This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: zDB+J/PMDsukgqD7ElWFu9BxXmSo1EaQhYgxw39GwhI= Subject key identifier: B5:AA:FA:A7:C8:D6:B0:50:96:E4:24:02:A5:8E:35:61:97:00:D9:BF Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B4B83A6048D94DFE151CACE62978618EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11F2 Signing time: Tue 23 Dec 2025 14:01:17 +0000 Manifest this update: Tue 23 Dec 2025 14:01:17 +0000 Manifest next update: Wed 24 Dec 2025 14:01:17 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: KZPwVDbwOkmi-sEEC_TqcUeMzYI.roa (hash: D0dFEOhVqQzL9ff/+LILn5JrUvKqeR7kLX0LV2DDfDw=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: oyou53b7JRso/27NdkhK+dKIEseJKqXIS5I3E+xrelY=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: k8X6rpXsnvun5Vl5pXAh-mD2GZU.roa (hash: G+fNQ144ywV3dbbQU91YZ/j14MM00nHsKiCj+xndi8c=) 14: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 15: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 16: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 17: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 14:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:83:a6:04:8d:94:df:e1:51:ca:ce:62:97:86:18:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Dec 23 14:01:17 2025 GMT Not After : Dec 24 14:01:17 2025 GMT Subject: CN=b5aafaa7c8d6b05096e42402a58e35619700d9bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c6:b8:36:cd:f8:be:9e:72:38:ec:64:29:75: 72:44:e8:27:47:34:f3:32:e6:13:ee:29:b1:1c:af: a6:37:fe:c1:03:e0:60:c0:74:34:25:02:f6:c3:d1: ae:eb:a7:a4:97:d9:96:98:0c:3e:2a:55:77:41:f8: bd:7a:5a:85:6e:58:12:ba:a8:2a:96:bf:8e:16:45: ca:52:6f:ca:72:6f:a0:ac:b3:52:fd:92:ff:9b:af: f5:1b:ff:f6:f5:ac:1c:27:b5:fa:19:78:63:df:62: 1f:56:ff:67:dd:c7:15:c5:cf:a2:72:dc:96:9d:3c: 3e:06:a3:e1:54:54:f8:b8:aa:7f:d6:b2:d0:78:18: e8:5c:a9:fa:ae:4a:8d:4a:4f:9c:71:0d:4f:46:30: 6a:3b:e6:0f:0f:25:af:8d:a3:07:d2:26:42:0b:be: 50:9f:8d:17:15:50:a0:60:85:f2:5e:dc:c5:17:f9: 3f:bd:bb:bb:e7:77:3f:04:c5:1d:b6:28:ca:49:11: 54:31:dc:c2:6c:18:9c:e9:4f:0f:c8:1c:da:23:e9: 99:da:76:81:e1:2b:ff:7c:44:63:fc:fe:59:31:09: c0:70:55:da:d5:e5:77:f7:96:33:a6:93:2c:c3:70: 2d:e8:83:a8:f6:d1:d4:89:fd:cf:21:5f:f5:64:ba: 46:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AA:FA:A7:C8:D6:B0:50:96:E4:24:02:A5:8E:35:61:97:00:D9:BF X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:7c:c4:c3:7b:c6:a6:19:b9:f2:bb:b5:e4:a7:1a:de:5c:f8: 42:de:04:65:b8:7a:41:54:38:d7:30:a0:ba:7d:e9:e7:77:49: a0:bd:92:7e:36:b5:6f:2a:39:b3:79:8a:2b:0a:32:85:55:dd: 1c:5a:98:cd:27:b7:6a:e3:6a:33:d9:1d:b0:8c:d2:72:c1:21: 8b:e6:16:c7:b1:e2:7e:09:4e:21:51:95:62:98:49:23:b6:18: 08:3b:d7:ea:05:6f:da:57:54:57:a7:2d:84:3b:88:8f:55:31: eb:f8:3d:0f:4f:7a:43:fc:77:a5:cd:11:25:3d:76:b8:43:87: 91:f5:11:c4:6d:ed:28:b5:83:cf:ea:7e:79:9b:a8:7b:6c:56: 55:c9:57:23:8c:d7:e3:50:6a:2c:ff:73:26:3a:f7:db:dd:56: c9:07:10:f2:a2:34:f3:d4:1d:7d:28:19:8c:4a:2f:91:69:0a: 32:f3:be:7d:53:86:48:aa:56:c4:a8:2c:95:95:ce:ab:cf:d3: e3:13:94:39:60:e1:b4:b1:8e:a9:c2:fc:9c:5b:b9:e9:9a:74: a7:41:5c:1e:eb:7a:61:dc:9d:af:4f:24:c2:70:8b:da:d2:a3: 7f:38:c3:0c:ee:6d:b4:6a:0c:8a:f4:ab:37:bf:b7:e4:68:45: 02:78:dc:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLg6YEjZTf4VHKzmKXhhjvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMjIzMTQwMTE3WhcNMjUxMjI0MTQwMTE3WjAzMTEwLwYDVQQD EyhiNWFhZmFhN2M4ZDZiMDUwOTZlNDI0MDJhNThlMzU2MTk3MDBkOWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsa4Ns34vp5yOOxkKXVyROgnRzTz MuYT7imxHK+mN/7BA+BgwHQ0JQL2w9Gu66ekl9mWmAw+KlV3Qfi9elqFblgSuqgq lr+OFkXKUm/Kcm+grLNS/ZL/m6/1G//29awcJ7X6GXhj32IfVv9n3ccVxc+ictyW nTw+BqPhVFT4uKp/1rLQeBjoXKn6rkqNSk+ccQ1PRjBqO+YPDyWvjaMH0iZCC75Q n40XFVCgYIXyXtzFF/k/vbu753c/BMUdtijKSRFUMdzCbBic6U8PyBzaI+mZ2naB 4Sv/fERj/P5ZMQnAcFXa1eV395YzppMsw3At6IOo9tHUif3PIV/1ZLpGVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLWq+qfI1rBQluQkAqWONWGXANm/MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAnzEw3vG phm58ru15Kca3lz4Qt4EZbh6QVQ41zCgun3p53dJoL2Sfja1byo5s3mKKwoyhVXd HFqYzSe3auNqM9kdsIzScsEhi+YWx7HifglOIVGVYphJI7YYCDvX6gVv2ldUV6ct hDuIj1Ux6/g9D096Q/x3pc0RJT12uEOHkfURxG3tKLWDz+p+eZuoe2xWVclXI4zX 41BqLP9zJjr3291WyQcQ8qI089QdfSgZjEovkWkKMvO+fVOGSKpWxKgslZXOq8/T 4xOUOWDhtLGOqcL8nFu56Zp0p0FcHut6Ydydr08kwnCL2tKjfzjDDO5ttGoMivSr N7+35GhFAnjcqA== -----END CERTIFICATE-----Generated at Tue Dec 23 16:47:07 2025 by rpki-client