This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: ZcYYcsVTqoS0KCbis1vuzc3kPyzcO7AkVqro8sfFfJk= Subject key identifier: 18:CC:52:5A:B9:23:60:62:0F:6F:DF:31:EE:56:7A:28:00:E0:AF:FB Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B1E74187E512BB2336B3890BC97E5B155 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FC5 Signing time: Sun 14 Dec 2025 20:01:23 +0000 Manifest this update: Sun 14 Dec 2025 20:01:23 +0000 Manifest next update: Mon 15 Dec 2025 20:01:23 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: DnbKZFVDNT5d+WrH9qu+Va7FrHTE50SiUfInozLo2FY=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:74:18:7e:51:2b:b2:33:6b:38:90:bc:97:e5:b1:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 14 20:01:23 2025 GMT Not After : Dec 15 20:01:23 2025 GMT Subject: CN=18cc525ab92360620f6fdf31ee567a2800e0affb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:db:37:d1:1a:cd:f3:14:61:9b:08:44:aa:9c: e4:f4:b4:57:c5:a8:bc:6d:74:81:ac:b3:b8:b8:cb: 47:7b:69:cf:37:02:df:08:8a:45:6b:d6:2f:58:ae: 60:ea:bf:03:15:61:65:3e:c4:a4:6c:90:9b:72:9a: 0a:5e:94:1f:66:15:44:b8:18:c2:a7:dc:9a:2b:65: bf:32:33:cb:27:20:5b:af:4e:f2:43:98:bb:99:c9: dc:ae:55:57:93:67:47:a3:30:96:72:74:e2:06:76: f7:f7:c3:86:47:e2:4a:a7:e4:13:68:40:41:66:0f: 64:40:00:1a:2e:db:c6:31:08:f4:69:c3:d8:0f:e4: 69:d0:1d:39:30:ee:f8:87:c3:c4:3f:89:05:6e:fd: 09:13:04:33:20:b0:90:d0:57:cb:a8:58:74:a2:a4: ff:b6:0c:cc:f1:ed:42:24:02:ce:b0:16:db:9d:3b: f2:8b:c5:5f:1b:a9:d5:f7:81:31:e9:d8:ee:c2:e4: 6e:e9:0a:39:eb:27:af:8c:37:c1:a7:0c:cc:19:31: 5d:a5:58:7b:8f:eb:35:4a:70:98:b7:08:37:45:e0: 3c:66:70:74:22:34:61:be:8a:7c:a5:7e:c4:33:e9: 7d:39:6c:f6:a4:71:04:59:35:68:e3:7a:0f:72:ba: ab:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CC:52:5A:B9:23:60:62:0F:6F:DF:31:EE:56:7A:28:00:E0:AF:FB X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2d:94:ff:86:13:5a:64:8e:f3:58:4e:94:e0:f2:60:57:00: a7:cb:1e:58:53:e9:78:5a:66:86:bc:a4:3f:1a:c0:66:92:52: d2:a5:83:96:b8:4e:51:74:08:4f:6f:29:2b:06:f5:01:1d:f9: d7:bb:8e:43:2c:3c:88:76:08:ef:18:ef:9f:b7:b8:76:ca:bb: 4b:b2:c4:a4:e2:75:f3:8f:a9:f3:6a:5d:fd:75:63:c8:88:6c: 0e:5f:d2:c1:95:3f:f6:2e:68:66:3a:57:c6:81:fd:df:59:76: 0c:bd:ee:56:3c:0b:e1:77:bc:5f:72:d7:a1:b2:a1:e4:01:fb: ab:e1:84:d4:cd:41:88:12:92:df:57:71:d6:9d:11:fe:5a:93: ea:50:6a:13:6d:bd:f5:14:9f:54:46:53:50:dd:34:5b:24:4f: f0:2d:69:73:9b:30:4f:e9:60:b5:f0:b4:2b:8e:d1:ad:56:28: f7:6b:64:57:f4:58:ae:b8:e4:61:11:66:95:16:e2:ee:49:bb: 73:9f:93:83:b8:09:d5:00:af:6b:55:93:4d:94:ec:57:e2:56: bd:7f:7f:c1:43:31:62:60:70:01:28:37:95:47:d7:71:b2:27: b9:6c:ed:0e:29:90:33:5e:4c:6d:c2:5f:ee:a5:12:11:19:c6: 16:d1:68:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsedBh+USuyM2s4kLyX5bFVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjE0MjAwMTIzWhcNMjUxMjE1MjAwMTIzWjAzMTEwLwYDVQQD EygxOGNjNTI1YWI5MjM2MDYyMGY2ZmRmMzFlZTU2N2EyODAwZTBhZmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ds30RrN8xRhmwhEqpzk9LRXxai8 bXSBrLO4uMtHe2nPNwLfCIpFa9YvWK5g6r8DFWFlPsSkbJCbcpoKXpQfZhVEuBjC p9yaK2W/MjPLJyBbr07yQ5i7mcncrlVXk2dHozCWcnTiBnb398OGR+JKp+QTaEBB Zg9kQAAaLtvGMQj0acPYD+Rp0B05MO74h8PEP4kFbv0JEwQzILCQ0FfLqFh0oqT/ tgzM8e1CJALOsBbbnTvyi8VfG6nV94Ex6djuwuRu6Qo56yevjDfBpwzMGTFdpVh7 j+s1SnCYtwg3ReA8ZnB0IjRhvop8pX7EM+l9OWz2pHEEWTVo43oPcrqrnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBjMUlq5I2BiD2/fMe5WeigA4K/7MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPi2U/4YT WmSO81hOlODyYFcAp8seWFPpeFpmhrykPxrAZpJS0qWDlrhOUXQIT28pKwb1AR35 17uOQyw8iHYI7xjvn7e4dsq7S7LEpOJ184+p82pd/XVjyIhsDl/SwZU/9i5oZjpX xoH931l2DL3uVjwL4Xe8X3LXobKh5AH7q+GE1M1BiBKS31dx1p0R/lqT6lBqE229 9RSfVEZTUN00WyRP8C1pc5swT+lgtfC0K47RrVYo92tkV/RYrrjkYRFmlRbi7km7 c5+Tg7gJ1QCva1WTTZTsV+JWvX9/wUMxYmBwASg3lUfXcbInuWztDimQM15MbcJf 7qUSERnGFtFo6g== -----END CERTIFICATE-----Generated at Sun Dec 14 22:51:48 2025 by rpki-client