$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: FrSX46tKDJyybnPn5g/WzoI60jvCnNKJzsmuHS7iTRQ= Subject key identifier: 5C:4E:4A:07:33:8E:BB:30:D4:02:87:7F:B2:FA:CD:A3:BA:72:E3:8C Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019EBDA2DCDDA8C321B700C05C44D0537BC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 13BD Signing time: Fri 12 Jun 2026 21:00:27 +0000 Manifest this update: Fri 12 Jun 2026 21:00:27 +0000 Manifest next update: Sat 13 Jun 2026 21:00:27 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 3: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 4: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 5: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 6: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 7: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 8: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 9: RTPP9X2zvoR_qL8VtqZr6WEHKzw.roa (hash: bz39/MS5H8r1qd18PCFQ3+2kRu1MJoP1Vd1Xyr//BW0=) 10: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 11: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 12: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 13: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 14: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: oNtaokTlBiHVSydL/yktCF1pRvuP4lECmGUAth9eIyg=) 15: htqKUhJyQNt1qA3G44rlxCxq60M.roa (hash: id0wxN4WW72w7KuwB5zxXQt9wJQv2b/0iQarjkgrnuM=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 21:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9e:bd:a2:dc:dd:a8:c3:21:b7:00:c0:5c:44:d0:53:7b:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jun 12 21:00:27 2026 GMT Not After : Jun 13 21:00:27 2026 GMT Subject: CN=5c4e4a07338ebb30d402877fb2facda3ba72e38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3e:7d:6c:98:78:0b:2b:c4:d0:dd:b6:7c:6f: c5:3d:ea:44:86:71:55:8e:52:28:23:fb:75:da:3f: 35:10:ac:7f:cb:a7:b5:e4:15:74:1d:ca:8b:06:e4: 49:0b:4f:ef:f6:31:34:f7:bf:74:fa:d5:84:fe:19: 5e:25:d4:cc:96:7b:9c:b9:2f:56:6a:31:74:64:1f: 03:29:54:51:3a:72:d4:3a:bb:de:2d:5e:8b:f8:20: 5d:43:d9:3b:4c:7f:34:20:c8:d6:89:5c:ff:34:36: 2e:fb:37:7c:66:9f:2b:b5:85:d8:aa:12:ef:d5:bd: 00:03:30:1a:0d:8b:f7:bd:22:c3:ef:f0:cf:5a:46: 0a:b9:9f:b4:6f:ab:47:8a:aa:7c:01:56:f0:8f:1b: d7:38:cb:82:35:7f:9b:cd:d0:e2:c3:10:0f:5d:16: 02:51:66:aa:92:0d:47:65:fc:d6:80:1d:d8:b3:4b: 76:4d:d5:84:3d:04:29:fd:cc:26:b3:4b:b7:b9:e2: 7d:34:ca:85:1f:0f:6b:fa:ec:11:df:38:ab:a7:3b: 89:d0:52:e7:53:24:1f:a5:a2:a9:13:26:9a:26:7d: 3e:10:85:9a:92:e2:86:3b:f2:32:56:b2:cb:d3:7a: 8e:73:11:01:c6:bb:d9:9b:b4:c9:d9:f5:4b:01:35: de:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4E:4A:07:33:8E:BB:30:D4:02:87:7F:B2:FA:CD:A3:BA:72:E3:8C X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:95:b6:df:b3:0d:ac:8e:07:b1:08:50:fc:4a:38:ed:88:79: 44:f8:08:41:8b:04:7b:8a:10:57:74:81:35:6f:a7:56:91:38: dd:a3:81:11:48:e5:3a:3c:20:e8:9d:c9:9e:2b:ae:2e:d8:61: b6:9f:08:ef:f0:63:f8:f4:3b:0d:1c:27:c3:67:e6:cb:3e:f1: 8e:32:7c:0c:ea:0b:8a:dd:81:44:1f:a4:27:11:10:7a:a3:a5: 42:61:02:83:43:47:10:0c:46:54:45:6c:56:73:11:ca:b7:36: 11:75:34:ad:31:39:66:48:08:97:e5:df:69:1a:9a:ca:8d:ab: 16:3b:37:58:0a:92:a8:5b:bf:6e:df:a9:db:50:3b:1c:4e:ec: da:b6:a9:30:b1:c3:11:f7:97:02:c0:e1:10:28:b6:97:be:98: 02:08:65:bb:d1:9d:74:f6:83:29:14:fd:45:0b:f4:c9:84:53: 55:c7:b6:ff:14:4b:48:df:aa:37:d5:7f:d9:e1:c9:db:3c:98: 17:f6:35:a2:b4:1f:0f:90:cf:4a:6d:ac:a3:4b:44:e4:7c:32: 2c:7d:dc:60:30:c5:57:b1:59:9c:83:7f:16:f8:d6:dc:0a:4b: 1f:25:83:36:ab:db:76:1c:ea:59:a5:ca:41:14:9e:1c:4d:c7: 08:01:8f:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZ69otzdqMMhtwDAXETQU3vCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwNjEyMjEwMDI3WhcNMjYwNjEzMjEwMDI3WjAzMTEwLwYDVQQD Eyg1YzRlNGEwNzMzOGViYjMwZDQwMjg3N2ZiMmZhY2RhM2JhNzJlMzhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmz59bJh4CyvE0N22fG/FPepEhnFV jlIoI/t12j81EKx/y6e15BV0HcqLBuRJC0/v9jE09790+tWE/hleJdTMlnucuS9W ajF0ZB8DKVRROnLUOrveLV6L+CBdQ9k7TH80IMjWiVz/NDYu+zd8Zp8rtYXYqhLv 1b0AAzAaDYv3vSLD7/DPWkYKuZ+0b6tHiqp8AVbwjxvXOMuCNX+bzdDiwxAPXRYC UWaqkg1HZfzWgB3Ys0t2TdWEPQQp/cwms0u3ueJ9NMqFHw9r+uwR3zirpzuJ0FLn UyQfpaKpEyaaJn0+EIWakuKGO/IyVrLL03qOcxEBxrvZm7TJ2fVLATXeKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFxOSgczjrsw1AKHf7L6zaO6cuOMMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKJW237MN rI4HsQhQ/Eo47Yh5RPgIQYsEe4oQV3SBNW+nVpE43aOBEUjlOjwg6J3JniuuLthh tp8I7/Bj+PQ7DRwnw2fmyz7xjjJ8DOoLit2BRB+kJxEQeqOlQmECg0NHEAxGVEVs VnMRyrc2EXU0rTE5ZkgIl+XfaRqayo2rFjs3WAqSqFu/bt+p21A7HE7s2rapMLHD EfeXAsDhECi2l76YAghlu9GddPaDKRT9RQv0yYRTVce2/xRLSN+qN9V/2eHJ2zyY F/Y1orQfD5DPSm2so0tE5HwyLH3cYDDFV7FZnIN/FvjW3ApLHyWDNqvbdhzqWaXK QRSeHE3HCAGPog== -----END CERTIFICATE-----Generated at Sat Jun 13 07:23:05 2026 by rpki-client