This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: XGTJnQzRKcFkXyCTSGgD6/LVZIoalSh2rVYt6aP3CK4= Subject key identifier: 2D:26:0C:52:79:82:A5:85:7C:98:CF:77:B7:32:F4:CF:30:D3:35:A3 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B85E09CB70F9EC71B1417C672B28A7D62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1211 Signing time: Sat 03 Jan 2026 22:00:48 +0000 Manifest this update: Sat 03 Jan 2026 22:00:48 +0000 Manifest next update: Sun 04 Jan 2026 22:00:48 +0000 Files and hashes: 1: 2FTZk29N4ByQY45BtJSQSIVpVRM.roa (hash: rAVovOm/njZtMMmGMfPRxJdixQBe2en8/pj68uz5a98=) 2: 6r3q3z9OFjrJ9qoUTQKhOroMbaM.roa (hash: 29mycutC5foPo3U8nHm9mrCTYw4984xkZIx+WiI1F9M=) 3: 94DmWvO75aSCrTILT7xO5QfIZ4Q.roa (hash: yowEVWaH5JasWlMxUT7Mgz1/3iSP8rVz/KjlsGeBATs=) 4: Lw_o47E9qYaZtJPZjp5m1M1e0_o.roa (hash: TnHpGib6gDq3lP3ubauOs2iA7D/xB8DKvaZF7GPTkuk=) 5: MRCItQ1B9948OVdVK1kL96AGPQI.roa (hash: ZQgpMxwvj3QAdwytn7kSRtX4MaK4Pcv8MlZ4Lzpi3Pg=) 6: OFjegJjxvcb4sj9nFgT2lfhHX4s.roa (hash: IYubfyClKzPMzSFo0EthrRHOvnb4H46ku4bTbgAoW7k=) 7: OKCXW7_MWWto3GWe7wi0avKoJxY.roa (hash: WqcSKwFHiTej52k827avLCbdmV9f2szfzxuzHTMps/4=) 8: OQ-6VTdp1vw9GrjNLFmvI9JYOrs.roa (hash: ZPmtBIJ2La5bnUm+sApv+AeoWDVjiZhyYSZEHB1jKmo=) 9: OxJM60qRQUOtdqYrv27xs3_kv9k.roa (hash: w3ZIUcbiJQn/X+ANNYduQprQtRgqv43tl64iIBJ+uVs=) 10: PyHODj5n0DejAoWrQZBIRXaXo6Y.roa (hash: 3ofBNW8DPxuvHoS9tkTr0YH1zUrrGyXEWYQ/aOGrjNI=) 11: WGYchnyCAbqQd8pzwZhRwcjvgv8.roa (hash: I9YjzWZ/pqf8yScr+6TqbtawBHd4EYuPwRC5bUBqVQw=) 12: Wz0IiveJRR3iZ_TFadI3Bt6mJJE.roa (hash: CImcnKPxhqg5cF+ps6Yupe+fhV0VE9C6rzuLTV7FS3Q=) 13: X2QsnfxAM9ScjVh_AzAztNDaXJg.roa (hash: L4YEdLYOkjYPPZMBRJDRYkJkVBQq0athDIG3eYPShmM=) 14: Z_IuqEKKfXuEOIP93u24e6BLk0E.roa (hash: 9YG/wmkjQ+naLweN0fWYFNb6KTTbRHlNigN8yWNOBNk=) 15: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: zZ+rH9nGmICVFpivnBoWnVSD4q0bMVXirWaRabyGFnY=) 16: t4R25ZXPVStjauKJN0GTtODr3yU.roa (hash: g5h7UJb9yZQYOvckJX3+K/kTtGb30JhlTLu3Ss9IriI=) 17: u26dzWx1WsuAyPhRE3IG1GMmdJc.roa (hash: gEHPHjFqESUZPon7FHlszrJPYiDLqkhRmgKIOhvsfGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 22:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:85:e0:9c:b7:0f:9e:c7:1b:14:17:c6:72:b2:8a:7d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Jan 3 22:00:48 2026 GMT Not After : Jan 4 22:00:48 2026 GMT Subject: CN=2d260c527982a5857c98cf77b732f4cf30d335a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e9:8a:72:b7:1e:c9:ab:a4:c0:26:7b:ce:e8: ed:fb:18:be:f6:a6:74:7b:30:ac:ab:cb:85:e4:46: df:93:54:cf:37:d4:20:45:92:84:68:91:83:75:8b: d3:bd:0f:16:29:f9:2e:af:87:77:6d:44:d9:8a:5f: be:81:25:df:9b:e7:1d:c7:1e:28:a6:38:71:b6:4b: bd:10:f7:b2:fa:6a:e5:50:13:cf:f8:36:84:b9:84: 