This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 0SxB7Yj16Ot4R/lg7Mdr2dxeUiNwOStPZXIVHSBii9k= Subject key identifier: 8E:82:7F:D7:6D:6A:76:C2:CD:CE:30:92:1C:ED:B3:92:09:94:EB:B0 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019A99A1570A38BDB140E7E36C9A0F10CD66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F7A Signing time: Wed 19 Nov 2025 01:01:18 +0000 Manifest this update: Wed 19 Nov 2025 01:01:18 +0000 Manifest next update: Thu 20 Nov 2025 01:01:18 +0000 Files and hashes: 1: 0qafQTKpUINoCVOYOkW5UnOWR94.roa (hash: MusUL5944aEPud+AesWo0c3hbkne3BfD5w+aqIADrZU=) 2: 3BwQGvtGG9EzTodyzZ_T_NlKH8c.roa (hash: 3YVq+Q3Pxf3bX0RyqLEPepY9xeWnJNOauq8KUa99lAY=) 3: 3jf0qN8pQHNEeZXSK9GB9T1D4_E.roa (hash: DRAm1n/nD8B8BQj+jf77wLhiQpGtxWx72r8uwhAFjaU=) 4: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 5: 89lMNrhD2F5x0Ke_v2bBXPEQYgU.roa (hash: K5oebEL4UYGbpI6omznf50HWdMyeoL9B3ezd2prsxV4=) 6: E_3-qae-50qWA7R56c8VnNml0ZU.roa (hash: nkgMixGbN46lHgT97kcU8QjXRmEi7iabVPw78zf1uq4=) 7: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 8: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: Xa/rSEY4rwexIQHU+neSzvuHB7o8QxRmNLRG3gOfo54=) 9: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 10: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 11: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 12: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 13: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 14: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Nov 2025 01:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:99:a1:57:0a:38:bd:b1:40:e7:e3:6c:9a:0f:10:cd:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 19 01:01:18 2025 GMT Not After : Nov 20 01:01:18 2025 GMT Subject: CN=8e827fd76d6a76c2cdce30921cedb3920994ebb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:cc:a7:e5:63:7e:50:bb:c9:a9:56:64:9f: b1:cd:3f:09:47:90:79:99:23:41:18:e3:34:0b:dc: 09:96:a2:55:55:20:d5:b5:15:21:60:f6:e3:92:5f: 25:57:59:76:8e:2d:7c:48:a9:70:3d:0e:30:79:81: 58:3b:4b:80:0a:c5:f8:99:ce:a4:ab:e6:c3:b3:c2: 2a:22:af:ad:8d:33:11:2a:1a:1e:7e:86:5b:59:47: a7:9f:dd:92:64:03:36:16:ea:f3:b2:3c:0d:b0:7a: d2:10:2e:97:18:2f:34:39:17:f4:94:cb:26:ef:69: af:1b:89:64:c7:ac:02:90:a9:4e:d2:f0:6d:53:b2: bb:8a:e0:78:25:ae:f3:44:d8:ef:41:c1:a9:b9:f8: 36:4c:30:30:00:f9:68:98:80:3c:70:24:4d:e8:ca: e1:17:29:b8:f0:56:a2:67:8c:c2:3c:87:e5:fb:2f: 02:8c:0e:9b:fd:d7:28:c7:c4:43:2d:75:5f:a1:22: bf:96:02:0b:ea:09:a1:f8:0b:35:b2:6c:60:3e:3a: f6:54:cb:c0:62:21:d5:dc:39:e9:08:1a:3a:46:40: 84:4c:de:77:dc:61:0b:f8:45:54:68:75:e9:b8:55: 7b:63:2a:ea:ec:4a:8e:0e:35:45:f2:e6:a5:dc:bb: 9d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:82:7F:D7:6D:6A:76:C2:CD:CE:30:92:1C:ED:B3:92:09:94:EB:B0 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b4:8a:93:d0:f9:90:ad:89:66:d4:b8:e8:07:6c:95:43:55: e0:9d:fa:4e:4f:71:22:5e:cb:d2:1a:25:30:e0:0c:b5:1f:05: 69:53:ad:0c:5f:21:88:8b:85:58:33:e2:1f:cc:7e:38:97:b6: 8c:73:ec:05:5c:e1:d9:95:b2:73:72:ca:25:e6:97:b5:2c:94: 80:9d:95:94:24:24:64:ce:a2:60:b3:98:b0:c5:cf:53:c8:e2: c7:ab:a3:96:2b:a1:71:6f:2d:66:34:48:44:dc:00:da:b1:71: f8:39:26:c1:7f:8e:e1:f1:3d:0e:54:e1:b2:aa:47:e9:80:54: d3:7f:6c:67:f1:61:75:bb:30:4b:49:b4:13:cc:d8:5b:92:0b: 0a:09:2e:2a:4a:54:58:4b:5e:2f:d2:54:e0:7d:83:0d:c0:27: 50:f1:fc:07:f6:61:88:eb:58:19:5e:45:9a:44:dc:7e:78:58: d1:db:ad:61:ee:bd:a5:2f:b7:f3:29:93:fd:81:1f:95:32:7a: b6:d3:1c:35:e0:71:d7:f1:8e:65:53:c9:9d:15:eb:16:a7:64: 98:e3:5d:2f:db:9d:cf:dc:d7:3d:fe:25:52:a7:46:92:31:7a: e3:f5:e5:27:d6:09:a0:0d:9c:3e:f4:9f:2b:35:7b:d4:ba:1b: 8e:91:31:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqZoVcKOL2xQOfjbJoPEM1mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTE5MDEwMTE4WhcNMjUxMTIwMDEwMTE4WjAzMTEwLwYDVQQD Eyg4ZTgyN2ZkNzZkNmE3NmMyY2RjZTMwOTIxY2VkYjM5MjA5OTRlYmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/DMp+VjflC7yalWZJ+xzT8JR5B5 mSNBGOM0C9wJlqJVVSDVtRUhYPbjkl8lV1l2ji18SKlwPQ4weYFYO0uACsX4mc6k q+bDs8IqIq+tjTMRKhoefoZbWUenn92SZAM2FurzsjwNsHrSEC6XGC80ORf0lMsm 72mvG4lkx6wCkKlO0vBtU7K7iuB4Ja7zRNjvQcGpufg2TDAwAPlomIA8cCRN6Mrh Fym48FaiZ4zCPIfl+y8CjA6b/dcox8RDLXVfoSK/lgIL6gmh+As1smxgPjr2VMvA YiHV3DnpCBo6RkCETN533GEL+EVUaHXpuFV7Yyrq7EqODjVF8ual3Lud3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI6Cf9dtanbCzc4wkhzts5IJlOuwMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7SKk9D5 kK2JZtS46AdslUNV4J36Tk9xIl7L0holMOAMtR8FaVOtDF8hiIuFWDPiH8x+OJe2 jHPsBVzh2ZWyc3LKJeaXtSyUgJ2VlCQkZM6iYLOYsMXPU8jix6ujliuhcW8tZjRI RNwA2rFx+DkmwX+O4fE9DlThsqpH6YBU039sZ/FhdbswS0m0E8zYW5ILCgkuKkpU WEteL9JU4H2DDcAnUPH8B/ZhiOtYGV5FmkTcfnhY0dutYe69pS+38ymT/YEflTJ6 ttMcNeBx1/GOZVPJnRXrFqdkmONdL9udz9zXPf4lUqdGkjF64/XlJ9YJoA2cPvSf KzV71LobjpExuw== -----END CERTIFICATE-----Generated at Wed Nov 19 09:56:02 2025 by rpki-client