This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: lPcM1B5SUpxap6/wBDhE1RIdBCVqaM0cGocM9UUg/qU= Subject key identifier: F8:C1:28:E7:A6:F4:B0:03:98:A5:52:99:74:B0:4C:B6:06:45:86:2C Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BF499DB1127B2AC3370A8C19FC6AE28D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1035 Signing time: Sun 25 Jan 2026 10:01:22 +0000 Manifest this update: Sun 25 Jan 2026 10:01:22 +0000 Manifest next update: Mon 26 Jan 2026 10:01:22 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 0LC3GkgGK+rl6cDdmrCjWJgx4LjtMtzrhZ6hmkxvg/M=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:db:11:27:b2:ac:33:70:a8:c1:9f:c6:ae:28:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 25 10:01:22 2026 GMT Not After : Jan 26 10:01:22 2026 GMT Subject: CN=f8c128e7a6f4b00398a5529974b04cb60645862c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:9b:95:fa:07:9b:1b:5b:e2:57:ab:8f:82:b6: ad:91:ac:e9:22:2c:69:de:9a:bb:da:7f:98:2c:0f: 0f:ac:38:ab:4b:4e:78:9e:8b:3d:7e:a7:ed:0a:04: 29:1e:4d:f1:48:f4:8b:c9:78:39:68:45:19:88:c8: b0:94:a0:06:45:66:37:f4:1f:52:65:8a:74:6b:89: b2:2e:d5:25:3b:11:04:48:e8:19:7c:58:ba:50:fb: 11:a2:af:b5:79:5b:1b:82:78:8c:00:a1:7e:ff:e2: 6f:9d:f3:80:2b:f9:62:fb:29:78:36:ba:4f:a9:41: e7:20:8a:72:19:b9:9f:10:4d:70:5f:a5:b1:93:11: 8e:3c:d5:18:9c:46:b1:d2:4f:89:cb:71:6b:f7:42: 80:1f:51:0c:32:c8:18:6e:f9:d7:a5:9c:3a:1c:d4: 6a:7a:bf:b5:16:9a:7d:53:ee:b0:8c:74:c1:8e:0d: c7:4d:30:9d:3c:71:65:a6:1e:3c:06:4c:4a:56:e9: 8c:bd:dd:21:4a:19:ea:d8:fe:3c:87:0a:aa:a9:f0: 5e:39:d2:2e:a4:ba:97:50:d3:d4:7b:a2:00:f8:f4: f0:5c:91:b2:00:91:a7:eb:9e:d2:8b:b5:a2:ab:6a: e0:38:e5:a2:cb:63:c6:8c:a4:b5:4c:92:5f:8d:7f: 0b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C1:28:E7:A6:F4:B0:03:98:A5:52:99:74:B0:4C:B6:06:45:86:2C X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:34:40:cb:d9:23:07:97:1b:4a:e8:8f:59:ab:e5:bd:e6:de: 75:52:c3:f1:1d:d6:7f:34:54:6a:8f:28:3c:28:ea:02:92:e8: af:d3:50:f7:b4:75:94:ef:cb:cd:d4:e8:5b:82:60:46:53:0f: 80:a3:c1:70:1d:dc:02:99:c6:76:08:4d:19:12:f5:48:f7:27: 7f:5c:10:8d:4e:05:37:0d:47:16:f1:28:b6:0c:54:1f:a8:74: 55:2e:69:05:e0:38:3f:70:3c:c7:72:ae:38:b4:bb:47:bc:ac: d6:43:c7:6a:93:67:fd:92:77:64:f0:a1:ce:66:b0:1b:8b:19: f9:5e:06:13:98:b5:f6:4b:e8:40:7c:91:33:af:8b:cb:b1:d6: d1:0c:29:8d:67:30:27:96:56:4e:c9:96:8c:68:4c:5b:ef:8b: bb:df:60:4e:24:1c:f2:00:96:91:c7:6b:9d:4c:f1:f6:7c:9d: d7:ac:fb:e6:70:0d:9f:ed:3d:b3:24:31:57:19:48:34:ba:50: 7d:fa:c4:73:66:0d:1e:e5:42:34:e9:23:c2:e6:36:c7:01:90: e4:fb:f2:c8:a3:8a:79:8b:ad:96:bb:af:fa:4e:1a:69:85:b2: 27:45:22:0a:cc:40:ea:8a:34:a8:d1:f4:fb:16:7e:96:aa:de: 20:33:69:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mdsRJ7KsM3CowZ/GrijTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI1MTAwMTIyWhcNMjYwMTI2MTAwMTIyWjAzMTEwLwYDVQQD EyhmOGMxMjhlN2E2ZjRiMDAzOThhNTUyOTk3NGIwNGNiNjA2NDU4NjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5uV+gebG1viV6uPgratkazpIixp 3pq72n+YLA8PrDirS054nos9fqftCgQpHk3xSPSLyXg5aEUZiMiwlKAGRWY39B9S ZYp0a4myLtUlOxEESOgZfFi6UPsRoq+1eVsbgniMAKF+/+JvnfOAK/li+yl4NrpP qUHnIIpyGbmfEE1wX6WxkxGOPNUYnEax0k+Jy3Fr90KAH1EMMsgYbvnXpZw6HNRq er+1Fpp9U+6wjHTBjg3HTTCdPHFlph48BkxKVumMvd0hShnq2P48hwqqqfBeOdIu pLqXUNPUe6IA+PTwXJGyAJGn657Si7Wiq2rgOOWiy2PGjKS1TJJfjX8LmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjBKOem9LADmKVSmXSwTLYGRYYsMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoDRAy9kj B5cbSuiPWavlvebedVLD8R3WfzRUao8oPCjqApLor9NQ97R1lO/LzdToW4JgRlMP gKPBcB3cApnGdghNGRL1SPcnf1wQjU4FNw1HFvEotgxUH6h0VS5pBeA4P3A8x3Ku OLS7R7ys1kPHapNn/ZJ3ZPChzmawG4sZ+V4GE5i19kvoQHyRM6+Ly7HW0QwpjWcw J5ZWTsmWjGhMW++Lu99gTiQc8gCWkcdrnUzx9nyd16z75nANn+09syQxVxlINLpQ ffrEc2YNHuVCNOkjwuY2xwGQ5PvyyKOKeYutlruv+k4aaYWyJ0UiCsxA6oo0qNH0 +xZ+lqreIDNpAg== -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:22 2026 by rpki-client