This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: CmbiYO8KUV5AzmAbvOB9c4B0xACoAxuqBPQoJh12wJk= Subject key identifier: B8:1F:4F:96:75:D4:82:C6:67:52:F9:B3:E3:2E:A7:49:A7:B8:EC:8B Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019BBBF5441FC2D7AA757BA7D3CCCD34AE95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 122D Signing time: Wed 14 Jan 2026 10:02:51 +0000 Manifest this update: Wed 14 Jan 2026 10:02:51 +0000 Manifest next update: Thu 15 Jan 2026 10:02:51 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 8UsQpkvq8HMcQbFGfntI6qSmNfqyhpfqmpka0X8h6Fg=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 Jan 2026 10:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bb:f5:44:1f:c2:d7:aa:75:7b:a7:d3:cc:cd:34:ae:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 14 10:02:51 2026 GMT Not After : Jan 15 10:02:51 2026 GMT Subject: CN=b81f4f9675d482c66752f9b3e32ea749a7b8ec8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0f:cf:49:b6:ea:08:97:86:fb:2d:c5:c9:9d: d6:97:1d:2f:e8:44:26:53:60:9a:b3:56:ca:df:40: 3c:05:50:da:25:98:58:95:53:61:03:c8:4d:b5:5e: a5:fd:22:70:f8:7f:ba:c2:5a:89:c6:de:bd:7f:0f: 54:c3:48:e8:f8:03:94:4a:d3:34:84:c5:8c:82:31: 3b:4c:43:6f:17:d6:53:e5:8e:e4:e1:9a:12:fb:eb: 5a:c1:9c:b8:d8:45:0a:00:dc:88:bf:ee:f4:23:89: 29:b1:b2:37:1a:02:d7:a3:47:73:1b:76:3d:a3:82: a2:af:61:6b:df:2f:b6:f7:c3:10:1f:98:a1:64:28: 13:16:8d:05:75:b5:f7:9b:83:fa:37:8e:e8:3e:19: 3e:9a:eb:2b:13:91:79:3a:e2:04:f2:4d:11:54:1f: a5:10:43:58:56:10:16:50:59:dc:69:2c:92:3b:34: 95:8d:bb:3e:1c:da:6c:f5:c4:c9:1c:a4:0e:31:08: 8d:7e:66:5f:dc:eb:1d:61:49:b1:ab:14:b4:d2:ee: a6:9c:4a:dd:b5:35:39:eb:7b:46:39:be:71:fd:39: ca:35:3f:88:68:ef:0a:96:25:c5:8d:e2:ab:83:0e: 57:51:2b:9d:9a:b1:28:05:40:8f:5a:ab:b0:3a:4e: 6f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1F:4F:96:75:D4:82:C6:67:52:F9:B3:E3:2E:A7:49:A7:B8:EC:8B X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:d8:f5:8d:a6:b0:5a:ff:4d:cc:3a:b6:2e:49:2e:c5:49:16: ed:00:b0:de:9a:74:61:f6:de:66:7c:af:c2:18:d7:bc:e4:c3: a0:15:f5:f3:65:d8:8b:38:01:0d:32:a7:82:14:91:73:04:ee: bf:8f:c7:67:23:6c:67:6e:d1:9f:2a:f8:d3:c0:b6:5e:66:24: 6f:9b:ea:ba:b7:2a:8e:b3:3f:17:39:eb:ed:31:26:a6:79:4f: a2:92:ee:ce:17:8b:3b:ed:e0:90:c8:58:e4:aa:33:db:40:d1: 3a:78:bd:b5:2b:8b:26:5d:b2:d9:4b:24:5f:e6:da:a1:66:0b: 1a:1f:c0:37:4a:03:d8:e5:6b:47:10:9e:b5:b8:c8:d7:dd:d9: b4:29:fa:5a:57:8e:1b:8c:b5:9d:1c:af:36:5e:bf:b8:a0:cb: a4:d1:41:3f:8a:f4:09:25:aa:bc:00:a4:5d:11:9c:07:51:6a: 35:d1:4f:2e:cd:d5:7a:4b:9a:e9:85:19:66:d5:6e:91:ef:59: 27:77:19:6d:84:1b:b8:ec:fe:8e:af:d7:7b:70:ae:2c:25:fa: 12:99:02:d1:c4:d1:69:ee:82:21:40:08:62:2a:b6:c7:d2:00: 07:6f:fd:0a:6b:cf:d2:8f:04:86:4c:06:9e:55:48:ff:48:71: 83:f1:4e:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu79UQfwteqdXun08zNNK6VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTE0MTAwMjUxWhcNMjYwMTE1MTAwMjUxWjAzMTEwLwYDVQQD EyhiODFmNGY5Njc1ZDQ4MmM2Njc1MmY5YjNlMzJlYTc0OWE3YjhlYzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4A/PSbbqCJeG+y3FyZ3Wlx0v6EQm U2Cas1bK30A8BVDaJZhYlVNhA8hNtV6l/SJw+H+6wlqJxt69fw9Uw0jo+AOUStM0 hMWMgjE7TENvF9ZT5Y7k4ZoS++tawZy42EUKANyIv+70I4kpsbI3GgLXo0dzG3Y9 o4Kir2Fr3y+298MQH5ihZCgTFo0FdbX3m4P6N47oPhk+musrE5F5OuIE8k0RVB+l EENYVhAWUFncaSySOzSVjbs+HNps9cTJHKQOMQiNfmZf3OsdYUmxqxS00u6mnErd tTU563tGOb5x/TnKNT+IaO8KliXFjeKrgw5XUSudmrEoBUCPWquwOk5vuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLgfT5Z11ILGZ1L5s+Mup0mnuOyLMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNj1jaaw Wv9NzDq2LkkuxUkW7QCw3pp0YfbeZnyvwhjXvOTDoBX182XYizgBDTKnghSRcwTu v4/HZyNsZ27Rnyr408C2XmYkb5vqurcqjrM/Fznr7TEmpnlPopLuzheLO+3gkMhY 5Koz20DROni9tSuLJl2y2UskX+baoWYLGh/AN0oD2OVrRxCetbjI193ZtCn6WleO G4y1nRyvNl6/uKDLpNFBP4r0CSWqvACkXRGcB1FqNdFPLs3Vekua6YUZZtVuke9Z J3cZbYQbuOz+jq/Xe3CuLCX6EpkC0cTRae6CIUAIYiq2x9IAB2/9CmvP0o8EhkwG nlVI/0hxg/FOgA== -----END CERTIFICATE-----Generated at Wed Jan 14 18:24:50 2026 by rpki-client