This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: FWC18bdTgtnxSIIs5gB+Ec5zEoRN49dY2q+W+XDt0dw= Subject key identifier: 68:B3:43:FF:C1:7A:4F:AB:0D:1C:F8:5A:AE:08:70:89:B8:60:48:31 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BC82EDC4AEC3B9E593A2D148E93EBB059 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 101E Signing time: Fri 16 Jan 2026 19:01:12 +0000 Manifest this update: Fri 16 Jan 2026 19:01:12 +0000 Manifest next update: Sat 17 Jan 2026 19:01:12 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: m7KyinitDYIbYH7bzGM1/ieMJ07EOkOV0U3/KEYd6gY=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 16:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c8:2e:dc:4a:ec:3b:9e:59:3a:2d:14:8e:93:eb:b0:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 16 19:01:12 2026 GMT Not After : Jan 17 19:01:12 2026 GMT Subject: CN=68b343ffc17a4fab0d1cf85aae087089b8604831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:7d:36:88:38:50:be:98:05:e7:0b:8e:e0:c3: 56:6a:cd:2f:73:41:7f:e0:6e:e0:d8:cf:2e:41:48: d9:fb:a8:cf:eb:2c:39:40:de:ec:1b:1a:12:64:3f: 7c:47:1c:af:a6:33:10:47:b2:41:00:7c:d9:87:d9: 07:10:83:b2:d2:b6:ec:80:88:26:13:f2:6f:ec:31: 25:3a:34:e1:75:e8:20:3b:02:fc:83:77:43:40:ff: a1:b8:c6:42:d2:46:89:44:37:91:dd:d2:98:b0:4b: a1:b4:57:ce:51:65:b0:9a:61:d0:18:2c:b2:c3:12: cc:e3:3d:9a:ff:d7:cd:67:94:c0:60:4e:76:e1:66: 56:76:49:5d:f1:85:b1:dd:55:91:48:4e:f2:6b:f1: 57:71:fd:96:94:3a:df:20:68:27:7a:c1:ed:41:eb: 6e:11:70:0f:c0:df:3b:fb:73:40:ac:a2:83:df:3e: 6c:aa:f6:5c:c6:e0:e0:27:59:9b:05:c9:ec:a8:4a: 30:57:8c:cd:0f:80:8a:10:c5:4e:03:02:98:15:e7: b1:df:a9:a9:62:6e:f0:6c:59:c7:48:f8:b3:74:ea: a4:f1:1e:67:c4:21:02:63:31:8a:38:b8:4f:0f:5a: 8f:8c:64:db:77:af:d2:42:88:6a:31:d5:a1:44:ce: 15:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B3:43:FF:C1:7A:4F:AB:0D:1C:F8:5A:AE:08:70:89:B8:60:48:31 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:ef:b8:a5:89:b3:d1:79:b7:32:e9:2e:51:3f:19:78:e6:c8: 5d:f4:24:7c:fe:e0:45:08:af:5b:77:f5:bb:78:6b:3f:0a:5e: de:ca:94:6f:a4:ae:7d:e6:ed:a5:3a:59:05:f1:15:0d:24:3e: 66:bb:f1:97:b6:90:09:6b:bd:1a:3f:56:b0:25:31:fb:8c:e0: 09:57:fa:53:a6:ad:9e:09:32:79:96:a3:5e:3e:3f:83:f4:75: 01:23:48:01:ff:66:c8:4f:d3:98:99:2a:85:41:ba:5b:7a:45: 31:24:a8:86:34:c7:74:24:a0:95:4f:05:5b:b5:ae:3b:b2:07: 57:28:e9:7e:ed:d9:7d:72:d8:b1:95:35:13:33:51:32:f2:f3: be:69:ba:76:39:66:4c:34:f4:ea:95:99:15:51:34:7f:63:64: 71:97:7a:9e:5f:70:f3:62:8a:74:c6:3f:6b:42:b7:34:37:0e: 5a:a8:93:8a:af:ff:8b:1e:c2:58:12:97:83:04:b1:f3:17:78: 78:ba:7b:fa:d0:8b:0a:e2:38:c5:e0:17:72:63:1a:33:67:58: 6d:d2:ac:e3:0d:bc:54:17:da:5f:45:47:3e:3f:05:49:5a:19: 2b:37:60:03:76:62:ae:d6:6c:2e:40:09:1a:b7:e4:2c:73:17: 7d:ac:6c:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvILtxK7DueWTotFI6T67BZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTE2MTkwMTEyWhcNMjYwMTE3MTkwMTEyWjAzMTEwLwYDVQQD Eyg2OGIzNDNmZmMxN2E0ZmFiMGQxY2Y4NWFhZTA4NzA4OWI4NjA0ODMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/H02iDhQvpgF5wuO4MNWas0vc0F/ 4G7g2M8uQUjZ+6jP6yw5QN7sGxoSZD98RxyvpjMQR7JBAHzZh9kHEIOy0rbsgIgm E/Jv7DElOjThdeggOwL8g3dDQP+huMZC0kaJRDeR3dKYsEuhtFfOUWWwmmHQGCyy wxLM4z2a/9fNZ5TAYE524WZWdkld8YWx3VWRSE7ya/FXcf2WlDrfIGgnesHtQetu EXAPwN87+3NArKKD3z5sqvZcxuDgJ1mbBcnsqEowV4zND4CKEMVOAwKYFeex36mp Ym7wbFnHSPizdOqk8R5nxCECYzGKOLhPD1qPjGTbd6/SQohqMdWhRM4VNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGizQ//Bek+rDRz4Wq4IcIm4YEgxMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFe+4pYmz 0Xm3MukuUT8ZeObIXfQkfP7gRQivW3f1u3hrPwpe3sqUb6SufebtpTpZBfEVDSQ+ Zrvxl7aQCWu9Gj9WsCUx+4zgCVf6U6atngkyeZajXj4/g/R1ASNIAf9myE/TmJkq hUG6W3pFMSSohjTHdCSglU8FW7WuO7IHVyjpfu3ZfXLYsZU1EzNRMvLzvmm6djlm TDT06pWZFVE0f2NkcZd6nl9w82KKdMY/a0K3NDcOWqiTiq//ix7CWBKXgwSx8xd4 eLp7+tCLCuI4xeAXcmMaM2dYbdKs4w28VBfaX0VHPj8FSVoZKzdgA3ZirtZsLkAJ GrfkLHMXfaxsUw== -----END CERTIFICATE-----Generated at Sat Jan 17 02:18:35 2026 by rpki-client