This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: INrT4m2sUJVLVAGO0AAHIY3f81leiHC8KiO1hgptDqE= Subject key identifier: 57:5F:03:2C:B0:99:0F:12:88:46:FA:89:45:E7:4B:85:55:72:E4:D0 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B993127F2EF434CC39B8296E6A4BB4A68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 121B Signing time: Wed 07 Jan 2026 16:01:34 +0000 Manifest this update: Wed 07 Jan 2026 16:01:34 +0000 Manifest next update: Thu 08 Jan 2026 16:01:34 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: ql6bcIaan+rIF8vYIo7MAnWUd8ymKCU2IzMCqilTXSs=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:99:31:27:f2:ef:43:4c:c3:9b:82:96:e6:a4:bb:4a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 7 16:01:34 2026 GMT Not After : Jan 8 16:01:34 2026 GMT Subject: CN=575f032cb0990f128846fa8945e74b855572e4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6e:c8:4e:f1:50:50:b5:da:1b:79:88:c5:a2: 84:78:df:50:7b:92:b7:ef:38:3e:40:b0:57:9e:4f: 80:dc:60:8f:5b:9d:11:b7:6f:00:8a:a3:21:56:0e: 2b:9b:71:23:11:9e:b7:06:3c:87:5a:ae:31:09:6b: f3:22:d5:13:af:e2:fc:e7:78:29:20:cd:9d:d5:04: bd:cd:21:1f:14:88:47:fb:48:39:ba:e7:6e:8f:81: c0:04:18:9b:5e:23:9d:16:41:62:e7:6d:fc:11:85: 25:46:8b:df:25:16:85:0c:26:08:5b:e5:ed:01:54: c0:39:df:50:81:ce:31:dc:6f:bf:c8:0a:d9:4a:71: 74:10:c8:f0:e4:7e:09:e7:88:5f:17:2f:9c:ef:66: b0:54:4a:f1:06:33:a5:30:37:89:43:8a:cc:38:8a: f7:a4:03:31:2f:ff:12:32:2b:34:5a:2e:c7:e5:0f: cd:a5:b4:f9:a5:5d:56:1a:55:72:e9:ea:b0:6c:03: 31:3c:dc:15:0f:26:d9:93:f4:fb:cd:fe:f3:fe:d2: b8:27:14:f7:ea:d1:86:b6:b8:0a:56:58:1c:0a:f1: e8:d6:52:05:56:01:a6:59:d7:90:5d:bd:5d:31:7e: 34:32:46:64:63:10:c2:ba:a9:90:6d:aa:93:44:4f: 09:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:5F:03:2C:B0:99:0F:12:88:46:FA:89:45:E7:4B:85:55:72:E4:D0 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:07:f2:8d:88:77:ed:9a:af:e8:44:75:57:48:58:5c:fb:76: 03:de:b9:69:f1:07:20:78:a4:d3:b5:ad:1f:5a:dc:07:fe:a3: 12:44:59:76:e3:57:2a:f6:a4:f6:18:13:4f:20:d3:95:76:41: 74:dd:8d:1f:c5:53:9e:2b:25:4a:01:6f:38:a0:7e:c8:69:7f: fd:83:33:99:4f:74:46:1f:c4:51:f1:b2:96:2a:12:2d:39:f7: 26:80:af:b4:1d:79:14:1c:ad:25:cd:3f:80:5e:18:e6:f2:59: e7:40:19:b4:22:b3:2c:e3:20:49:5a:26:a3:0f:f4:1b:bb:4b: 02:c0:63:63:bf:89:4f:ad:32:62:10:ce:60:15:21:2a:dd:84: d0:bc:78:3d:95:22:84:58:c4:01:2c:a7:a3:52:28:e4:94:50: f4:a3:8b:c6:69:ed:e6:dc:40:90:ec:43:17:54:a2:87:69:af: 1e:40:a8:6a:86:b8:81:06:d0:d2:4b:f2:85:93:b1:08:41:bb: 08:8f:f9:2b:10:88:91:b3:68:c8:b2:13:c1:6c:89:a3:68:b7: 35:2a:3c:8f:a4:3a:fb:15:be:f1:ab:4b:d0:08:a5:70:31:63: 3b:5c:4e:1b:a0:95:bb:b7:34:01:55:5a:27:32:83:21:27:3a: 7f:a0:c9:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuZMSfy70NMw5uCluaku0poMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTA3MTYwMTM0WhcNMjYwMTA4MTYwMTM0WjAzMTEwLwYDVQQD Eyg1NzVmMDMyY2IwOTkwZjEyODg0NmZhODk0NWU3NGI4NTU1NzJlNGQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsm7ITvFQULXaG3mIxaKEeN9Qe5K3 7zg+QLBXnk+A3GCPW50Rt28AiqMhVg4rm3EjEZ63BjyHWq4xCWvzItUTr+L853gp IM2d1QS9zSEfFIhH+0g5uuduj4HABBibXiOdFkFi5238EYUlRovfJRaFDCYIW+Xt AVTAOd9Qgc4x3G+/yArZSnF0EMjw5H4J54hfFy+c72awVErxBjOlMDeJQ4rMOIr3 pAMxL/8SMis0Wi7H5Q/NpbT5pV1WGlVy6eqwbAMxPNwVDybZk/T7zf7z/tK4JxT3 6tGGtrgKVlgcCvHo1lIFVgGmWdeQXb1dMX40MkZkYxDCuqmQbaqTRE8JgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdfAyywmQ8SiEb6iUXnS4VVcuTQMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXgfyjYh3 7Zqv6ER1V0hYXPt2A965afEHIHik07WtH1rcB/6jEkRZduNXKvak9hgTTyDTlXZB dN2NH8VTnislSgFvOKB+yGl//YMzmU90Rh/EUfGylioSLTn3JoCvtB15FBytJc0/ gF4Y5vJZ50AZtCKzLOMgSVomow/0G7tLAsBjY7+JT60yYhDOYBUhKt2E0Lx4PZUi hFjEASyno1Io5JRQ9KOLxmnt5txAkOxDF1Sih2mvHkCoaoa4gQbQ0kvyhZOxCEG7 CI/5KxCIkbNoyLITwWyJo2i3NSo8j6Q6+xW+8atL0AilcDFjO1xOG6CVu7c0AVVa JzKDISc6f6DJbQ== -----END CERTIFICATE-----Generated at Wed Jan 7 17:41:10 2026 by rpki-client