67:7a:f5:4c:c0:a5:d7:64:8a:21:2d:8a:69:e1:34: 56:8c:32:88:8d:ea:35:3a:52:88:44:c2:81:c5:0b: a3:11:02:11:cc:2d:8d:3e:77:20:63:55:c9:c5:37: f3:af:5c:16:6a:55:ed:33:a7:13:42:0a:9e:68:d3: d0:7a:48:36:f4:84:2e:e1:33:7b:c8:bf:39:18:0b: 57:3e:48:9f:b2:30:33:cc:9b:66:f0:e4:a4:a4:04: 29:3d:98:58:a8:1e:14:22:49:38:bc:8b:2e:35:89: bd:a6:93:90:b9:0d:bc:50:8e:8a:35:90:0e:44:75: 6a:4e:c1:6f:5d:90:29:4c:39:db:1e:4a:f1:ea:41: fc:ee:6a:43:11:4c:a6:75:22:89:c6:f1:be:6c:c0: 0f:c2:4b:6e:62:c2:e3:40:47:b6:2f:bd:f9:e5:b5: 6c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:26:0C:52:79:82:A5:85:7C:98:CF:77:B7:32:F4:CF:30:D3:35:A3 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:25:9b:15:17:d1:55:0e:bb:cf:c5:33:ee:69:e1:f7:bf:b9: e2:8d:9e:61:9f:81:68:87:e0:8d:39:5c:21:cf:28:bf:d4:7f: 5e:7c:7d:76:19:a8:bf:60:4c:37:b9:ad:ba:54:35:b6:f2:f8: 27:71:33:ef:87:fa:3f:62:a6:67:ed:03:71:71:c5:55:b0:53: c5:28:48:cb:54:14:ec:00:d2:cb:a3:a9:37:9f:c9:0f:74:15: fe:58:08:ca:31:7e:9d:44:20:21:3c:47:b1:a8:dd:13:1a:4b: 0b:00:53:a5:57:53:1c:90:f1:9f:1d:41:3e:1e:32:6c:15:3e: 74:6b:33:d5:20:e4:18:da:74:b9:4f:b3:4a:10:cb:93:b7:1a: 01:89:fb:7e:65:a8:47:a3:82:3e:26:39:76:0b:8f:2a:13:55: 2f:7e:d7:6c:97:9b:6f:78:cd:93:65:40:d7:da:be:58:7f:e4: af:db:56:0d:7e:fb:ce:b4:b6:a3:41:4c:96:44:62:22:71:0a: 9b:ca:2e:dd:5f:13:2a:ff:a9:12:e6:6c:06:45:02:09:cb:d5: 13:5d:56:2a:c2:c0:c7:e1:0d:86:f9:b4:f8:32:51:74:c6:7c: dd:cd:4a:d6:04:0a:ca:8d:9d:db:1f:44:e7:3f:79:ac:a8:ae: 97:b9:f6:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuF4Jy3D57HGxQXxnKyin1iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjYwMTAzMjIwMDQ4WhcNMjYwMTA0MjIwMDQ4WjAzMTEwLwYDVQQD EygyZDI2MGM1Mjc5ODJhNTg1N2M5OGNmNzdiNzMyZjRjZjMwZDMzNWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvumKcrceyaukwCZ7zujt+xi+9qZ0 ezCsq8uF5Ebfk1TPN9QgRZKEaJGDdYvTvQ8WKfkur4d3bUTZil++gSXfm+cdxx4o pjhxtku9EPey+mrlUBPP+DaEuYRnevVMwKXXZIohLYpp4TRWjDKIjeo1OlKIRMKB xQujEQIRzC2NPncgY1XJxTfzr1wWalXtM6cTQgqeaNPQekg29IQu4TN7yL85GAtX PkifsjAzzJtm8OSkpAQpPZhYqB4UIkk4vIsuNYm9ppOQuQ28UI6KNZAORHVqTsFv XZApTDnbHkrx6kH87mpDEUymdSKJxvG+bMAPwktuYsLjQEe2L7355bVstQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0mDFJ5gqWFfJjPd7cy9M8w0zWjMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyWbFRfR VQ67z8Uz7mnh97+54o2eYZ+BaIfgjTlcIc8ov9R/Xnx9dhmov2BMN7mtulQ1tvL4 J3Ez74f6P2KmZ+0DcXHFVbBTxShIy1QU7ADSy6OpN5/JD3QV/lgIyjF+nUQgITxH sajdExpLCwBTpVdTHJDxnx1BPh4ybBU+dGsz1SDkGNp0uU+zShDLk7caAYn7fmWo R6OCPiY5dguPKhNVL37XbJebb3jNk2VA19q+WH/kr9tWDX77zrS2o0FMlkRiInEK m8ou3V8TKv+pEuZsBkUCCcvVE11WKsLAx+ENhvm0+DJRdMZ83c1K1gQKyo2d2x9E 5z95rKiul7n2Ww== -----END CERTIFICATE-----Generated at Sun Jan 4 02:11:45 2026 by rpki-client