This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: NkGwzSeQvUw79EDjv9nMCdGXbTzc+g0IFKYOUT+NI0o= Subject key identifier: EB:1A:C1:3E:CE:3B:D0:42:50:07:C6:B5:A5:E5:18:18:BB:09:C5:14 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019BA6B5814716AC2A546F643C2E7CA954F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1222 Signing time: Sat 10 Jan 2026 07:01:11 +0000 Manifest this update: Sat 10 Jan 2026 07:01:11 +0000 Manifest next update: Sun 11 Jan 2026 07:01:11 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: xe3ynQ+x8YyIxXGTHGYhwzeuHveKzdjeW1XjuthHfLE=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 06:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a6:b5:81:47:16:ac:2a:54:6f:64:3c:2e:7c:a9:54:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 10 07:01:11 2026 GMT Not After : Jan 11 07:01:11 2026 GMT Subject: CN=eb1ac13ece3bd0425007c6b5a5e51818bb09c514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b6:aa:02:17:dd:61:52:2b:ea:fc:dc:8a:25: ca:bb:29:d7:58:45:d5:ee:f0:80:3a:0e:97:df:99: 00:a5:4f:a5:cf:01:45:ae:e2:27:bd:aa:83:34:14: da:e3:84:fc:c3:cf:08:56:a9:5b:10:9d:73:8a:85: 0a:48:09:90:24:02:7f:d0:cb:18:34:8e:e7:3d:80: 4f:fd:6d:a2:03:39:09:23:12:c9:73:1b:39:a6:29: ca:c6:a2:44:1b:b3:6f:14:55:54:42:9d:06:ff:6d: d0:f2:3c:9b:05:d5:09:6d:94:4e:e6:f0:63:3d:ed: dd:7a:f4:b3:10:0b:c9:9f:d6:e9:f7:18:9c:fe:d6: c2:ab:d3:34:73:41:65:fc:68:34:72:31:26:6c:0f: 6c:19:7a:0b:81:80:e8:34:0a:80:b2:85:01:3e:d2: 85:49:9f:37:92:91:2f:a7:60:92:b0:ba:da:48:9a: 62:e3:aa:1a:60:d9:02:41:51:03:02:06:00:85:71: 25:07:13:26:7c:a0:c2:a0:68:45:df:70:c6:50:f0: 34:f2:1e:1c:d2:63:b2:23:c9:dd:1a:bb:d3:cf:7b: b3:5e:59:79:41:e5:51:a3:89:93:97:bf:cd:71:39: 3c:1a:66:ea:ec:6d:41:eb:0c:e0:29:39:49:96:3c: 2b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:1A:C1:3E:CE:3B:D0:42:50:07:C6:B5:A5:E5:18:18:BB:09:C5:14 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:f5:61:e3:fd:84:8a:63:33:41:33:75:9e:15:3d:63:d0:29: d5:61:06:4c:9b:4a:bb:7c:6c:70:9c:e9:2c:7d:a8:6e:30:10: 1a:e2:ff:a7:c8:43:a9:49:66:ab:fc:49:ec:0f:f3:40:72:a7: 97:60:b3:fa:6f:32:29:b2:0d:75:1a:e9:c6:ff:80:b2:87:a1: 27:d6:96:86:ce:13:98:04:05:de:12:87:05:14:4d:1e:15:fc: 0f:00:9a:21:22:28:35:07:e9:df:0b:36:d2:cb:31:fd:6c:0f: 98:a3:43:00:ea:7b:75:c4:a2:8e:13:d2:92:06:30:1a:13:52: 7b:90:5f:d4:67:92:65:46:dc:b1:cb:1d:c9:b1:de:15:13:48: 0c:1a:60:09:13:3b:57:d0:0b:c3:47:91:e5:ae:02:14:28:e4: 64:53:fc:3f:14:09:81:59:81:ef:c7:7a:0a:71:db:4b:c6:ca: 0d:4c:e2:94:7c:40:3a:3e:c8:1a:42:1f:04:1d:d7:6d:29:7c: 4a:fb:54:9c:4a:d5:e5:d0:ee:cf:a8:16:17:98:db:32:9a:74: 74:0e:e6:41:85:71:32:91:39:55:05:ef:42:e2:0a:55:cf:aa: 77:1d:eb:5a:73:40:36:61:c5:1d:71:ab:26:f0:6e:15:4f:3e: 0e:81:bc:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZumtYFHFqwqVG9kPC58qVT4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTEwMDcwMTExWhcNMjYwMTExMDcwMTExWjAzMTEwLwYDVQQD EyhlYjFhYzEzZWNlM2JkMDQyNTAwN2M2YjVhNWU1MTgxOGJiMDljNTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7aqAhfdYVIr6vzciiXKuynXWEXV 7vCAOg6X35kApU+lzwFFruInvaqDNBTa44T8w88IVqlbEJ1zioUKSAmQJAJ/0MsY NI7nPYBP/W2iAzkJIxLJcxs5pinKxqJEG7NvFFVUQp0G/23Q8jybBdUJbZRO5vBj Pe3devSzEAvJn9bp9xic/tbCq9M0c0Fl/Gg0cjEmbA9sGXoLgYDoNAqAsoUBPtKF SZ83kpEvp2CSsLraSJpi46oaYNkCQVEDAgYAhXElBxMmfKDCoGhF33DGUPA08h4c 0mOyI8ndGrvTz3uzXll5QeVRo4mTl7/NcTk8Gmbq7G1B6wzgKTlJljwrnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOsawT7OO9BCUAfGtaXlGBi7CcUUMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGfVh4/2E imMzQTN1nhU9Y9Ap1WEGTJtKu3xscJzpLH2objAQGuL/p8hDqUlmq/xJ7A/zQHKn l2Cz+m8yKbINdRrpxv+AsoehJ9aWhs4TmAQF3hKHBRRNHhX8DwCaISIoNQfp3ws2 0ssx/WwPmKNDAOp7dcSijhPSkgYwGhNSe5Bf1GeSZUbcscsdybHeFRNIDBpgCRM7 V9ALw0eR5a4CFCjkZFP8PxQJgVmB78d6CnHbS8bKDUzilHxAOj7IGkIfBB3XbSl8 SvtUnErV5dDuz6gWF5jbMpp0dA7mQYVxMpE5VQXvQuIKVc+qdx3rWnNANmHFHXGr JvBuFU8+DoG8ow== -----END CERTIFICATE-----Generated at Sat Jan 10 10:47:55 2026 by rpki-client