This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 6QeV73FTLtHq+/T/hlArxopmYS+AxVTkx9h9yalzrnI= Subject key identifier: E5:4F:80:C9:22:9F:A4:12:88:9E:D9:15:C2:99:01:BE:2C:AD:84:E4 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B8C1A7C00DB579A18A674CD503066EC71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FFE Signing time: Mon 05 Jan 2026 03:01:44 +0000 Manifest this update: Mon 05 Jan 2026 03:01:44 +0000 Manifest next update: Tue 06 Jan 2026 03:01:44 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: d5ypZyhazDvgzvscw3YLyIFE/zq9jmZ5ue5wmqdhwUU=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa (hash: oyxsPNLoW2aLavfIhXORGRPykTN2rEtCwJdPmfe1EN0=) 9: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 10: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 11: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 12: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 13: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8c:1a:7c:00:db:57:9a:18:a6:74:cd:50:30:66:ec:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 5 03:01:44 2026 GMT Not After : Jan 6 03:01:44 2026 GMT Subject: CN=e54f80c9229fa412889ed915c29901be2cad84e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1a:bd:dd:d1:19:d2:6d:75:f1:bd:91:82:49: 39:17:7a:a1:e8:12:42:8e:fe:0d:2b:17:a0:cc:47: b4:04:99:31:6d:9e:cb:39:a5:7b:5c:1d:f4:00:33: 97:d5:72:aa:9e:44:51:de:b6:f2:a8:e6:8d:16:f1: 2d:06:81:4c:ec:a7:d4:12:08:47:aa:c5:6f:13:c0: 5d:54:77:b9:c9:11:bd:ff:f9:97:32:5b:8b:42:44: b4:e0:df:e3:70:87:73:75:4d:02:6c:37:89:94:c9: f0:59:01:86:ec:ad:68:a1:5a:1e:64:0f:24:f1:33: 0c:53:23:df:c6:79:51:c2:be:1b:8c:42:ed:45:11: 70:28:7f:60:66:67:83:c1:28:2b:06:76:9a:c4:0c: 12:e1:71:2a:5b:dc:6d:f8:db:4f:84:9e:9f:82:0b: 74:03:e5:88:91:5c:06:d1:de:a7:a8:ec:30:14:82: 10:ad:db:a7:93:5c:70:e4:96:62:52:75:53:b2:50: cd:60:68:8e:6a:c3:7f:b0:8d:fa:df:35:b1:87:35: 21:3a:49:de:bf:11:5b:5d:0a:7c:41:eb:d0:f8:b7: 8f:68:bd:c6:4f:f7:04:2b:84:16:61:2d:f8:c2:4b: 6e:05:59:0f:78:4b:ee:32:d2:a4:08:c2:da:8c:c0: 27:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:4F:80:C9:22:9F:A4:12:88:9E:D9:15:C2:99:01:BE:2C:AD:84:E4 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:00:9f:8e:29:c5:25:3c:cf:44:2b:49:f1:e3:e1:9d:fd:b1: 41:c0:02:0f:b3:cd:ac:7b:0d:51:f8:29:86:2c:cd:3f:a4:3a: 98:b3:21:c3:1d:85:90:1f:de:e7:00:8e:62:bc:7f:2a:c4:93: 61:e5:1e:44:78:f3:b4:29:da:e8:2a:09:8b:b8:1e:b1:48:2f: ea:b5:02:d8:61:71:13:ec:c3:8a:50:45:63:30:0f:d1:b7:da: c3:89:d7:bc:e4:3d:42:77:e2:5f:03:87:21:0c:82:a4:21:51: f5:41:1b:0e:42:1f:66:79:49:7d:33:eb:9b:34:ce:a1:20:b3: 59:57:ee:d4:8d:c8:32:4c:f8:9b:ba:92:74:c8:38:94:51:e2: 64:b7:4d:47:4c:ee:f4:1f:48:a8:01:1b:ea:06:3f:14:cd:45: c3:84:57:2a:9c:b7:d7:c2:91:d6:14:c2:b6:61:78:3e:6e:3f: d8:43:6f:09:60:49:c8:e1:e8:ab:e6:03:97:dc:f1:a6:50:81: 18:c9:17:1b:b6:e3:1a:58:9b:0d:af:01:d4:8b:65:23:a5:02: 9a:7e:87:3e:6e:16:c1:26:21:aa:08:dd:4b:46:b1:a5:75:f9: 95:75:77:a3:cb:d9:21:83:6b:57:26:8a:3d:ae:72:16:4c:4f: 31:f8:13:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuMGnwA21eaGKZ0zVAwZuxxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTA1MDMwMTQ0WhcNMjYwMTA2MDMwMTQ0WjAzMTEwLwYDVQQD EyhlNTRmODBjOTIyOWZhNDEyODg5ZWQ5MTVjMjk5MDFiZTJjYWQ4NGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxq93dEZ0m118b2Rgkk5F3qh6BJC jv4NKxegzEe0BJkxbZ7LOaV7XB30ADOX1XKqnkRR3rbyqOaNFvEtBoFM7KfUEghH qsVvE8BdVHe5yRG9//mXMluLQkS04N/jcIdzdU0CbDeJlMnwWQGG7K1ooVoeZA8k 8TMMUyPfxnlRwr4bjELtRRFwKH9gZmeDwSgrBnaaxAwS4XEqW9xt+NtPhJ6fggt0 A+WIkVwG0d6nqOwwFIIQrdunk1xw5JZiUnVTslDNYGiOasN/sI363zWxhzUhOkne vxFbXQp8QevQ+LePaL3GT/cEK4QWYS34wktuBVkPeEvuMtKkCMLajMAnpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOVPgMkin6QSiJ7ZFcKZAb4srYTkMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASgCfjinF JTzPRCtJ8ePhnf2xQcACD7PNrHsNUfgphizNP6Q6mLMhwx2FkB/e5wCOYrx/KsST YeUeRHjztCna6CoJi7gesUgv6rUC2GFxE+zDilBFYzAP0bfaw4nXvOQ9QnfiXwOH IQyCpCFR9UEbDkIfZnlJfTPrmzTOoSCzWVfu1I3IMkz4m7qSdMg4lFHiZLdNR0zu 9B9IqAEb6gY/FM1Fw4RXKpy318KR1hTCtmF4Pm4/2ENvCWBJyOHoq+YDl9zxplCB GMkXG7bjGlibDa8B1ItlI6UCmn6HPm4WwSYhqgjdS0axpXX5lXV3o8vZIYNrVyaK Pa5yFkxPMfgTGA== -----END CERTIFICATE-----Generated at Mon Jan 5 09:08:40 2026 by rpki-client