This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: aqK8DscYiasTtwOvtiij9wTuY3OubO/hlKwY9t8ctPA= Subject key identifier: 54:A8:E4:85:25:FE:83:2E:4A:71:0D:AA:4D:9C:02:AD:FF:1A:0E:A0 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BF68850A0D24FBB8A5B5BB3F0558BC69B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1036 Signing time: Sun 25 Jan 2026 19:01:27 +0000 Manifest this update: Sun 25 Jan 2026 19:01:27 +0000 Manifest next update: Mon 26 Jan 2026 19:01:27 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: fQJdO6d+k60a68XvtCoqWVnSd6jGSc+sRP57bU8dZrA=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:50:a0:d2:4f:bb:8a:5b:5b:b3:f0:55:8b:c6:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 25 19:01:27 2026 GMT Not After : Jan 26 19:01:27 2026 GMT Subject: CN=54a8e48525fe832e4a710daa4d9c02adff1a0ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c9:f3:4b:58:f7:5a:b3:6f:0f:21:8d:e3:e7: a5:8d:c1:d5:21:55:0c:25:4f:59:1f:e5:48:da:4b: e9:93:79:d1:32:5f:e0:45:3d:5b:1a:a6:50:00:ca: 93:ed:11:34:da:e8:22:12:e4:76:4b:65:0a:28:5d: fd:a6:6f:f5:0e:9d:5f:1f:2e:3b:af:0c:76:3b:54: c4:81:95:ca:c1:7e:7d:00:f8:ce:87:22:c1:7d:81: 3d:44:03:68:75:93:32:7e:fc:3a:7f:24:52:15:5f: 4c:2e:58:40:4a:82:7f:09:ff:61:17:24:b1:f5:58: 3c:1d:0b:59:2d:79:ab:57:cf:88:c8:98:42:2f:0a: 33:27:06:df:46:08:7d:bc:a3:92:cd:24:b2:d1:07: 07:e1:ad:cf:5c:30:b5:62:34:54:d4:fa:4a:b9:f5: ef:2d:ba:be:68:74:22:30:e6:91:e1:cb:10:19:4c: 6c:30:a9:54:e5:41:55:df:b4:26:09:c0:5b:12:14: 4c:0f:b0:3d:3f:fb:d4:ac:6f:4d:d5:07:8f:42:05: 75:d2:1b:0b:e0:32:d3:bb:13:53:94:18:41:93:ea: a0:88:a5:a0:83:79:c3:46:f0:f2:02:88:4b:94:01: bb:cd:6a:0b:b6:fb:d1:b7:4f:4f:d8:a5:a3:47:6a: b6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A8:E4:85:25:FE:83:2E:4A:71:0D:AA:4D:9C:02:AD:FF:1A:0E:A0 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:97:dd:2c:f5:7e:a7:b0:c2:a3:2a:81:95:25:a3:f7:41:64: a2:58:d8:4c:8c:78:c2:46:c4:42:35:bf:3b:1c:34:38:20:50: fd:a4:45:09:6d:b7:90:c5:c4:9c:84:1a:f7:20:33:e0:d2:53: f9:3d:38:72:8d:f4:b2:e9:95:49:b7:f1:e7:c1:fb:cc:64:90: e8:de:5d:f9:9d:e8:17:55:c5:cc:23:3b:a9:dd:33:b1:31:55: 59:ec:58:9c:4a:e0:85:8b:71:35:62:ba:c2:6b:a7:1e:38:0c: d0:51:26:47:db:b0:90:1b:03:8b:fc:57:27:82:61:89:f8:83: 3d:f0:b0:f1:40:ee:e2:db:25:e9:f4:b4:4d:b9:48:9a:c5:cd: 57:d5:82:66:f2:97:b9:dc:aa:8c:87:96:ac:de:37:d2:bf:d2: b9:5f:b8:54:e6:1d:f6:a8:81:32:db:20:ed:63:1a:bf:1e:1e: 0d:3b:7c:78:c5:5c:f5:01:b8:05:0d:61:09:ab:93:38:8f:e8: bd:de:b3:d4:55:29:e5:d5:1e:0a:f0:c3:85:79:f7:3a:cf:89: 55:e7:8d:eb:74:c0:e8:3e:ca:6f:77:a1:bf:66:df:22:33:b9: ec:6d:0a:47:23:6c:a8:a8:42:4f:36:8d:b0:77:27:2c:cb:8c: 4d:e1:de:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iFCg0k+7iltbs/BVi8abMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI1MTkwMTI3WhcNMjYwMTI2MTkwMTI3WjAzMTEwLwYDVQQD Eyg1NGE4ZTQ4NTI1ZmU4MzJlNGE3MTBkYWE0ZDljMDJhZGZmMWEwZWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMnzS1j3WrNvDyGN4+eljcHVIVUM JU9ZH+VI2kvpk3nRMl/gRT1bGqZQAMqT7RE02ugiEuR2S2UKKF39pm/1Dp1fHy47 rwx2O1TEgZXKwX59APjOhyLBfYE9RANodZMyfvw6fyRSFV9MLlhASoJ/Cf9hFySx 9Vg8HQtZLXmrV8+IyJhCLwozJwbfRgh9vKOSzSSy0QcH4a3PXDC1YjRU1PpKufXv Lbq+aHQiMOaR4csQGUxsMKlU5UFV37QmCcBbEhRMD7A9P/vUrG9N1QePQgV10hsL 4DLTuxNTlBhBk+qgiKWgg3nDRvDyAohLlAG7zWoLtvvRt09P2KWjR2q2aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFSo5IUl/oMuSnENqk2cAq3/Gg6gMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJfdLPV+ p7DCoyqBlSWj90FkoljYTIx4wkbEQjW/Oxw0OCBQ/aRFCW23kMXEnIQa9yAz4NJT +T04co30sumVSbfx58H7zGSQ6N5d+Z3oF1XFzCM7qd0zsTFVWexYnErghYtxNWK6 wmunHjgM0FEmR9uwkBsDi/xXJ4JhifiDPfCw8UDu4tsl6fS0TblImsXNV9WCZvKX udyqjIeWrN430r/SuV+4VOYd9qiBMtsg7WMavx4eDTt8eMVc9QG4BQ1hCauTOI/o vd6z1FUp5dUeCvDDhXn3Os+JVeeN63TA6D7Kb3ehv2bfIjO57G0KRyNsqKhCTzaN sHcnLMuMTeHeIA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:21:35 2026 by rpki-client