This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: pyYYbglqcsKRc0JJK3s2RhBfim4698HwuNXuUzr8LjU= Subject key identifier: B5:AE:DE:B0:D5:7D:6E:8E:5C:B4:C4:E1:D2:A1:90:00:51:84:95:95 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019BF3F4C70A09CB78E33DAB08127C8ED1D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 124A Signing time: Sun 25 Jan 2026 07:01:03 +0000 Manifest this update: Sun 25 Jan 2026 07:01:03 +0000 Manifest next update: Mon 26 Jan 2026 07:01:03 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: kV9laqPMoPeGOWpKgqUBzAQaFu+lABXSEKSv7Mz5xrg=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f4:c7:0a:09:cb:78:e3:3d:ab:08:12:7c:8e:d1:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 25 07:01:03 2026 GMT Not After : Jan 26 07:01:03 2026 GMT Subject: CN=b5aedeb0d57d6e8e5cb4c4e1d2a1900051849595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:17:bf:cf:b5:86:86:01:f7:bd:aa:9a:22:fa: 54:c7:85:3f:46:21:55:50:84:fa:06:a7:89:18:64: c0:3a:e6:d6:b1:c7:a6:e8:33:01:54:70:7b:5c:7f: 32:d9:03:1a:34:c7:5e:d0:75:54:e6:6f:70:0c:8b: 29:06:32:f6:0d:00:54:48:ef:96:cf:65:08:ee:29: ff:e7:15:bd:de:f0:eb:8c:f3:84:7d:2b:d2:f5:22: 5e:d5:6b:62:50:91:04:09:d2:d5:ca:4e:64:da:80: 44:3e:ca:fa:31:a0:8c:7d:48:4a:6a:ed:24:1a:9c: 74:61:57:23:6e:e3:03:03:c8:0b:5f:4b:f7:2c:aa: 0e:57:85:0a:f6:f3:ef:3d:b4:95:36:3e:bf:ba:82: 73:ab:5f:38:e2:c7:1e:12:68:06:8a:10:a0:fd:f7: c7:d8:f3:58:59:aa:23:8a:75:62:1b:7f:06:4c:ae: c9:d8:2a:1e:e2:e8:26:6a:07:4e:76:94:36:27:9f: 78:85:fe:af:2b:f2:bf:09:4f:14:aa:76:59:7b:1a: c5:97:db:84:0e:bf:32:b0:ce:6e:e8:e4:db:40:a4: ec:a6:e1:5c:40:cb:f5:14:0d:e1:3b:0d:ca:60:5e: 18:4c:53:c8:cf:8a:4b:62:95:d0:a5:35:a4:89:2b: 50:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AE:DE:B0:D5:7D:6E:8E:5C:B4:C4:E1:D2:A1:90:00:51:84:95:95 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:19:39:b3:82:e3:fc:bd:88:91:4c:77:8c:e5:db:c7:8c:f3: bc:f1:5c:23:45:65:39:bf:28:5a:25:c1:11:5f:2f:40:a3:2f: b1:30:c6:90:f3:4e:28:70:e2:ab:cb:fc:81:04:e2:5d:b4:59: 31:e2:ea:1d:8e:f7:1b:a6:0f:77:9e:00:53:ec:68:36:11:2d: 4e:67:b8:2a:59:b9:3f:f2:4e:47:5d:89:d2:7a:df:ed:ed:cd: ba:b8:40:19:ef:5f:4b:6d:09:0e:ff:49:86:8f:1a:96:72:40: 47:fb:a9:46:fb:18:83:d2:47:f0:e5:16:ba:86:d6:2d:18:5c: 22:a9:75:cf:e2:1e:4f:b9:75:23:fa:b7:09:8c:9c:4c:1c:c6: d1:d7:a6:12:30:ea:f3:fd:45:b4:fb:7e:73:34:d7:80:37:a3: 21:64:89:47:92:ff:25:23:4b:6f:46:df:16:61:66:2f:5c:a1: 86:0d:ad:a2:e7:b1:c3:f9:d2:53:83:ab:6e:72:70:99:de:2c: 2e:e0:71:37:4c:fd:c7:36:60:ae:f1:54:80:98:d5:d8:f2:b9: 77:a1:56:2c:55:78:9a:da:d2:b2:16:23:ce:69:6a:7b:21:c9: c6:42:d1:77:5d:9b:13:ce:e0:d4:e3:d3:24:8b:bd:01:df:27: 01:c3:28:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9McKCct44z2rCBJ8jtHSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTI1MDcwMTAzWhcNMjYwMTI2MDcwMTAzWjAzMTEwLwYDVQQD EyhiNWFlZGViMGQ1N2Q2ZThlNWNiNGM0ZTFkMmExOTAwMDUxODQ5NTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiBe/z7WGhgH3vaqaIvpUx4U/RiFV UIT6BqeJGGTAOubWscem6DMBVHB7XH8y2QMaNMde0HVU5m9wDIspBjL2DQBUSO+W z2UI7in/5xW93vDrjPOEfSvS9SJe1WtiUJEECdLVyk5k2oBEPsr6MaCMfUhKau0k Gpx0YVcjbuMDA8gLX0v3LKoOV4UK9vPvPbSVNj6/uoJzq1844sceEmgGihCg/ffH 2PNYWaojinViG38GTK7J2Coe4ugmagdOdpQ2J594hf6vK/K/CU8UqnZZexrFl9uE Dr8ysM5u6OTbQKTspuFcQMv1FA3hOw3KYF4YTFPIz4pLYpXQpTWkiStQ+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLWu3rDVfW6OXLTE4dKhkABRhJWVMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkxk5s4Lj /L2IkUx3jOXbx4zzvPFcI0VlOb8oWiXBEV8vQKMvsTDGkPNOKHDiq8v8gQTiXbRZ MeLqHY73G6YPd54AU+xoNhEtTme4Klm5P/JOR12J0nrf7e3NurhAGe9fS20JDv9J ho8alnJAR/upRvsYg9JH8OUWuobWLRhcIql1z+IeT7l1I/q3CYycTBzG0demEjDq 8/1FtPt+czTXgDejIWSJR5L/JSNLb0bfFmFmL1yhhg2touexw/nSU4OrbnJwmd4s LuBxN0z9xzZgrvFUgJjV2PK5d6FWLFV4mtrSshYjzmlqeyHJxkLRd12bE87g1OPT JIu9Ad8nAcMoWQ== -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:21 2026 by rpki-client