This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: VPbTo60+A9d+J6A2XLOQYFtx32lK80CKpuynVwI/ttI= Subject key identifier: F5:78:63:27:CC:B7:BE:86:B9:AE:D9:83:FD:82:6B:F7:A1:92:FE:3B Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019AFD9F224EF41DFF8B1ABA0D9696287D25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11C9 Signing time: Mon 08 Dec 2025 11:00:55 +0000 Manifest this update: Mon 08 Dec 2025 11:00:55 +0000 Manifest next update: Tue 09 Dec 2025 11:00:55 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: r0aqSsg4dZvMEds/rRM1tF40nBpwxu0uBCBfGMU3R/U=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fd:9f:22:4e:f4:1d:ff:8b:1a:ba:0d:96:96:28:7d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Dec 8 11:00:55 2025 GMT Not After : Dec 9 11:00:55 2025 GMT Subject: CN=f5786327ccb7be86b9aed983fd826bf7a192fe3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:d4:60:ee:c8:a9:51:ff:b4:63:85:6e:13: b5:df:37:8e:33:dd:61:b8:63:6f:c8:6f:d1:3b:5d: d8:f7:d2:1a:e2:55:d5:a3:98:92:b7:05:c8:43:c9: df:31:ec:5e:e0:d2:9d:4e:7c:99:2d:d5:1a:8e:9f: 2d:b0:b1:8b:70:c9:b9:d2:83:ec:f6:f1:6f:5a:9a: 55:3c:1a:0a:b5:09:e3:6a:9b:3d:75:21:51:4d:df: 03:45:a3:92:3e:ba:5f:b2:b6:27:de:20:29:57:7a: a6:19:df:fd:4d:c5:d5:73:2b:a2:b8:3a:59:a2:66: 8d:75:d4:79:3f:5c:1c:12:3d:c4:99:8a:a6:01:63: 22:e1:b8:79:ad:2b:cc:9b:ba:fc:51:94:07:3b:76: 1a:af:d6:c5:25:a7:07:f5:3e:b1:b2:02:f7:d0:72: 04:16:1e:65:84:55:d4:4f:05:d7:03:bb:5c:2c:90: 99:a4:40:a1:8f:a2:07:e0:dc:ce:cd:2e:b4:0c:df: 58:b0:5e:b7:0e:64:21:f9:78:ed:96:28:c3:48:9e: 70:e3:21:f5:73:27:12:78:24:50:fb:77:71:c1:53: f6:f4:09:94:b4:7e:98:5b:50:2b:68:85:3c:25:2f: 6a:0f:03:cc:54:7d:32:04:2b:d9:94:99:c6:bb:97: 2f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:78:63:27:CC:B7:BE:86:B9:AE:D9:83:FD:82:6B:F7:A1:92:FE:3B X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:14:79:86:7d:d9:a0:db:7a:5d:29:90:91:7f:70:49:7a:4a: 69:7d:4a:0e:6a:8a:fa:18:e0:d7:8c:81:9d:e5:12:4f:ac:d7: 3c:f5:41:40:7f:8e:44:04:79:ad:c9:68:c4:99:22:96:b0:f6: 54:78:81:77:b6:61:8f:44:f6:95:db:40:f2:99:fb:df:46:45: 33:a8:3f:15:fe:87:4f:fd:61:d3:63:30:b6:a3:8f:5f:25:35: 9d:c1:43:2c:d2:44:95:5a:ea:aa:b4:e3:fb:f1:9a:99:29:24: 25:81:3d:e1:68:4c:17:fa:43:10:f7:6f:06:02:dc:01:ec:06: 71:cc:b3:eb:50:e5:24:48:0e:d0:3a:fc:ad:bd:90:bc:e6:a0: 43:fa:ae:77:ed:b2:cc:83:ad:39:f9:fd:51:9c:5c:87:31:cc: f0:60:29:3a:07:6d:37:af:af:f9:87:40:e1:e7:4c:7d:a5:c8: d7:d4:1f:45:84:f7:7d:75:71:b2:25:12:2c:9d:77:05:92:f4: f6:b5:46:e9:6a:4a:b8:2e:60:f0:49:32:7d:91:65:a8:1c:3b: 97:8e:61:e2:c4:98:e3:b5:c4:67:ae:52:8a:ad:a9:56:3b:dc: 20:16:34:f9:65:1d:0a:eb:28:91:82:03:cc:ef:ad:3e:72:99: f0:25:52:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr9nyJO9B3/ixq6DZaWKH0lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMjA4MTEwMDU1WhcNMjUxMjA5MTEwMDU1WjAzMTEwLwYDVQQD EyhmNTc4NjMyN2NjYjdiZTg2YjlhZWQ5ODNmZDgyNmJmN2ExOTJmZTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2rUYO7IqVH/tGOFbhO13zeOM91h uGNvyG/RO13Y99Ia4lXVo5iStwXIQ8nfMexe4NKdTnyZLdUajp8tsLGLcMm50oPs 9vFvWppVPBoKtQnjaps9dSFRTd8DRaOSPrpfsrYn3iApV3qmGd/9TcXVcyuiuDpZ omaNddR5P1wcEj3EmYqmAWMi4bh5rSvMm7r8UZQHO3Yar9bFJacH9T6xsgL30HIE Fh5lhFXUTwXXA7tcLJCZpEChj6IH4NzOzS60DN9YsF63DmQh+XjtlijDSJ5w4yH1 cycSeCRQ+3dxwVP29AmUtH6YW1AraIU8JS9qDwPMVH0yBCvZlJnGu5cvCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPV4YyfMt76Gua7Zg/2Ca/ehkv47MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBR5hn3Z oNt6XSmQkX9wSXpKaX1KDmqK+hjg14yBneUST6zXPPVBQH+ORAR5rcloxJkilrD2 VHiBd7Zhj0T2ldtA8pn730ZFM6g/Ff6HT/1h02MwtqOPXyU1ncFDLNJElVrqqrTj +/GamSkkJYE94WhMF/pDEPdvBgLcAewGccyz61DlJEgO0Dr8rb2QvOagQ/qud+2y zIOtOfn9UZxchzHM8GApOgdtN6+v+YdA4edMfaXI19QfRYT3fXVxsiUSLJ13BZL0 9rVG6WpKuC5g8EkyfZFlqBw7l45h4sSY47XEZ65Siq2pVjvcIBY0+WUdCusokYID zO+tPnKZ8CVSbw== -----END CERTIFICATE-----Generated at Mon Dec 8 15:37:08 2025 by rpki-client