This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: +ELGnm3inkD5ee42erelKMRkPibeb+OvhdUnNztS4Ek= Subject key identifier: 5D:A2:71:E4:FA:6A:1C:5C:92:7D:8A:6C:66:9A:45:9C:8E:F9:3B:9F Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B9553DF28EAAD30044C1E141ED300091D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1219 Signing time: Tue 06 Jan 2026 22:01:00 +0000 Manifest this update: Tue 06 Jan 2026 22:01:00 +0000 Manifest next update: Wed 07 Jan 2026 22:01:00 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: 6Oig2dLqPRByVu+HtxYu4vjSg4ALQsC06eSpaqUpFTc=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 Jan 2026 21:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:95:53:df:28:ea:ad:30:04:4c:1e:14:1e:d3:00:09:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 6 22:01:00 2026 GMT Not After : Jan 7 22:01:00 2026 GMT Subject: CN=5da271e4fa6a1c5c927d8a6c669a459c8ef93b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9d:7a:17:81:45:26:2e:30:7e:32:28:c8:72: fd:af:ea:4e:2b:43:25:ff:c3:ad:39:dc:1a:03:27: 6e:33:6d:c8:5d:30:fd:4a:e7:5f:fe:18:44:5a:ad: 57:18:57:55:19:ba:2d:cb:ee:0f:65:ec:28:23:4f: 26:d5:ba:9a:73:f8:01:94:17:db:be:45:d8:66:8b: 97:75:59:ba:a4:83:7a:77:94:26:5a:2e:a4:81:29: d8:96:3f:06:12:c8:02:dc:2a:32:2c:da:71:32:dc: d1:f1:4b:2f:1f:c1:b6:2f:40:02:39:7d:47:e1:2b: c4:3b:fc:c4:e2:ce:21:97:54:89:40:dd:a8:d4:f9: cb:24:e4:5c:4e:6d:db:ac:d7:a4:74:44:ed:dd:dd: 6f:65:f6:ce:a2:08:34:15:a5:fd:c5:77:11:51:7f: 9e:a5:8e:67:ae:16:6b:d0:53:60:66:49:fa:0a:db: 69:4e:fd:15:be:6c:ec:84:1c:39:6d:8f:89:f5:36: dc:74:8c:25:86:17:a0:65:f4:b2:98:37:a8:01:80: 64:d8:f4:d6:7f:70:d2:c2:0a:8a:f2:ef:d8:94:11: 2d:a0:16:b0:6c:9b:73:8e:94:3f:93:d2:c3:f4:ca: f3:d1:51:ae:02:9e:39:54:b7:8c:c6:f8:c1:54:80: cf:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A2:71:E4:FA:6A:1C:5C:92:7D:8A:6C:66:9A:45:9C:8E:F9:3B:9F X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:6c:08:dd:62:7a:70:d2:e1:53:0f:77:94:55:d3:49:f8:d8: 53:dc:c4:a8:fa:25:a6:e6:fe:c1:cb:d2:5d:66:7a:a5:c8:cf: 74:e0:a7:61:94:f8:b6:75:21:5a:a2:7b:c8:78:fd:ab:db:f1: 4b:08:3b:aa:c4:be:29:1f:34:11:db:f0:be:0d:7d:c9:16:4a: 7b:01:a3:4e:62:46:0f:98:e3:ae:34:a4:0f:47:a5:d2:25:4f: 47:fd:40:75:cb:53:02:74:38:77:e3:e4:5f:15:9c:03:6d:de: 9e:04:96:ca:32:84:18:d0:b4:ed:f9:9f:00:1e:9e:64:cc:92: 67:ea:01:fa:f3:a8:e3:2f:de:f7:e6:09:e2:84:7a:47:45:8b: dd:ee:82:eb:06:34:3f:60:17:35:ca:05:28:c9:17:54:84:d1: cf:ee:d7:58:8d:90:c0:0e:9e:e0:03:b0:22:41:0c:03:fe:20: 3b:ed:58:55:bc:fb:20:28:06:b9:18:28:6e:57:d4:81:97:bf: 95:3f:3e:d5:a2:fb:58:fb:51:8a:e1:39:e1:ee:92:12:77:ff: be:51:d3:d5:47:1e:9d:f6:97:05:3a:45:bd:9d:9a:a8:50:c8: 13:5b:35:ae:d4:46:f6:e4:0f:8b:38:4e:c9:58:7f:d8:17:15: b6:7d:e4:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuVU98o6q0wBEweFB7TAAkdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTA2MjIwMTAwWhcNMjYwMTA3MjIwMTAwWjAzMTEwLwYDVQQD Eyg1ZGEyNzFlNGZhNmExYzVjOTI3ZDhhNmM2NjlhNDU5YzhlZjkzYjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJ16F4FFJi4wfjIoyHL9r+pOK0Ml /8OtOdwaAyduM23IXTD9Sudf/hhEWq1XGFdVGboty+4PZewoI08m1bqac/gBlBfb vkXYZouXdVm6pIN6d5QmWi6kgSnYlj8GEsgC3CoyLNpxMtzR8UsvH8G2L0ACOX1H 4SvEO/zE4s4hl1SJQN2o1PnLJORcTm3brNekdETt3d1vZfbOogg0FaX9xXcRUX+e pY5nrhZr0FNgZkn6CttpTv0VvmzshBw5bY+J9TbcdIwlhhegZfSymDeoAYBk2PTW f3DSwgqK8u/YlBEtoBawbJtzjpQ/k9LD9Mrz0VGuAp45VLeMxvjBVIDPiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2iceT6ahxckn2KbGaaRZyO+TufMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAimwI3WJ6 cNLhUw93lFXTSfjYU9zEqPolpub+wcvSXWZ6pcjPdOCnYZT4tnUhWqJ7yHj9q9vx Swg7qsS+KR80Edvwvg19yRZKewGjTmJGD5jjrjSkD0el0iVPR/1AdctTAnQ4d+Pk XxWcA23engSWyjKEGNC07fmfAB6eZMySZ+oB+vOo4y/e9+YJ4oR6R0WL3e6C6wY0 P2AXNcoFKMkXVITRz+7XWI2QwA6e4AOwIkEMA/4gO+1YVbz7ICgGuRgoblfUgZe/ lT8+1aL7WPtRiuE54e6SEnf/vlHT1UcenfaXBTpFvZ2aqFDIE1s1rtRG9uQPizhO yVh/2BcVtn3kOA== -----END CERTIFICATE-----Generated at Wed Jan 7 00:44:55 2026 by rpki-client