This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: wePWpfOj6TFG60OVau0RjB8K1Ok23P5D4YJI8Lim2cA= Subject key identifier: 72:FE:B8:7A:73:5E:F2:20:18:CC:9D:F3:19:AB:E3:6A:A8:9F:AA:A5 Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 019B281C164B6A6A85DC8F3358F6D817AD2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest number: 11DF Signing time: Tue 16 Dec 2025 17:01:27 +0000 Manifest this update: Tue 16 Dec 2025 17:01:27 +0000 Manifest next update: Wed 17 Dec 2025 17:01:27 +0000 Files and hashes: 1: 0RQ-WrGaW_a3SUMuIWvBi3re8Us.roa (hash: Vm0Yp0DBpXgsUlIoix2wYlP8daTTxgpllg8xunuDANo=) 2: 2c-138nK4yanjA_nFYFgRI3qkq8.roa (hash: eVkYs1Oz0s5AD5JOgKA2ZQfEyufJILyJFXY8+OH1Q4o=) 3: 3KNmMvvNnWz-gbQdS7pSD6NeSj8.roa (hash: 19Nj6yvWJYRr/APzHhAxi9EkGzAdWa0wPSZ7epiybNI=) 4: AWu3FimnriCBdHwo3g5MMDT1qE4.roa (hash: mO4hJXcIgDGlzI8xRSm/HtygAZ7WHc+oV+0VaCAIGc0=) 5: Giz24KLfpQkd7xs-DD95CPsPmOY.roa (hash: KQH/GuWZf651hnMRpwoGbmUFOnlVdGar78D6Hk0TRqM=) 6: Ls5gcPMX-M4WgeGybLOeWexgrwI.roa (hash: ddCFP8hel+nThr/Av/RaZ8w2aK3ehVlzvIwAydR9dmQ=) 7: N6KXHzVWixEktWPnU9eEkzBiRXA.roa (hash: ZeBA7mXHpgozatB0IZbSJ9v+AumsoGr7uGRE7BfY82k=) 8: WisrqhFtyIb2JbL0GIaBAVHWLTE.roa (hash: Y/GRGegzBf5aloGYHapUwpHTKh2vmOFKcBbghRvqMYw=) 9: dGrI4BE8oPWh3DjqR5EL1omnmFE.roa (hash: fh9dXwWPLeOX+9MGqs4zz/wpDF+snGcI3Q6bKbn3R34=) 10: fgKPPdW8bX1X6qK_GJWLhKliu3w.roa (hash: KwDL7D8DQXv/HgQm93E74+FZwYXZspxr0ZPQdGjc5BA=) 11: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: cfDPLoYZCqw/cClHqnEmHeM02lWdaTHeNAGnZLF16z4=) 12: jWe_TvIhj5dH5Ux2vCS3uvPznoc.roa (hash: NDB0B6hhi9OkQwxq6X1dXNT80uauDo2rv8POlRS3xgc=) 13: lVD1-s3z_VEryG-EOJaasXYliY0.roa (hash: h8oMIjXYTJbKfdwIFG8fjlG+UgURPlIi2HuuI8oOKSE=) 14: lwed3ihcQQrFsvv8k908fUPl3CM.roa (hash: Ug53jrAOg0K9fodJftRbAh41xK8TfAJeCOUBqHsGwb8=) 15: o7aaJIA1Lgq0zCdQCsOjEWzmMK0.roa (hash: WUPkYWF0I4A0srltNNQaHCMFjlD7ESqkAZxhm9FU4mI=) 16: q90aS9463wXYf4Sgoia8t4bKeN8.roa (hash: hvm9v4WmHwSkZ/edm7ru3afucj0r+/esuU2s4VhpOe8=) 17: qj6JzLV6yUCof1sB2xKr6dnriHk.roa (hash: OwtdnJIJzWn+DFiZhfavSFxynDXz7xR6fT1mm0Xe21w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:1c:16:4b:6a:6a:85:dc:8f:33:58:f6:d8:17:ad:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Dec 16 17:01:27 2025 GMT Not After : Dec 17 17:01:27 2025 GMT Subject: CN=72feb87a735ef22018cc9df319abe36aa89faaa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:bf:d0:d6:ad:0a:cf:32:bb:47:98:0d:9e:af: 8c:81:5e:4e:e1:ab:54:f1:65:40:f3:4d:1f:03:13: ab:32:b1:ba:60:bb:7f:66:58:97:fc:80:29:db:d8: 9c:42:81:09:59:13:10:5e:c9:33:e8:c8:36:ad:f5: 23:45:7a:3b:68:4d:f1:36:14:55:8d:4c:7d:ed:89: 9b:ba:24:da:8e:ce:cb:b8:14:3f:c6:95:82:69:1d: 