This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: CLtEXcUyMtvqZakb1ED0oOU0qVH5c4K4SjNHO1RAoHs= Subject key identifier: 9A:C3:90:6A:A1:8E:20:61:25:27:30:DA:73:0B:42:98:0A:CA:A4:EA Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019AC97B3EFFF24EA2CE8120B11D0807075A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11AE Signing time: Fri 28 Nov 2025 08:01:28 +0000 Manifest this update: Fri 28 Nov 2025 08:01:28 +0000 Manifest next update: Sat 29 Nov 2025 08:01:28 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: K0jVTSn9Cn5UORpH6UvOv0jzqjMLWowo02cIZuv1h/k=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c9:7b:3e:ff:f2:4e:a2:ce:81:20:b1:1d:08:07:07:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Nov 28 08:01:28 2025 GMT Not After : Nov 29 08:01:28 2025 GMT Subject: CN=9ac3906aa18e2061252730da730b42980acaa4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fb:2b:5d:32:84:cc:3f:43:f4:f5:01:1c:95: 99:86:b5:35:c7:01:cb:88:fb:74:29:4d:ae:5b:72: 19:1c:3b:b7:49:28:53:df:c5:51:78:46:09:bc:e7: 8f:48:81:06:f4:da:60:61:d8:53:08:75:c9:8d:a4: 2b:9c:68:86:0d:e8:8a:86:17:c0:b0:d9:11:e0:42: 08:dd:2b:9f:3a:a7:70:26:17:e9:18:79:9d:9a:69: b2:c6:b4:20:97:6a:f6:23:33:d3:3a:19:24:bd:64: 35:aa:7f:a2:a0:d6:da:d7:7d:48:17:47:db:24:b4: fe:55:20:36:94:0a:57:4b:5a:e1:31:5b:56:55:5c: 38:d2:1d:02:ae:51:ba:44:e6:c9:02:9e:38:85:a7: f2:2b:4f:17:45:d6:a0:60:2b:f9:43:1e:54:9c:10: 66:98:45:a9:6c:05:93:46:52:7e:b8:58:2d:4f:01: 42:a6:0d:52:5e:2e:13:25:e6:fd:61:c7:54:fc:3d: 4e:02:57:e1:c5:a2:1d:96:fe:c8:2c:12:94:d3:a1: eb:03:5d:f1:73:64:fb:0b:43:13:03:95:b7:c4:ef: b0:5c:cd:cd:c6:69:58:b4:55:80:9d:48:13:24:9f: 75:50:26:9e:41:55:99:85:37:3a:2d:a2:a8:a7:76: aa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C3:90:6A:A1:8E:20:61:25:27:30:DA:73:0B:42:98:0A:CA:A4:EA X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a0:11:90:64:b6:04:da:8e:fd:33:ac:6d:83:c3:60:98:ca: 97:2d:06:7f:c0:ac:27:33:5e:99:f1:de:52:53:9c:4c:96:2b: 69:4d:fd:3c:e0:0a:20:c5:88:fc:43:f2:2b:6c:6f:ae:88:3c: 07:8d:fa:be:26:d1:d2:63:9a:7a:29:cc:41:3d:7a:d5:d7:ee: a8:1b:0a:c2:08:66:8f:d6:6c:bf:2f:91:41:0e:92:9d:44:cb: d8:7e:1a:6f:6d:83:cf:4f:1f:75:1d:ee:46:f2:c4:4e:0e:8c: 82:99:0c:41:c7:d2:7c:ef:e8:b3:a0:1e:cd:1c:86:28:f3:54: 81:a1:01:4b:2c:bd:5e:10:71:a2:73:1c:7e:b5:16:17:d4:56: ad:27:60:d9:54:a8:c4:80:a9:c0:0e:78:95:be:e1:33:e3:0f: 71:b0:02:08:42:af:f0:ad:cd:5c:23:00:6b:e9:f4:3a:b4:fd: d9:79:33:f7:93:2f:42:92:ec:da:fd:c1:41:df:0a:66:f0:70: 83:24:16:3b:01:a3:8b:df:d7:60:19:56:41:02:f0:d7:e9:aa: af:02:50:a0:d4:5d:7c:82:d2:7a:92:95:3c:fb:e4:15:2e:0d: 43:82:93:1d:6a:a2:bc:28:54:5b:e9:3a:f5:90:5a:b9:3c:08: 2e:37:f2:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrJez7/8k6izoEgsR0IBwdaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMTI4MDgwMTI4WhcNMjUxMTI5MDgwMTI4WjAzMTEwLwYDVQQD Eyg5YWMzOTA2YWExOGUyMDYxMjUyNzMwZGE3MzBiNDI5ODBhY2FhNGVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PsrXTKEzD9D9PUBHJWZhrU1xwHL iPt0KU2uW3IZHDu3SShT38VReEYJvOePSIEG9NpgYdhTCHXJjaQrnGiGDeiKhhfA sNkR4EII3SufOqdwJhfpGHmdmmmyxrQgl2r2IzPTOhkkvWQ1qn+ioNba131IF0fb JLT+VSA2lApXS1rhMVtWVVw40h0CrlG6RObJAp44hafyK08XRdagYCv5Qx5UnBBm mEWpbAWTRlJ+uFgtTwFCpg1SXi4TJeb9YcdU/D1OAlfhxaIdlv7ILBKU06HrA13x c2T7C0MTA5W3xO+wXM3NxmlYtFWAnUgTJJ91UCaeQVWZhTc6LaKop3aqhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJrDkGqhjiBhJScw2nMLQpgKyqTqMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnKARkGS2 BNqO/TOsbYPDYJjKly0Gf8CsJzNemfHeUlOcTJYraU39POAKIMWI/EPyK2xvrog8 B436vibR0mOaeinMQT161dfuqBsKwghmj9Zsvy+RQQ6SnUTL2H4ab22Dz08fdR3u RvLETg6MgpkMQcfSfO/os6AezRyGKPNUgaEBSyy9XhBxonMcfrUWF9RWrSdg2VSo xICpwA54lb7hM+MPcbACCEKv8K3NXCMAa+n0OrT92Xkz95MvQpLs2v3BQd8KZvBw gyQWOwGji9/XYBlWQQLw1+mqrwJQoNRdfILSepKVPPvkFS4NQ4KTHWqivChUW+k6 9ZBauTwILjfy+A== -----END CERTIFICATE-----Generated at Fri Nov 28 13:12:53 2025 by rpki-client