This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: C561nZamS5YD3Fu8ASSvZED14yBsGBTkTqTqWUVym0w= Subject key identifier: 44:22:AC:FC:5E:E1:EB:04:65:B5:39:96:0F:37:8A:57:D5:67:2F:16 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BE337F7E3B96672690C0D96517FA8C4B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 102C Signing time: Thu 22 Jan 2026 01:00:54 +0000 Manifest this update: Thu 22 Jan 2026 01:00:54 +0000 Manifest next update: Fri 23 Jan 2026 01:00:54 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: yp9aG6aIXQ0zaH8p4uZD7yvWShU3MfUsXY6nZh6XlF0=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e3:37:f7:e3:b9:66:72:69:0c:0d:96:51:7f:a8:c4:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 22 01:00:54 2026 GMT Not After : Jan 23 01:00:54 2026 GMT Subject: CN=4422acfc5ee1eb0465b539960f378a57d5672f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e5:96:e2:15:32:d9:6a:91:54:68:ff:2e:75: 59:f0:17:e3:0e:01:db:dd:92:3d:7a:2e:03:dd:0e: 0a:5f:4b:89:dd:cb:ba:f1:17:41:82:8d:7a:88:c3: 1c:b2:22:2c:df:7d:93:cd:49:51:67:e0:f6:4f:d2: 91:2c:da:fd:59:9d:2c:9a:2d:49:3b:85:be:9e:8e: 29:11:3e:6c:48:4e:4a:75:7b:0e:df:a4:28:52:0b: f3:a1:f5:34:d1:15:36:a6:2b:eb:a7:9d:00:a1:da: 24:78:a3:ce:05:25:e0:cd:17:86:16:9e:75:bf:31: 21:04:bf:cf:e7:ac:61:f5:5a:42:20:3b:b9:32:83: aa:1a:93:d8:94:b1:d6:5d:01:cd:1e:9a:e3:9a:99: e3:43:90:5b:7e:1c:12:3c:61:2c:96:28:74:3e:17: 0b:6b:c2:99:f2:c9:5e:45:06:d8:19:f3:80:10:29: 3d:2e:7c:89:7f:1c:62:f3:aa:78:11:ac:49:5a:e0: 44:85:e7:8c:ee:5d:a1:a7:38:cc:35:cf:73:8d:d8: 80:ec:41:d7:60:85:66:e7:34:c4:fc:80:51:fa:b8: cd:17:8e:dc:ab:90:e6:0f:a8:1a:6d:9c:c7:76:24: e5:94:90:7c:3f:ec:36:b3:07:99:1c:6f:12:f6:e5: a3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:22:AC:FC:5E:E1:EB:04:65:B5:39:96:0F:37:8A:57:D5:67:2F:16 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:57:1d:a0:a5:b6:57:5e:60:c4:91:f9:d3:17:a9:8a:29:c5: 74:0f:6c:7f:6c:f4:0f:3e:1a:56:eb:80:0f:5f:55:db:fd:36: 52:64:fc:3f:b4:29:ae:24:9e:42:84:59:46:31:60:e4:53:9d: 50:c0:e6:b0:59:68:2e:81:e2:bf:87:b6:c4:99:b3:62:09:f6: c5:3a:dc:4d:9d:8f:4e:35:c3:13:f7:d8:42:7d:58:d6:a5:86: c0:4b:55:1c:a2:75:20:e7:dd:3a:52:f7:c4:0a:8f:c3:89:d8: 6b:8d:c6:90:15:fa:75:67:89:90:de:af:59:99:41:b6:d3:d4: 98:cb:60:6b:58:49:d5:76:63:f8:a1:22:2b:5f:a4:f5:35:50: 96:2c:05:29:e5:55:60:8e:f0:d5:d3:d2:13:86:32:6d:cd:1b: 0b:92:f2:46:7c:32:65:43:8c:f2:f2:42:b8:c0:27:68:bd:99: e5:61:b2:04:19:a5:71:61:b8:6f:46:9c:ad:a4:45:90:74:fe: 09:50:26:a5:74:88:de:93:ed:77:5f:78:92:50:37:60:f6:4b: 14:81:50:22:64:da:e8:4c:3b:72:ea:de:6d:e1:f3:ee:bb:95: 4c:2b:77:2e:a4:12:85:66:75:df:b3:22:16:62:80:82:29:3b: 62:2d:83:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvjN/fjuWZyaQwNllF/qMS0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTIyMDEwMDU0WhcNMjYwMTIzMDEwMDU0WjAzMTEwLwYDVQQD Eyg0NDIyYWNmYzVlZTFlYjA0NjViNTM5OTYwZjM3OGE1N2Q1NjcyZjE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuWW4hUy2WqRVGj/LnVZ8BfjDgHb 3ZI9ei4D3Q4KX0uJ3cu68RdBgo16iMMcsiIs332TzUlRZ+D2T9KRLNr9WZ0smi1J O4W+no4pET5sSE5KdXsO36QoUgvzofU00RU2pivrp50AodokeKPOBSXgzReGFp51 vzEhBL/P56xh9VpCIDu5MoOqGpPYlLHWXQHNHprjmpnjQ5BbfhwSPGEslih0PhcL a8KZ8sleRQbYGfOAECk9LnyJfxxi86p4EaxJWuBEheeM7l2hpzjMNc9zjdiA7EHX YIVm5zTE/IBR+rjNF47cq5DmD6gabZzHdiTllJB8P+w2sweZHG8S9uWjSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQirPxe4esEZbU5lg83ilfVZy8WMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH1cdoKW2 V15gxJH50xepiinFdA9sf2z0Dz4aVuuAD19V2/02UmT8P7QpriSeQoRZRjFg5FOd UMDmsFloLoHiv4e2xJmzYgn2xTrcTZ2PTjXDE/fYQn1Y1qWGwEtVHKJ1IOfdOlL3 xAqPw4nYa43GkBX6dWeJkN6vWZlBttPUmMtga1hJ1XZj+KEiK1+k9TVQliwFKeVV YI7w1dPSE4Yybc0bC5LyRnwyZUOM8vJCuMAnaL2Z5WGyBBmlcWG4b0acraRFkHT+ CVAmpXSI3pPtd194klA3YPZLFIFQImTa6Ew7curebeHz7ruVTCt3LqQShWZ137Mi FmKAgik7Yi2Dew== -----END CERTIFICATE-----Generated at Thu Jan 22 08:51:32 2026 by rpki-client