This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: Lmd+fgjat43/5PTuVEI6Dxio7EJceztb945024gOTAM= Subject key identifier: CE:B7:13:98:AC:1A:98:6F:C8:28:53:BF:E6:A5:DF:8F:59:5C:9A:99 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B075F61883B64FFA3F9D1111E4FD6ABA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FB9 Signing time: Wed 10 Dec 2025 08:27:29 +0000 Manifest this update: Wed 10 Dec 2025 08:27:29 +0000 Manifest next update: Thu 11 Dec 2025 08:27:29 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 5f9p8oiDak6VYrL7+f0gr3Lu1iXryQ8Y4NLyyNiy+Ns=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 08:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:5f:61:88:3b:64:ff:a3:f9:d1:11:1e:4f:d6:ab:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 10 08:27:29 2025 GMT Not After : Dec 11 08:27:29 2025 GMT Subject: CN=ceb71398ac1a986fc82853bfe6a5df8f595c9a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:44:4d:ac:1f:a7:40:a0:0d:c3:f5:9d:27: 6a:3a:a4:b9:46:a3:29:f6:a1:49:5d:4b:fa:85:a6: 47:4d:29:44:68:31:90:92:e0:5e:a9:e9:e4:a7:39: 05:9c:36:33:85:45:74:08:4b:d3:e9:c9:23:3a:c3: 98:5e:e9:00:07:09:36:7f:07:08:87:b2:25:db:e1: 29:c6:3e:59:96:fa:67:35:54:e4:92:f0:45:40:2a: 52:45:37:71:62:32:29:63:93:7d:ed:7c:4e:da:9b: be:37:20:7a:71:69:d3:66:b5:80:12:0e:6e:02:e8: e0:19:84:d8:04:a7:c5:40:cb:0c:24:a8:e1:fd:d7: 6d:98:5d:ff:ce:9b:b8:5a:a1:63:f0:f9:0b:c6:ed: 46:7a:fa:50:b6:ff:40:63:40:9e:ed:e6:fd:58:86: b2:97:40:fc:c6:e3:26:36:c4:05:0d:df:9a:0a:dd: d1:8f:5b:31:1c:28:c4:0d:b8:09:7a:07:25:b8:03: 9f:46:59:dc:b8:46:aa:3b:90:38:df:ae:6e:3b:2f: cf:5f:eb:76:99:87:f6:19:e5:af:31:be:78:5a:1d: 76:24:51:69:ff:32:b2:fa:1a:ec:0f:3c:65:eb:c3: 08:df:6e:7f:d0:c4:68:ff:c4:8d:90:c3:1a:62:13: bc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:B7:13:98:AC:1A:98:6F:C8:28:53:BF:E6:A5:DF:8F:59:5C:9A:99 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:bf:dc:c9:fa:74:fb:3d:53:20:db:08:b3:6b:d8:85:ff:ae: ab:fe:1e:a6:1b:25:22:ce:8e:7f:8a:ef:50:73:9d:8e:a8:84: 27:6b:de:fe:b7:12:49:ec:bf:59:54:b0:71:8b:95:b6:fd:0d: e9:0f:28:3c:3f:16:78:4e:69:27:d8:77:c9:c6:c9:af:0f:8c: 66:2e:d7:00:3b:9d:9f:f9:24:fa:39:5b:b1:e8:c8:ec:64:2a: 5e:85:73:7d:6e:71:32:de:41:8a:42:79:f9:21:c8:d1:f8:27: d6:4b:4e:5c:81:8e:f9:ef:c2:50:b7:be:43:3e:63:83:46:a8: 0f:59:98:a7:c2:b0:5c:75:0c:7b:1b:e0:e4:c6:0d:d2:ac:f9: 7e:7d:dc:98:32:98:81:9f:cc:59:5c:58:5c:f7:c3:66:f4:4b: cc:17:b6:6d:71:bd:71:83:2c:6c:d0:b9:29:b7:3d:48:1b:59: 8e:28:6b:8c:e0:3d:d5:ab:33:eb:7e:5d:fe:d3:d6:9a:e3:44: 44:c3:5c:4e:df:f8:b5:66:74:91:ac:af:14:63:b7:4f:1b:bc: 12:3d:84:7e:70:ca:e8:30:f4:30:51:90:3d:b9:cd:af:06:ea: 59:33:06:13:ea:8d:95:b8:61:f3:91:70:06:5b:6b:a5:c8:79: c7:69:19:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHX2GIO2T/o/nRER5P1quiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjEwMDgyNzI5WhcNMjUxMjExMDgyNzI5WjAzMTEwLwYDVQQD EyhjZWI3MTM5OGFjMWE5ODZmYzgyODUzYmZlNmE1ZGY4ZjU5NWM5YTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKZETawfp0CgDcP1nSdqOqS5RqMp 9qFJXUv6haZHTSlEaDGQkuBeqenkpzkFnDYzhUV0CEvT6ckjOsOYXukABwk2fwcI h7Il2+Epxj5ZlvpnNVTkkvBFQCpSRTdxYjIpY5N97XxO2pu+NyB6cWnTZrWAEg5u AujgGYTYBKfFQMsMJKjh/ddtmF3/zpu4WqFj8PkLxu1GevpQtv9AY0Ce7eb9WIay l0D8xuMmNsQFDd+aCt3Rj1sxHCjEDbgJegcluAOfRlncuEaqO5A4365uOy/PX+t2 mYf2GeWvMb54Wh12JFFp/zKy+hrsDzxl68MI325/0MRo/8SNkMMaYhO8kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM63E5isGphvyChTv+al349ZXJqZMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeb/cyfp0 +z1TINsIs2vYhf+uq/4ephslIs6Of4rvUHOdjqiEJ2ve/rcSSey/WVSwcYuVtv0N 6Q8oPD8WeE5pJ9h3ycbJrw+MZi7XADudn/kk+jlbsejI7GQqXoVzfW5xMt5BikJ5 +SHI0fgn1ktOXIGO+e/CULe+Qz5jg0aoD1mYp8KwXHUMexvg5MYN0qz5fn3cmDKY gZ/MWVxYXPfDZvRLzBe2bXG9cYMsbNC5Kbc9SBtZjihrjOA91asz635d/tPWmuNE RMNcTt/4tWZ0kayvFGO3Txu8Ej2EfnDK6DD0MFGQPbnNrwbqWTMGE+qNlbhh85Fw Bltrpch5x2kZfA== -----END CERTIFICATE-----Generated at Wed Dec 10 14:08:50 2025 by rpki-client