This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: msWFeTbAMxgOexWi3lHEPE437Sk67iLUYW9hfO0QaU0= Subject key identifier: E2:D6:BD:B6:EB:E8:99:3A:57:F6:5A:B6:63:49:B0:CD:7A:15:4E:B1 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019AB43CE1ACA489AB14A02ECE60A517F47B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11A3 Signing time: Mon 24 Nov 2025 05:01:20 +0000 Manifest this update: Mon 24 Nov 2025 05:01:20 +0000 Manifest next update: Tue 25 Nov 2025 05:01:20 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: OXC1aXDzn6rkZ0S3Bq5qVGO25GGrP//EtZ0d25OU4aE=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 25 Nov 2025 05:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b4:3c:e1:ac:a4:89:ab:14:a0:2e:ce:60:a5:17:f4:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Nov 24 05:01:20 2025 GMT Not After : Nov 25 05:01:20 2025 GMT Subject: CN=e2d6bdb6ebe8993a57f65ab66349b0cd7a154eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:ad:69:54:c7:91:5c:60:da:3b:5f:76:96: ea:cb:33:06:89:4e:ab:3d:3c:d2:4e:7e:57:a2:12: a6:53:d2:46:a5:6d:19:2d:5c:dc:51:bf:5f:cb:0c: 24:e0:0d:82:13:6d:4f:62:c8:ed:d8:26:f8:1f:be: 7f:dd:56:a3:a2:e5:b6:cd:2a:e7:f7:e5:20:a4:45: 82:0a:b9:dc:6c:a9:74:f4:44:c7:de:77:73:f5:d3: c3:a2:20:a4:bd:ae:b8:23:5d:17:02:df:29:b4:a9: c8:2d:5d:22:01:04:d6:7c:eb:5d:11:50:e9:47:37: 31:66:a8:a5:64:ad:52:73:0a:4b:dc:d9:40:61:9e: e6:11:fd:6a:50:6f:b3:3c:91:cd:3b:a4:c6:0c:9d: b6:7f:3d:b1:7a:89:ee:50:5c:7a:fd:c4:67:25:ad: 15:0c:d9:98:8b:f5:e0:30:50:4f:02:63:fb:3d:ab: 03:29:85:9f:9e:88:43:b6:1b:4a:5a:ce:e4:3a:6e: 33:ec:37:5b:42:3c:5e:a0:dd:01:aa:63:4a:02:ae: 32:1c:44:39:71:d2:47:96:af:c5:12:0b:b5:ca:69: 2a:74:1b:65:da:7d:ad:7d:a0:e5:a7:e4:5e:00:d3: eb:92:c3:7d:ed:c4:05:28:38:47:2e:c1:3d:95:d0: 72:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D6:BD:B6:EB:E8:99:3A:57:F6:5A:B6:63:49:B0:CD:7A:15:4E:B1 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:7c:43:9a:72:43:44:64:b3:2e:08:88:9f:ba:bc:70:4d:29: dd:79:82:e1:e6:9b:b0:3c:f5:7d:18:82:3f:98:8d:6b:5a:89: ba:f0:1b:08:05:cc:f8:f3:98:0b:0f:2d:99:f8:6d:0b:c8:35: 29:98:b8:f8:03:a5:5c:a3:fc:bb:cd:8b:4d:28:52:bd:d8:88: f6:16:0a:38:3d:e3:99:c1:0d:16:16:22:eb:96:8c:6e:c8:d0: d5:39:7a:97:3e:ba:93:b5:4b:c3:4d:50:51:97:a6:96:82:ea: 00:08:b0:ba:b8:49:86:b7:06:ac:d2:4e:39:c0:ec:27:a9:e6: 8d:5e:64:11:f1:30:1e:78:a8:1e:35:7e:37:73:ce:67:0d:da: 67:59:80:75:38:a7:2d:28:20:ab:80:99:c4:06:03:b4:6f:9a: 91:03:a1:94:90:60:6d:f1:2f:bc:fe:1f:06:3b:f3:e6:32:31: 10:e4:2d:e4:1b:aa:c6:32:f6:ed:ca:1e:44:8b:b8:f2:15:02: 03:61:67:1c:3c:7b:4e:62:64:6b:a8:2e:2d:e5:a4:8f:9d:11: 15:ba:2e:2c:48:90:6c:c4:f2:c9:1b:09:12:3f:fe:4b:bf:3e: 7a:2b:24:97:4c:f9:aa:3b:ec:52:64:e1:64:c2:e5:df:a7:84: fd:ad:bb:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq0POGspImrFKAuzmClF/R7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMTI0MDUwMTIwWhcNMjUxMTI1MDUwMTIwWjAzMTEwLwYDVQQD EyhlMmQ2YmRiNmViZTg5OTNhNTdmNjVhYjY2MzQ5YjBjZDdhMTU0ZWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsrutaVTHkVxg2jtfdpbqyzMGiU6r PTzSTn5XohKmU9JGpW0ZLVzcUb9fywwk4A2CE21PYsjt2Cb4H75/3VajouW2zSrn 9+UgpEWCCrncbKl09ETH3ndz9dPDoiCkva64I10XAt8ptKnILV0iAQTWfOtdEVDp RzcxZqilZK1ScwpL3NlAYZ7mEf1qUG+zPJHNO6TGDJ22fz2xeonuUFx6/cRnJa0V DNmYi/XgMFBPAmP7PasDKYWfnohDthtKWs7kOm4z7DdbQjxeoN0BqmNKAq4yHEQ5 cdJHlq/FEgu1ymkqdBtl2n2tfaDlp+ReANPrksN97cQFKDhHLsE9ldBy3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOLWvbbr6Jk6V/ZatmNJsM16FU6xMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABHxDmnJD RGSzLgiIn7q8cE0p3XmC4eabsDz1fRiCP5iNa1qJuvAbCAXM+POYCw8tmfhtC8g1 KZi4+AOlXKP8u82LTShSvdiI9hYKOD3jmcENFhYi65aMbsjQ1Tl6lz66k7VLw01Q UZemloLqAAiwurhJhrcGrNJOOcDsJ6nmjV5kEfEwHnioHjV+N3POZw3aZ1mAdTin LSggq4CZxAYDtG+akQOhlJBgbfEvvP4fBjvz5jIxEOQt5BuqxjL27coeRIu48hUC A2FnHDx7TmJka6guLeWkj50RFbouLEiQbMTyyRsJEj/+S78+eiskl0z5qjvsUmTh ZMLl36eE/a27gQ== -----END CERTIFICATE-----Generated at Mon Nov 24 13:39:42 2025 by rpki-client