This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: fa8++Bht8PT3LfL5hoFcAWyDI5fMUMl0Fn8+muAMWPc= Subject key identifier: A4:08:83:5B:33:C4:06:F7:D0:0B:FF:6F:FA:9F:29:38:3D:BC:87:59 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BCDFA10154A9E87D76785C2E06CC7DEBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1021 Signing time: Sat 17 Jan 2026 22:01:15 +0000 Manifest this update: Sat 17 Jan 2026 22:01:15 +0000 Manifest next update: Sun 18 Jan 2026 22:01:15 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: oYiTlt7nb1LQjBfUet3NT6Hxxiomu7I+3vGidG6sObM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cd:fa:10:15:4a:9e:87:d7:67:85:c2:e0:6c:c7:de:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 17 22:01:15 2026 GMT Not After : Jan 18 22:01:15 2026 GMT Subject: CN=a408835b33c406f7d00bff6ffa9f29383dbc8759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c1:2d:91:f7:c1:3c:08:f3:c2:c9:f1:88:e9: f2:6b:9d:cc:d7:ce:67:84:8b:47:fa:09:fd:b8:dd: fc:ab:41:1e:de:d7:fe:6e:fb:0d:e9:05:8a:8c:43: 0c:76:29:3f:bc:dc:3c:08:bb:92:25:cf:09:87:af: c8:02:e1:b1:6e:9b:5a:ee:07:39:e2:5f:be:a6:5d: ff:31:6c:80:4d:06:92:2a:8f:46:d5:f1:58:5b:56: ce:1d:f1:05:b7:cd:29:a4:de:3e:02:48:b8:8e:49: c9:0c:d5:43:f4:90:24:35:1e:2c:27:a9:4f:ec:47: 8d:ed:cb:29:bd:c2:2d:a1:2a:c8:c7:d9:af:6e:c3: 1e:cf:69:24:cb:a9:03:07:f9:4d:44:16:7c:b7:1a: c2:1f:36:00:6b:f3:25:23:5e:ec:02:59:2c:72:5d: ac:b6:cf:ff:59:d1:2d:07:42:05:e2:9c:3c:2d:f7: de:6c:e8:df:23:fb:ec:a6:21:5e:aa:f4:74:30:20: 9e:86:0f:b4:a0:ee:ec:e2:1e:3b:1e:b5:d5:44:19: 2f:6b:7b:6b:62:d0:db:e8:ad:12:ac:e0:44:57:33: 02:0a:f7:f2:ef:4b:22:32:ae:be:6a:e2:99:89:58: 0f:e1:1c:7e:16:0f:f5:bf:4f:dd:40:a2:e1:f5:58: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:08:83:5B:33:C4:06:F7:D0:0B:FF:6F:FA:9F:29:38:3D:BC:87:59 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:57:03:e0:91:36:d0:6f:7d:e5:d5:ac:e1:ff:6d:c8:08:70: 14:fb:90:e0:5f:a9:9e:c4:b1:8d:38:97:f5:c9:a5:91:e7:e4: cb:fc:a8:fc:ee:95:3d:62:3d:03:77:4f:b7:37:e8:e8:ab:b6: 7a:c8:80:6c:99:1d:7a:7f:e2:bb:4e:f2:e2:d0:19:3a:6e:f4: 23:dd:38:f7:d7:a6:6d:31:e4:02:0f:f3:b4:b1:f6:7c:f9:fa: 9c:ea:88:9c:14:79:f3:16:f2:e4:eb:53:0b:46:da:31:7c:d1: 84:8d:5e:47:d9:4a:66:37:92:b8:98:61:f9:9c:f6:43:96:34: f0:b2:6b:a0:af:89:1a:5c:f8:12:7d:c5:74:c1:16:a1:16:13: 11:9d:ea:d8:5e:3c:93:15:23:ef:ca:96:cc:5f:bd:2d:91:61: b0:8a:20:77:09:09:82:17:ee:c4:7b:b9:2f:39:2a:ca:69:cb: 56:8c:35:94:20:40:32:c3:2b:42:44:1f:c0:6c:8d:a6:51:7d: 80:0e:1e:29:6e:db:d8:5a:f9:e1:81:4e:cc:41:71:38:99:5f: 78:b2:1e:b5:d3:53:b7:2a:c4:b5:dc:e8:8b:e9:e2:fd:bf:a4: 2a:5d:36:2f:ae:4b:24:4b:5d:7b:c0:05:ba:0e:af:d2:d9:ac: a0:82:d9:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvN+hAVSp6H12eFwuBsx96/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTE3MjIwMTE1WhcNMjYwMTE4MjIwMTE1WjAzMTEwLwYDVQQD EyhhNDA4ODM1YjMzYzQwNmY3ZDAwYmZmNmZmYTlmMjkzODNkYmM4NzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8EtkffBPAjzwsnxiOnya53M185n hItH+gn9uN38q0Ee3tf+bvsN6QWKjEMMdik/vNw8CLuSJc8Jh6/IAuGxbpta7gc5 4l++pl3/MWyATQaSKo9G1fFYW1bOHfEFt80ppN4+Aki4jknJDNVD9JAkNR4sJ6lP 7EeN7cspvcItoSrIx9mvbsMez2kky6kDB/lNRBZ8txrCHzYAa/MlI17sAlkscl2s ts//WdEtB0IF4pw8LffebOjfI/vspiFeqvR0MCCehg+0oO7s4h47HrXVRBkva3tr YtDb6K0SrOBEVzMCCvfy70siMq6+auKZiVgP4Rx+Fg/1v0/dQKLh9Vg6vQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQIg1szxAb30Av/b/qfKTg9vIdZMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdVcD4JE2 0G995dWs4f9tyAhwFPuQ4F+pnsSxjTiX9cmlkefky/yo/O6VPWI9A3dPtzfo6Ku2 esiAbJkden/iu07y4tAZOm70I90499embTHkAg/ztLH2fPn6nOqInBR58xby5OtT C0baMXzRhI1eR9lKZjeSuJhh+Zz2Q5Y08LJroK+JGlz4En3FdMEWoRYTEZ3q2F48 kxUj78qWzF+9LZFhsIogdwkJghfuxHu5LzkqymnLVow1lCBAMsMrQkQfwGyNplF9 gA4eKW7b2Fr54YFOzEFxOJlfeLIetdNTtyrEtdzoi+ni/b+kKl02L65LJEtde8AF ug6v0tmsoILZwg== -----END CERTIFICATE-----Generated at Sun Jan 18 04:11:22 2026 by rpki-client