This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: zruScXdwV59d6Mu8jxway/0PS8GyesHSKZFOs6epBAs= Subject key identifier: 20:50:3C:EB:A5:1B:E5:BD:3C:2A:E4:0E:49:46:88:5D:1D:FE:FF:F2 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B8BAC3509821F2E2B977FBBD7292EA149 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1214 Signing time: Mon 05 Jan 2026 01:01:17 +0000 Manifest this update: Mon 05 Jan 2026 01:01:17 +0000 Manifest next update: Tue 06 Jan 2026 01:01:17 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: O46EAVnU7Bgd4WP1JEPoT+WZXWVv3smdME37dGOpnTQ=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 01:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8b:ac:35:09:82:1f:2e:2b:97:7f:bb:d7:29:2e:a1:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 5 01:01:17 2026 GMT Not After : Jan 6 01:01:17 2026 GMT Subject: CN=20503ceba51be5bd3c2ae40e4946885d1dfefff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dc:b9:f3:32:6c:74:64:70:2a:0c:2d:23:0c: fa:35:8e:ae:87:91:38:7e:18:69:f3:9a:e1:04:f0: ec:85:7a:c0:f2:91:7e:a9:db:80:e9:5b:94:42:b2: 65:6e:5f:c6:e5:24:7d:1d:f0:84:16:03:5a:57:5a: 23:9d:dc:73:ad:a6:95:a5:17:66:04:36:be:c4:ea: 78:f3:97:d3:68:1b:0c:66:4c:8c:4b:39:a9:f0:ba: d4:a2:70:7d:3f:af:9c:4f:0b:0a:e0:4f:04:fe:c2: 48:27:3a:a2:c8:94:7b:63:66:ea:5d:52:61:43:87: a7:46:b1:34:cc:2b:df:df:08:d8:c6:ef:b8:5c:70: 92:34:06:05:9d:73:57:9d:77:0d:d9:29:a2:e6:ba: 5a:b0:e5:06:d8:ed:62:9c:f6:4d:d7:f5:03:56:b9: e1:b4:2e:60:97:1c:d7:7a:80:3c:91:da:42:44:31: f4:58:9c:e9:7b:ec:9e:59:22:d9:5a:e2:79:a7:10: a7:6c:1e:c8:04:47:29:2e:0e:15:b3:78:17:48:7f: 9b:34:99:e7:ea:5d:cc:26:5a:59:31:9e:12:aa:83: 16:d2:eb:71:94:e0:da:af:8a:e4:bf:cf:3e:53:a7: 00:17:0f:3f:34:20:9f:82:c5:d5:bb:5c:68:8e:17: 41:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:50:3C:EB:A5:1B:E5:BD:3C:2A:E4:0E:49:46:88:5D:1D:FE:FF:F2 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:27:4f:49:10:73:b8:cc:dc:6d:c0:59:24:6a:44:f2:2b:7a: 23:f4:31:b1:4e:5d:b2:6a:f3:52:48:87:da:75:91:9d:d7:af: a9:3b:1f:d5:58:db:33:4c:f4:95:18:1e:64:79:b2:8d:1b:05: 9c:6f:12:2e:a4:8b:0c:42:48:e7:7a:2a:1f:47:db:d3:0d:cf: 1b:95:4a:e2:74:38:d6:77:89:c7:5f:08:55:87:01:1b:37:1a: 6e:c2:3b:1e:6e:45:5f:43:9f:82:b7:e8:36:c9:25:6d:c0:23: e8:09:9a:42:5c:d7:a5:00:be:ba:61:20:1e:92:b4:46:fd:f5: 71:3f:57:76:b5:52:53:92:70:90:59:de:2f:0b:e6:ef:33:47: d3:d3:54:ef:78:c7:60:19:c0:ef:64:3c:de:51:4d:68:83:c6: 91:64:bf:ac:27:27:a2:20:b8:6c:5a:98:14:42:d9:4f:2d:9a: 90:d4:57:f6:d0:19:fa:ed:6a:5b:91:8d:e7:a3:78:21:ba:dd: dc:ad:0d:d8:6d:1f:b2:8b:50:81:3f:0d:b9:f3:02:b2:49:db: 24:53:a8:ca:75:91:8e:53:e9:25:1e:a2:60:34:ea:17:9d:0f: 71:05:fb:da:c1:ab:e2:82:25:2b:b7:23:e8:a8:04:11:a9:08: 6c:e9:d1:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuLrDUJgh8uK5d/u9cpLqFJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTA1MDEwMTE3WhcNMjYwMTA2MDEwMTE3WjAzMTEwLwYDVQQD EygyMDUwM2NlYmE1MWJlNWJkM2MyYWU0MGU0OTQ2ODg1ZDFkZmVmZmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvty58zJsdGRwKgwtIwz6NY6uh5E4 fhhp85rhBPDshXrA8pF+qduA6VuUQrJlbl/G5SR9HfCEFgNaV1ojndxzraaVpRdm BDa+xOp485fTaBsMZkyMSzmp8LrUonB9P6+cTwsK4E8E/sJIJzqiyJR7Y2bqXVJh Q4enRrE0zCvf3wjYxu+4XHCSNAYFnXNXnXcN2Smi5rpasOUG2O1inPZN1/UDVrnh tC5glxzXeoA8kdpCRDH0WJzpe+yeWSLZWuJ5pxCnbB7IBEcpLg4Vs3gXSH+bNJnn 6l3MJlpZMZ4SqoMW0utxlODar4rkv88+U6cAFw8/NCCfgsXVu1xojhdBTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBQPOulG+W9PCrkDklGiF0d/v/yMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALidPSRBz uMzcbcBZJGpE8it6I/QxsU5dsmrzUkiH2nWRndevqTsf1VjbM0z0lRgeZHmyjRsF nG8SLqSLDEJI53oqH0fb0w3PG5VK4nQ41neJx18IVYcBGzcabsI7Hm5FX0Ofgrfo NsklbcAj6AmaQlzXpQC+umEgHpK0Rv31cT9XdrVSU5JwkFneLwvm7zNH09NU73jH YBnA72Q83lFNaIPGkWS/rCcnoiC4bFqYFELZTy2akNRX9tAZ+u1qW5GN56N4Ibrd 3K0N2G0fsotQgT8NufMCsknbJFOoynWRjlPpJR6iYDTqF50PcQX72sGr4oIlK7cj 6KgEEakIbOnRCw== -----END CERTIFICATE-----Generated at Mon Jan 5 08:19:52 2026 by rpki-client