This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: tIYv39yWcDt1Ipr40zaJXVzidoSyyRPKOtByoU/Wk+Y= Subject key identifier: B5:AE:BD:0C:9B:A3:97:FE:17:FF:15:5A:BB:C1:04:28:F2:03:41:1B Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B7223196834DBA50C9BCD809D2AFD5E8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 1206 Signing time: Wed 31 Dec 2025 02:01:01 +0000 Manifest this update: Wed 31 Dec 2025 02:01:01 +0000 Manifest next update: Thu 01 Jan 2026 02:01:01 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: KZPwVDbwOkmi-sEEC_TqcUeMzYI.roa (hash: D0dFEOhVqQzL9ff/+LILn5JrUvKqeR7kLX0LV2DDfDw=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: +r2rIFywH2DpOijrQQVuufWvgSpkZxuED1pcp+nmOYQ=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: k8X6rpXsnvun5Vl5pXAh-mD2GZU.roa (hash: G+fNQ144ywV3dbbQU91YZ/j14MM00nHsKiCj+xndi8c=) 14: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 15: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 16: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 17: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:72:23:19:68:34:db:a5:0c:9b:cd:80:9d:2a:fd:5e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Dec 31 02:01:01 2025 GMT Not After : Jan 1 02:01:01 2026 GMT Subject: CN=b5aebd0c9ba397fe17ff155abbc10428f203411b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d1:9f:44:ab:c2:c5:d5:fc:45:a7:88:6e:93: fc:f4:97:7a:26:48:21:77:23:f5:07:28:1f:12:52: 45:6e:e8:ee:0a:27:cf:9a:58:0e:d4:ac:7e:23:c0: e2:35:f0:c7:42:15:d3:91:05:2d:5b:22:4e:46:ff: f4:42:9b:8f:9d:2d:31:62:f5:ae:04:70:48:ab:43: 84:ba:81:e8:41:e0:15:98:75:5c:aa:54:3e:17:5c: ba:4e:35:74:c1:f1:29:20:11:85:7a:43:b2:7e:04: 97:3f:ff:02:7b:39:3a:fb:c5:ea:1d:21:7d:aa:da: 70:1c:ff:d4:3f:85:10:39:38:e4:04:6f:15:06:b9: a4:93:b0:6b:07:05:f2:b7:6f:fe:41:18:f9:30:6e: e9:d0:69:e4:a1:79:f9:bf:b8:e9:5d:84:49:95:1e: 33:71:2e:62:e9:75:9d:b5:f6:f5:cb:35:88:6c:6f: e0:aa:1a:36:2e:0f:ec:18:cf:78:bf:5e:b4:9c:38: b3:f8:15:74:be:ce:fc:57:e4:da:58:27:bc:48:a2: 90:97:2f:e7:53:35:1f:a1:ea:51:45:12:5b:a5:e3: 57:16:d2:bb:f6:60:63:1e:54:8c:6f:11:c4:be:bd: d3:22:d4:3c:e4:25:8f:40:3f:b0:14:e7:2e:52:d2: 96:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AE:BD:0C:9B:A3:97:FE:17:FF:15:5A:BB:C1:04:28:F2:03:41:1B X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:f0:f1:a6:b5:1e:24:b7:1c:3a:fb:1d:6c:cd:38:7f:a1:7e: 1a:33:51:60:bd:6a:50:8f:27:b7:c4:1d:6a:b3:de:14:8f:a8: c0:a2:b9:87:1d:0b:ac:8a:32:bf:c3:91:36:1a:7a:4c:94:48: e6:9f:cb:43:df:a0:e9:3e:5f:f8:ed:4f:49:f7:5b:f4:81:cf: ae:3b:f6:f5:d7:a3:47:b5:d2:fd:75:e4:7e:0a:04:53:9e:78: 02:be:7d:aa:02:e9:1e:04:f6:08:72:3c:64:83:6f:cc:35:bd: 22:ff:3b:9a:42:9e:aa:ff:8d:41:79:ce:ba:82:4f:a5:56:49: 56:91:d8:0d:a1:75:42:e2:d5:41:ab:be:6b:cd:7b:c1:ce:79: 15:5a:e6:7b:bc:f3:01:2f:de:76:58:9c:59:88:0b:b0:e3:af: 1a:5f:72:7e:e6:00:6f:4b:95:8e:da:9e:89:19:13:0c:59:5b: c4:b6:9b:f6:bb:b6:6e:31:f5:5d:c0:4e:86:77:a4:17:fb:49: 0a:8b:e3:b4:b2:5b:81:b5:bf:3c:c4:4e:b3:58:18:91:7b:0d: 45:cf:93:94:44:23:91:11:99:4d:c0:50:9d:ff:83:f9:54:cd: 18:fb:04:5d:f5:95:30:b4:7f:4f:4e:88:fa:06:47:b3:2e:9d: 9f:9f:85:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtyIxloNNulDJvNgJ0q/V6LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMjMxMDIwMTAxWhcNMjYwMTAxMDIwMTAxWjAzMTEwLwYDVQQD EyhiNWFlYmQwYzliYTM5N2ZlMTdmZjE1NWFiYmMxMDQyOGYyMDM0MTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNGfRKvCxdX8RaeIbpP89Jd6Jkgh dyP1BygfElJFbujuCifPmlgO1Kx+I8DiNfDHQhXTkQUtWyJORv/0QpuPnS0xYvWu BHBIq0OEuoHoQeAVmHVcqlQ+F1y6TjV0wfEpIBGFekOyfgSXP/8Cezk6+8XqHSF9 qtpwHP/UP4UQOTjkBG8VBrmkk7BrBwXyt2/+QRj5MG7p0GnkoXn5v7jpXYRJlR4z cS5i6XWdtfb1yzWIbG/gqho2Lg/sGM94v160nDiz+BV0vs78V+TaWCe8SKKQly/n UzUfoepRRRJbpeNXFtK79mBjHlSMbxHEvr3TItQ85CWPQD+wFOcuUtKWpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLWuvQybo5f+F/8VWrvBBCjyA0EbMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUPDxprUe JLccOvsdbM04f6F+GjNRYL1qUI8nt8QdarPeFI+owKK5hx0LrIoyv8ORNhp6TJRI 5p/LQ9+g6T5f+O1PSfdb9IHPrjv29dejR7XS/XXkfgoEU554Ar59qgLpHgT2CHI8 ZINvzDW9Iv87mkKeqv+NQXnOuoJPpVZJVpHYDaF1QuLVQau+a817wc55FVrme7zz AS/edlicWYgLsOOvGl9yfuYAb0uVjtqeiRkTDFlbxLab9ru2bjH1XcBOhnekF/tJ CovjtLJbgbW/PMROs1gYkXsNRc+TlEQjkRGZTcBQnf+D+VTNGPsEXfWVMLR/T06I +gZHsy6dn5+FYA== -----END CERTIFICATE-----Generated at Wed Dec 31 07:42:44 2025 by rpki-client