:23:c9:b8:48:80:ab:5e: 98:e3:ca:e0:a7:2c:d3:80:7e:2c:34:c6:a5:23:ab: 00:06:17:d8:b0:87:39:57:fa:64:ea:d7:94:06:4a: fd:a4:ce:86:fd:12:f2:ae:2b:ad:59:77:9a:c3:9e: b4:62:ed:a5:d5:e2:01:a2:e1:0e:c6:6a:54:16:44: b6:03:5d:5d:2d:86:bc:46:c5:b9:f2:45:77:9f:06: c8:cc:1b:e6:9d:cc:c3:32:21:c1:73:27:ca:0a:ae: 07:04:67:16:78:c0:96:b4:59:22:2e:57:09:d3:c9: 79:a0:14:3c:3d:c2:96:42:a5:dd:38:ea:a8:f3:18: a8:42:38:65:2f:46:60:56:ec:57:bd:9f:bb:9b:0d: a7:9e:8b:e4:18:47:0a:7b:b9:27:3e:0c:a2:0e:bd: 8e:dd:70:5f:19:6c:95:f2:ad:a2:02:a5:31:bf:dd: 5a:58:e0:e4:bd:0e:56:41:08:ab:9f:59:61:45:0a: c2:a7:69:e8:dd:db:67:08:fe:1f:03:a5:df:6f:0a: 84:dd:18:32:f6:12:be:ad:61:96:76:0e:22:5a:ca: fe:c8:67:99:8e:d5:d4:40:23:47:e5:2c:0a:e7:16: d4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D2:A1:1E:B4:9F:FF:49:81:8E:25:26:4C:00:C0:D2:62:F5:D7:BE X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b5:06:32:38:a9:16:37:69:a4:04:15:36:a0:f3:c6:b6:bc: 56:6b:b5:65:bb:c9:91:52:f2:b5:f1:66:61:99:3b:4d:f9:26: e4:6c:a1:58:76:1d:fa:d5:3c:4f:00:3e:0b:cb:c1:a3:2b:7b: 22:c9:77:3e:c5:82:d5:32:44:d0:99:32:76:71:41:f6:78:90: b6:04:8a:dd:ca:ee:8b:7c:79:cb:b5:e2:28:4d:f7:97:c6:7f: 16:a4:0b:e1:aa:1a:30:21:5b:cd:61:ef:90:d5:0f:39:15:98: 1a:74:e8:50:5e:27:a2:23:07:81:f5:6c:15:59:6d:22:f0:7a: 64:c8:61:19:bc:10:50:1a:3d:90:be:fa:0b:6b:61:8d:49:58: 44:f4:d2:c2:7b:b6:bb:45:5a:4d:68:b5:70:c1:37:73:0d:32: af:55:80:99:74:74:7d:71:e4:e8:b7:26:00:23:3f:ee:70:8d: 27:6f:85:02:90:ef:0d:ca:3a:89:90:cc:59:4c:39:7f:d5:b3: 5c:5d:81:42:52:68:94:cb:0d:8d:5b:91:03:1c:80:43:ec:58: 8e:e5:d8:63:10:fb:97:5c:f4:00:dd:f4:34:71:67:dc:06:d3: 5f:ed:49:bb:1b:de:81:24:1f:cf:a2:6e:ca:b5:55:b1:d7:8b: f5:48:3b:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZh0vYRSzi58eQ4FS/5IQ4Y2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUwODA0MTEwMDMzWhcNMjUwODA1MTEwMDMzWjAzMTEwLwYDVQQD EygxOGQyYTExZWI0OWZmZjQ5ODE4ZTI1MjY0YzAwYzBkMjYyZjVkN2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5oWxGRUd+UiwTdv5NH2d6+mQtxkN wyPJuEiAq16Y48rgpyzTgH4sNMalI6sABhfYsIc5V/pk6teUBkr9pM6G/RLyriut WXeaw560Yu2l1eIBouEOxmpUFkS2A11dLYa8RsW58kV3nwbIzBvmnczDMiHBcyfK Cq4HBGcWeMCWtFkiLlcJ08l5oBQ8PcKWQqXdOOqo8xioQjhlL0ZgVuxXvZ+7mw2n novkGEcKe7knPgyiDr2O3XBfGWyV8q2iAqUxv91aWODkvQ5WQQirn1lhRQrCp2no 3dtnCP4fA6XfbwqE3Rgy9hK+rWGWdg4iWsr+yGeZjtXUQCNH5SwK5xbU4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjSoR60n/9JgY4lJkwAwNJi9de+MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjbUGMjip FjdppAQVNqDzxra8Vmu1ZbvJkVLytfFmYZk7Tfkm5GyhWHYd+tU8TwA+C8vBoyt7 Isl3PsWC1TJE0JkydnFB9niQtgSK3crui3x5y7XiKE33l8Z/FqQL4aoaMCFbzWHv kNUPORWYGnToUF4noiMHgfVsFVltIvB6ZMhhGbwQUBo9kL76C2thjUlYRPTSwnu2 u0VaTWi1cME3cw0yr1WAmXR0fXHk6LcmACM/7nCNJ2+FApDvDco6iZDMWUw5f9Wz XF2BQlJolMsNjVuRAxyAQ+xYjuXYYxD7l1z0AN30NHFn3AbTX+1JuxvegSQfz6Ju yrVVsdeL9Ug7+Q== -----END CERTIFICATE-----Generated at Mon Aug 4 21:33:12 2025 by rpki-client