This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 1Cl1KBXseKRpfdycPZ0xpz0z/AX8FWL8vSg9Qcail04= Subject key identifier: 02:1C:19:6D:7C:E7:E2:C2:66:AD:63:21:BF:F3:42:F7:8D:6B:1D:EC Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BAD25F94BD76980602638EBD76D5BB5D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1010 Signing time: Sun 11 Jan 2026 13:01:45 +0000 Manifest this update: Sun 11 Jan 2026 13:01:45 +0000 Manifest next update: Mon 12 Jan 2026 13:01:45 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: EonSwV+DnEOdK/MKpN70J839sDbQqwC/e22qOmK1LAU=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 13:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:25:f9:4b:d7:69:80:60:26:38:eb:d7:6d:5b:b5:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 11 13:01:45 2026 GMT Not After : Jan 12 13:01:45 2026 GMT Subject: CN=021c196d7ce7e2c266ad6321bff342f78d6b1dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:a9:c1:af:4b:32:7a:71:d9:a8:a4:4d:3f: 49:ca:a5:e0:f3:12:a5:84:03:7f:7d:8a:88:7d:78: e9:e3:a8:e9:e8:ec:f4:96:ba:23:38:73:f2:60:df: 1f:d6:cb:e3:59:e2:e5:1b:22:c3:fb:16:5c:6d:66: c3:76:f5:71:4f:37:33:d2:ac:d9:69:6c:52:f1:87: d7:6c:57:66:ec:4b:4d:2d:d2:a5:b8:0f:f2:8e:77: 23:65:74:d1:05:9c:ab:91:cf:54:e6:ef:97:9b:18: 4e:99:c3:28:19:07:53:32:3d:33:71:5a:91:4f:f6: 83:c6:8e:fc:2c:35:34:1c:83:a6:aa:e2:fe:6b:03: 68:7f:a5:9c:81:a6:f8:5a:ab:b4:35:0a:b4:d6:a3: b0:e7:8a:f9:e5:0f:c6:cf:3e:27:25:6e:8c:9f:04: 1d:b4:96:89:cf:b5:7f:51:c9:fc:3e:bb:b7:42:e3: 9e:3e:fe:b1:13:3f:38:b8:5c:00:8d:4b:be:93:35: 82:00:17:0a:84:08:12:39:0a:0b:df:b2:9a:f1:fa: 66:65:9c:e5:b2:2f:e8:22:5e:91:3c:11:94:5e:92: 16:9c:39:61:92:63:58:80:87:2b:fe:0d:6c:b2:37: e4:ed:66:cf:51:5d:2e:d0:3c:a6:a3:7d:6b:5e:78: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1C:19:6D:7C:E7:E2:C2:66:AD:63:21:BF:F3:42:F7:8D:6B:1D:EC X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:31:09:26:15:5a:0a:be:86:5a:a3:38:4e:09:24:02:5d:94: 77:26:76:cc:bd:0f:7a:33:77:81:b1:8e:a7:81:5e:17:54:08: a8:b8:9e:45:d9:ad:cf:30:25:e0:58:69:bc:a4:32:b4:01:60: b0:76:c4:cb:44:4b:c8:91:ce:f4:da:64:9f:85:8d:90:71:e5: 9f:f6:e9:8d:00:41:2c:ec:3c:c1:5f:be:63:71:41:5b:57:ea: eb:1b:7d:78:79:67:c3:f4:ee:cb:aa:b3:23:83:36:0f:a4:a0: 0d:d3:e6:af:89:0b:49:27:6b:4e:05:5e:da:c9:85:89:3f:d6: d3:f3:38:6d:c4:19:17:b1:c9:54:18:0a:6e:d2:fe:52:b8:a8: 43:b1:07:24:ae:a0:8c:58:a3:04:e7:fd:44:de:b7:f3:d5:4d: ba:41:62:4a:9c:89:c0:08:61:c2:7c:f0:b5:1b:1f:f4:fe:e6: 00:2e:5b:ad:19:f1:a4:b7:35:44:32:b1:e1:8b:16:f0:cd:e3: bd:6d:88:71:ac:32:2d:3a:26:0d:64:7a:a0:d1:49:dd:46:cb: 80:27:b4:ca:50:0b:c0:08:90:a5:88:7a:d3:cc:66:59:df:48: 73:f6:92:83:99:17:44:50:f8:8f:be:80:32:a3:ce:a9:14:9c: 54:7e:c2:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutJflL12mAYCY469dtW7XVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTExMTMwMTQ1WhcNMjYwMTEyMTMwMTQ1WjAzMTEwLwYDVQQD EygwMjFjMTk2ZDdjZTdlMmMyNjZhZDYzMjFiZmYzNDJmNzhkNmIxZGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmmpwa9LMnpx2aikTT9JyqXg8xKl hAN/fYqIfXjp46jp6Oz0lrojOHPyYN8f1svjWeLlGyLD+xZcbWbDdvVxTzcz0qzZ aWxS8YfXbFdm7EtNLdKluA/yjncjZXTRBZyrkc9U5u+XmxhOmcMoGQdTMj0zcVqR T/aDxo78LDU0HIOmquL+awNof6Wcgab4Wqu0NQq01qOw54r55Q/Gzz4nJW6MnwQd tJaJz7V/Ucn8Pru3QuOePv6xEz84uFwAjUu+kzWCABcKhAgSOQoL37Ka8fpmZZzl si/oIl6RPBGUXpIWnDlhkmNYgIcr/g1ssjfk7WbPUV0u0Dymo31rXngbiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIcGW185+LCZq1jIb/zQveNax3sMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPDEJJhVa Cr6GWqM4TgkkAl2UdyZ2zL0PejN3gbGOp4FeF1QIqLieRdmtzzAl4FhpvKQytAFg sHbEy0RLyJHO9Npkn4WNkHHln/bpjQBBLOw8wV++Y3FBW1fq6xt9eHlnw/Tuy6qz I4M2D6SgDdPmr4kLSSdrTgVe2smFiT/W0/M4bcQZF7HJVBgKbtL+UrioQ7EHJK6g jFijBOf9RN6389VNukFiSpyJwAhhwnzwtRsf9P7mAC5brRnxpLc1RDKx4YsW8M3j vW2IcawyLTomDWR6oNFJ3UbLgCe0ylALwAiQpYh608xmWd9Ic/aSg5kXRFD4j76A MqPOqRScVH7Ckg== -----END CERTIFICATE-----Generated at Sun Jan 11 20:38:06 2026 by rpki-client