This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: Zl3wYAed2v8HhqnhEwI2KgEwDHi6/P+STELG9yYyPQM= Subject key identifier: FA:1C:3E:D0:34:20:43:07:62:6C:63:EE:FE:EE:45:13:BE:58:65:92 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019AD8EE1E79DFBC6F30F7573D6211E92A62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11B6 Signing time: Mon 01 Dec 2025 08:01:15 +0000 Manifest this update: Mon 01 Dec 2025 08:01:15 +0000 Manifest next update: Tue 02 Dec 2025 08:01:15 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: /3tx1tnfwUOSwkGOJ0yRZTumC771hZ5b4HDi83sNT08=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d8:ee:1e:79:df:bc:6f:30:f7:57:3d:62:11:e9:2a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Dec 1 08:01:15 2025 GMT Not After : Dec 2 08:01:15 2025 GMT Subject: CN=fa1c3ed034204307626c63eefeee4513be586592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:76:16:bd:25:3e:fa:53:e3:05:4e:89:f2:61: 47:9f:45:2b:f2:76:bc:62:95:be:28:21:a8:28:a8: 44:e6:d1:ce:84:59:2a:be:49:b0:a3:06:64:2a:b6: ce:60:f8:f9:15:27:26:ed:51:b7:a7:e5:1c:0e:af: 21:10:f7:a7:54:27:b6:a9:78:e5:93:41:a3:a5:0f: 93:25:d9:c0:9c:cb:58:9f:24:84:e7:3b:c9:65:5d: 94:1f:51:8d:32:ef:17:4f:39:40:73:68:69:4b:db: 4e:d2:9a:8d:c0:47:a9:85:b3:22:50:47:e8:a5:c7: 74:ac:06:26:43:0d:5d:c0:45:f8:26:50:38:95:d2: b9:e6:9a:30:73:a9:d0:03:6d:65:82:78:bf:87:dc: c8:89:bd:88:c1:99:39:0f:77:28:5c:9e:f1:e5:8a: fd:ba:d3:e9:0d:5a:02:20:39:77:d8:54:60:2d:a8: f4:2e:7c:88:a7:4b:99:f2:82:93:26:d8:4f:1a:30: 6c:65:46:c6:4e:3e:6f:2c:d5:dc:80:cd:52:58:e7: bf:f0:6d:a7:5d:f5:9b:31:b8:7e:42:34:22:37:af: 94:2d:7b:a3:da:00:ae:f0:43:6c:b2:36:9a:ad:fa: 8a:06:98:8b:b3:e1:89:07:cb:df:7d:5e:6e:3a:51: b4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1C:3E:D0:34:20:43:07:62:6C:63:EE:FE:EE:45:13:BE:58:65:92 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:de:5d:f8:ec:67:a8:65:bc:89:85:d1:d3:e2:1a:f7:fd:8a: a8:b4:80:bd:56:d6:22:8b:57:fb:79:0e:53:bd:b6:4c:7d:53: b5:f8:20:80:4e:eb:7c:69:5b:eb:0c:91:ac:fe:df:76:b5:30: 56:6d:a8:ad:01:8a:91:42:8f:c5:4a:5d:4a:41:de:30:6d:f0: 67:cc:57:18:e4:8c:01:32:bf:45:ff:94:9c:dd:02:e5:43:82: aa:e3:1b:b1:53:48:28:10:b1:de:15:70:6c:e7:b8:cb:7c:62: 0f:8d:68:b7:08:77:b9:a8:1c:9e:3b:e6:1e:88:74:1e:f2:be: 3f:f9:81:d6:a4:e2:d9:e3:d0:5f:fd:22:f4:a9:99:18:f0:7d: 85:8a:47:a4:56:4c:5e:f2:bb:c4:2b:e8:5b:8b:d5:6e:01:ba: fd:c2:71:f4:6c:75:f2:a7:72:b9:b9:15:35:e8:c9:62:86:f1: 29:f7:33:d3:de:87:ac:20:5d:33:83:11:be:77:57:75:0f:be: af:db:8c:19:8c:7a:ec:f8:10:27:d6:72:b6:74:75:6b:73:b2: c7:f8:1f:09:3a:57:c7:5a:0a:16:b7:33:5a:cd:6a:fb:c6:c3: ba:9e:b2:e9:8b:ae:b4:bc:08:11:e7:1b:d7:bc:7c:03:29:d5: 60:71:10:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrY7h5537xvMPdXPWIR6SpiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMjAxMDgwMTE1WhcNMjUxMjAyMDgwMTE1WjAzMTEwLwYDVQQD EyhmYTFjM2VkMDM0MjA0MzA3NjI2YzYzZWVmZWVlNDUxM2JlNTg2NTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnYWvSU++lPjBU6J8mFHn0Ur8na8 YpW+KCGoKKhE5tHOhFkqvkmwowZkKrbOYPj5FScm7VG3p+UcDq8hEPenVCe2qXjl k0GjpQ+TJdnAnMtYnySE5zvJZV2UH1GNMu8XTzlAc2hpS9tO0pqNwEephbMiUEfo pcd0rAYmQw1dwEX4JlA4ldK55powc6nQA21lgni/h9zIib2IwZk5D3coXJ7x5Yr9 utPpDVoCIDl32FRgLaj0LnyIp0uZ8oKTJthPGjBsZUbGTj5vLNXcgM1SWOe/8G2n XfWbMbh+QjQiN6+ULXuj2gCu8ENssjaarfqKBpiLs+GJB8vffV5uOlG0IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPocPtA0IEMHYmxj7v7uRRO+WGWSMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgN5d+Oxn qGW8iYXR0+Ia9/2KqLSAvVbWIotX+3kOU722TH1TtfgggE7rfGlb6wyRrP7fdrUw Vm2orQGKkUKPxUpdSkHeMG3wZ8xXGOSMATK/Rf+UnN0C5UOCquMbsVNIKBCx3hVw bOe4y3xiD41otwh3uagcnjvmHoh0HvK+P/mB1qTi2ePQX/0i9KmZGPB9hYpHpFZM XvK7xCvoW4vVbgG6/cJx9Gx18qdyubkVNejJYobxKfcz096HrCBdM4MRvndXdQ++ r9uMGYx67PgQJ9ZytnR1a3Oyx/gfCTpXx1oKFrczWs1q+8bDup6y6YuutLwIEecb 17x8AynVYHEQYA== -----END CERTIFICATE-----Generated at Mon Dec 1 13:19:30 2025 by rpki-client