$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: D0FKk8rwhLnY1n/YRkr6LuF6VAX4rTmkO6ARryUMHI0= Subject key identifier: E0:9E:46:7D:BE:E5:50:8C:77:AE:C2:CF:4B:9C:ED:FE:6E:C5:56:F5 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019A51BEECF8B9AE61D91FB7F7654D01C7A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1170 Signing time: Wed 05 Nov 2025 02:00:58 +0000 Manifest this update: Wed 05 Nov 2025 02:00:58 +0000 Manifest next update: Thu 06 Nov 2025 02:00:58 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: dIRBsdF2Y/TX4MUfB0VUky/AsKT+RYFD5BoZNxYAVoc=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 02:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:51:be:ec:f8:b9:ae:61:d9:1f:b7:f7:65:4d:01:c7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Nov 5 02:00:58 2025 GMT Not After : Nov 6 02:00:58 2025 GMT Subject: CN=e09e467dbee5508c77aec2cf4b9cedfe6ec556f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:5d:cd:1d:b1:bd:03:3c:62:54:58:08:d9: 78:7d:a5:ac:28:6a:2d:08:70:51:5e:b0:a7:f3:36: 4e:89:63:28:b0:6f:cc:9e:4a:d7:7d:06:3c:87:a0: e3:6b:34:d5:27:10:b5:16:da:83:31:72:58:8f:89: 97:81:5a:97:f4:11:7e:90:39:e0:43:f6:96:a7:bd: 43:c7:77:de:47:2b:13:b7:f3:b2:54:b5:67:62:a9: ec:ed:02:74:ac:49:04:7f:78:7d:40:b2:e8:8a:d8: 78:81:45:57:10:70:e1:81:ee:4f:e3:3c:a4:c5:df: 7e:b9:0d:b1:a6:b5:3c:92:69:d7:4f:d4:2e:cb:95: b9:02:42:36:60:35:11:6c:f2:75:34:17:04:1e:16: 7d:95:2b:b0:63:df:0c:9a:8d:31:4e:41:86:61:57: b4:f8:33:89:b5:38:cf:5d:53:ff:4c:15:6d:4e:07: 09:46:aa:f5:65:b3:ec:eb:08:23:95:09:7a:e7:24: 2f:8b:ea:8b:5b:49:64:ec:c6:de:7f:b4:9c:9a:a1: 13:51:87:d6:c3:fb:77:e0:43:13:83:2d:0a:9a:4f: 32:27:6b:ee:82:19:f1:74:d3:e7:f0:10:6a:f9:14: 20:5e:04:98:3d:d5:24:b7:81:63:b0:49:35:48:fc: f1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9E:46:7D:BE:E5:50:8C:77:AE:C2:CF:4B:9C:ED:FE:6E:C5:56:F5 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:15:96:52:4c:13:bb:d4:8f:bd:29:0e:d6:87:a7:c1:ac:8d: f3:70:fb:88:bc:73:78:df:9c:ac:66:f4:7c:1d:28:e9:be:db: 88:35:42:c1:d5:f0:67:d9:c2:96:21:a8:02:86:66:fe:77:26: c0:69:9d:ed:56:51:5a:ac:7b:a5:7e:9f:07:d1:74:26:36:a5: ac:55:c6:01:51:bb:2d:54:5e:59:78:2a:6e:a7:83:58:d3:22: 7f:15:50:36:ac:2f:91:3e:1b:10:e4:05:75:25:31:3b:72:bf: 1d:6e:2e:55:ac:81:62:ff:5c:2a:fe:6c:4e:3e:96:45:53:3d: ed:25:41:5c:dc:10:d1:fb:1b:e2:3d:dc:f9:d1:0e:1f:46:2e: ea:1b:a7:09:19:d2:f9:81:34:f1:da:df:fb:45:fa:5c:8d:d4: 37:a9:51:dc:fa:ed:64:0f:f7:70:9c:32:64:c3:12:55:bf:fb: 7e:57:53:57:fe:ec:2d:58:b4:7c:af:4e:94:85:a2:38:4f:91: 49:be:ca:09:d4:28:67:00:ce:a8:8b:fc:ae:23:9c:9d:1c:a3: 1d:99:ef:0d:90:9c:9e:c9:7a:11:55:d9:77:f4:61:12:d7:23: 50:e5:c3:95:96:32:34:f7:ff:cc:35:87:5d:85:ae:e5:00:c4: 4a:31:e8:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpRvuz4ua5h2R+392VNAcekMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMTA1MDIwMDU4WhcNMjUxMTA2MDIwMDU4WjAzMTEwLwYDVQQD EyhlMDllNDY3ZGJlZTU1MDhjNzdhZWMyY2Y0YjljZWRmZTZlYzU1NmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbxdzR2xvQM8YlRYCNl4faWsKGot CHBRXrCn8zZOiWMosG/MnkrXfQY8h6DjazTVJxC1FtqDMXJYj4mXgVqX9BF+kDng Q/aWp71Dx3feRysTt/OyVLVnYqns7QJ0rEkEf3h9QLLoith4gUVXEHDhge5P4zyk xd9+uQ2xprU8kmnXT9Quy5W5AkI2YDURbPJ1NBcEHhZ9lSuwY98Mmo0xTkGGYVe0 +DOJtTjPXVP/TBVtTgcJRqr1ZbPs6wgjlQl65yQvi+qLW0lk7Mbef7ScmqETUYfW w/t34EMTgy0Kmk8yJ2vughnxdNPn8BBq+RQgXgSYPdUkt4FjsEk1SPzxEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOCeRn2+5VCMd67Cz0uc7f5uxVb1MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAARWWUkwT u9SPvSkO1oenwayN83D7iLxzeN+crGb0fB0o6b7biDVCwdXwZ9nCliGoAoZm/ncm wGmd7VZRWqx7pX6fB9F0JjalrFXGAVG7LVReWXgqbqeDWNMifxVQNqwvkT4bEOQF dSUxO3K/HW4uVayBYv9cKv5sTj6WRVM97SVBXNwQ0fsb4j3c+dEOH0Yu6hunCRnS +YE08drf+0X6XI3UN6lR3PrtZA/3cJwyZMMSVb/7fldTV/7sLVi0fK9OlIWiOE+R Sb7KCdQoZwDOqIv8riOcnRyjHZnvDZCcnsl6EVXZd/RhEtcjUOXDlZYyNPf/zDWH XYWu5QDESjHoxw== -----END CERTIFICATE-----Generated at Wed Nov 5 09:36:13 2025 by rpki-client