52:9c:b9:50:22:53:33:5b:3a:a2:48:b4:0d:45:6d: 88:68:af:3f:32:a0:f2:31:ec:e1:fd:77:0e:a7:82: 79:f3:ed:2e:ae:86:4d:99:b2:b5:bd:97:3e:9a:1c: 84:2b:22:5e:0f:2e:14:a1:aa:a5:9d:d8:16:58:59: 9e:42:76:40:c5:54:e6:ad:04:bf:21:07:03:e6:83: e3:be:5c:6a:71:9c:04:75:06:ff:e4:85:73:33:9a: 91:38:29:d0:a8:0c:56:ad:f7:6b:80:ad:02:1e:8e: 79:fe:6f:52:9c:dd:c1:0d:db:ef:48:72:5f:e8:b1: ce:32:cf:0c:22:6a:89:35:a4:16:e4:b8:68:85:4b: 38:9f:22:73:5e:e5:18:18:bd:d7:00:de:b2:1d:3d: 62:23:63:e9:f9:ff:7d:a4:1c:8f:2b:0e:b4:a8:c6: dc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:FE:B8:7A:73:5E:F2:20:18:CC:9D:F3:19:AB:E3:6A:A8:9F:AA:A5 X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:4f:0e:32:ef:82:4f:09:2b:80:e7:35:b9:7a:83:6a:d9:c7: c7:34:52:97:b1:74:84:a6:67:e6:89:7a:76:e2:88:c3:36:2a: 75:10:ce:64:39:d4:ee:bb:b9:7a:ce:7a:97:bf:0d:c3:fb:57: fd:34:d6:e5:6e:74:72:70:59:79:5f:be:02:da:79:60:2c:3c: dd:a0:c4:ce:f7:d8:0b:e4:33:7f:ab:bc:bb:c3:61:bd:01:92: 3d:c2:48:c5:fe:ac:03:15:8a:3b:a0:65:f9:ed:40:f9:74:90: 02:64:9d:d9:38:44:83:b8:e0:29:c2:9a:03:00:77:0a:39:82: b2:56:1e:01:93:5c:a0:7b:80:9a:c6:d4:f3:7d:3e:f3:2b:30: 7c:a3:a5:66:89:37:6d:35:10:87:1b:db:83:af:8d:27:b8:71: 8c:28:1d:d6:2e:61:1a:69:5f:d5:f7:ff:dd:ff:97:3a:96:ad: 03:3d:f6:37:2b:6c:0f:6f:98:e4:ed:28:f1:14:43:34:c2:bb: a8:78:97:28:30:5f:b7:49:c0:86:48:2c:56:dd:78:16:a8:4e: 3e:a4:61:8f:e7:9c:bb:c5:cb:b0:19:04:35:32:d2:ea:a6:12: 36:ac:55:6b:0d:96:78:a3:e5:a5:de:c0:3c:c4:93:d8:77:bd: 47:54:c0:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoHBZLamqF3I8zWPbYF60tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjUxMjE2MTcwMTI3WhcNMjUxMjE3MTcwMTI3WjAzMTEwLwYDVQQD Eyg3MmZlYjg3YTczNWVmMjIwMThjYzlkZjMxOWFiZTM2YWE4OWZhYWE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA67/Q1q0KzzK7R5gNnq+MgV5O4atU 8WVA800fAxOrMrG6YLt/ZliX/IAp29icQoEJWRMQXskz6Mg2rfUjRXo7aE3xNhRV jUx97YmbuiTajs7LuBQ/xpWCaR1SnLlQIlMzWzqiSLQNRW2IaK8/MqDyMezh/XcO p4J58+0uroZNmbK1vZc+mhyEKyJeDy4UoaqlndgWWFmeQnZAxVTmrQS/IQcD5oPj vlxqcZwEdQb/5IVzM5qROCnQqAxWrfdrgK0CHo55/m9SnN3BDdvvSHJf6LHOMs8M ImqJNaQW5LhohUs4nyJzXuUYGL3XAN6yHT1iI2Pp+f99pByPKw60qMbcGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHL+uHpzXvIgGMyd8xmr42qon6qlMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcU8OMu+C TwkrgOc1uXqDatnHxzRSl7F0hKZn5ol6duKIwzYqdRDOZDnU7ru5es56l78Nw/tX /TTW5W50cnBZeV++Atp5YCw83aDEzvfYC+Qzf6u8u8NhvQGSPcJIxf6sAxWKO6Bl +e1A+XSQAmSd2ThEg7jgKcKaAwB3CjmCslYeAZNcoHuAmsbU830+8yswfKOlZok3 bTUQhxvbg6+NJ7hxjCgd1i5hGmlf1ff/3f+XOpatAz32NytsD2+Y5O0o8RRDNMK7 qHiXKDBft0nAhkgsVt14FqhOPqRhj+ecu8XLsBkENTLS6qYSNqxVaw2WeKPlpd7A PMST2He9R1TAQQ== -----END CERTIFICATE-----Generated at Wed Dec 17 00:26:54 2025 by rpki-client