This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: CWv2R7vSyBHpZNzDArxA/oe/7T5TkRy7oLQix8Czo+4= Subject key identifier: 20:B1:8D:C9:46:A4:0A:B0:A6:FB:46:2C:96:AA:B7:CC:72:98:DC:B7 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019AC3AFDCEAE50E4E3BD740F6BCE879ABE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11AB Signing time: Thu 27 Nov 2025 05:01:13 +0000 Manifest this update: Thu 27 Nov 2025 05:01:13 +0000 Manifest next update: Fri 28 Nov 2025 05:01:13 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: p2bzsWVTATzzrlUNfid0ain6obQvLZ2XycUB0VLD4JU=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 05:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c3:af:dc:ea:e5:0e:4e:3b:d7:40:f6:bc:e8:79:ab:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Nov 27 05:01:13 2025 GMT Not After : Nov 28 05:01:13 2025 GMT Subject: CN=20b18dc946a40ab0a6fb462c96aab7cc7298dcb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:b5:10:22:bf:0e:c5:70:1c:54:8f:0e:cf: 6c:96:f0:53:ca:b6:8c:ea:e0:0b:0b:4b:05:1e:d9: 07:97:5b:9d:d6:77:8a:53:f3:29:80:56:a8:e6:6e: ad:bd:9c:4d:8d:79:81:20:19:16:65:a8:c9:4f:b6: 13:80:f8:d6:6c:be:e8:b6:5e:7f:78:48:f2:e1:aa: be:78:31:49:29:8c:b4:46:ca:b8:10:b7:83:d1:99: 1c:71:57:6e:a6:ab:40:1e:f3:73:cb:1e:a8:2d:37: ce:05:00:ab:6e:98:66:96:dd:b6:cc:34:99:55:e2: 71:12:87:e4:f8:e3:d5:65:86:43:be:05:fa:cd:fb: 2a:59:2f:d2:1c:03:0d:ab:f6:88:61:d0:5e:4f:fe: ee:96:0b:9f:f9:30:fa:55:5b:2b:0c:e2:ca:e6:8b: ba:e9:71:79:dd:c0:3e:32:95:da:22:7c:b7:65:e5: 8b:f6:8f:5a:41:f4:59:ad:61:64:bd:1a:de:c1:dc: 65:29:2d:5f:70:aa:b4:bf:c8:d8:ef:6e:4b:74:7e: 54:a1:fd:a6:69:24:95:bc:87:2f:a7:de:76:08:ec: f0:3b:a8:5e:ed:74:01:5a:75:d2:04:6a:2e:80:3a: cf:53:ea:54:18:b9:8c:1a:03:19:e4:80:e1:15:b9: c3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B1:8D:C9:46:A4:0A:B0:A6:FB:46:2C:96:AA:B7:CC:72:98:DC:B7 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:b9:84:dc:10:75:28:9b:64:ba:8e:aa:f3:c4:58:0f:b1:0e: 16:88:18:9a:b5:6e:f1:5f:b8:95:00:f4:22:8f:11:af:a7:ac: 65:d9:88:74:4e:30:40:b4:8b:94:64:49:e5:37:28:1c:93:54: 55:ba:51:61:4e:1b:ad:42:aa:4d:dd:ca:8c:b7:ae:cc:8e:40: 6e:ad:4c:10:b5:3d:a1:22:5c:29:34:e7:89:a5:86:c5:51:f2: fe:29:1b:db:d3:1e:7b:b5:aa:b0:e9:45:4d:d9:09:b5:2d:4e: 2a:59:d6:91:4e:73:da:fd:93:6a:30:00:ff:5f:0c:34:19:3c: 6f:b2:0d:6c:50:81:73:33:2b:1b:e3:be:21:58:e7:2c:a7:f9: 83:ff:6a:1b:88:9c:f7:14:41:aa:3b:59:13:b8:53:ae:f3:2c: dd:7e:8a:85:ea:e9:37:56:ab:1c:6f:99:4d:29:b5:8c:71:e4: 9f:c2:1e:eb:ae:d6:3f:1f:d6:fd:a6:b2:78:8e:45:a0:be:3b: cc:1e:62:95:a9:22:43:7d:46:ef:23:35:53:b9:d9:c6:c8:b7: 57:c1:0a:dc:c8:aa:92:d0:df:40:cb:00:08:86:7b:52:59:ec: dd:8e:5c:2d:f0:cd:11:7a:40:aa:b8:b2:f5:48:7f:9e:21:0d: 1f:49:64:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrDr9zq5Q5OO9dA9rzoeavpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMTI3MDUwMTEzWhcNMjUxMTI4MDUwMTEzWjAzMTEwLwYDVQQD EygyMGIxOGRjOTQ2YTQwYWIwYTZmYjQ2MmM5NmFhYjdjYzcyOThkY2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUK1ECK/DsVwHFSPDs9slvBTyraM 6uALC0sFHtkHl1ud1neKU/MpgFao5m6tvZxNjXmBIBkWZajJT7YTgPjWbL7otl5/ eEjy4aq+eDFJKYy0Rsq4ELeD0ZkccVdupqtAHvNzyx6oLTfOBQCrbphmlt22zDSZ VeJxEofk+OPVZYZDvgX6zfsqWS/SHAMNq/aIYdBeT/7ulguf+TD6VVsrDOLK5ou6 6XF53cA+MpXaIny3ZeWL9o9aQfRZrWFkvRrewdxlKS1fcKq0v8jY725LdH5Uof2m aSSVvIcvp952COzwO6he7XQBWnXSBGougDrPU+pUGLmMGgMZ5IDhFbnDfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCCxjclGpAqwpvtGLJaqt8xymNy3MB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKbmE3BB1 KJtkuo6q88RYD7EOFogYmrVu8V+4lQD0Io8Rr6esZdmIdE4wQLSLlGRJ5TcoHJNU VbpRYU4brUKqTd3KjLeuzI5Abq1MELU9oSJcKTTniaWGxVHy/ikb29Mee7WqsOlF TdkJtS1OKlnWkU5z2v2TajAA/18MNBk8b7INbFCBczMrG+O+IVjnLKf5g/9qG4ic 9xRBqjtZE7hTrvMs3X6KherpN1arHG+ZTSm1jHHkn8Ie667WPx/W/aayeI5FoL47 zB5ilakiQ31G7yM1U7nZxsi3V8EK3MiqktDfQMsACIZ7Ulns3Y5cLfDNEXpAqriy 9Uh/niENH0lkcQ== -----END CERTIFICATE-----Generated at Thu Nov 27 13:44:36 2025 by rpki-client