This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: LMZxTRuWDwziBIS6HBGoLbZI9rHxN7nub0Z/A+9yggg= Subject key identifier: 70:5D:51:BE:7F:13:7A:45:09:E0:E8:57:91:36:64:53:91:F9:6D:ED Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019AE33A88ACB7A528FFF5290C6F5265FF0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FA5 Signing time: Wed 03 Dec 2025 08:00:55 +0000 Manifest this update: Wed 03 Dec 2025 08:00:55 +0000 Manifest next update: Thu 04 Dec 2025 08:00:55 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa (hash: xk0/xdnScysXdBoKt0IBKKmaEmn7cglicebHN1EZ2bo=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 55rCDPXwgG7v1xGPzvCFlZot9Ot3LI/E5iQrV8hQJRU=) 7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 10: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 11: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 12: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 04 Dec 2025 08:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e3:3a:88:ac:b7:a5:28:ff:f5:29:0c:6f:52:65:ff:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 3 08:00:55 2025 GMT Not After : Dec 4 08:00:55 2025 GMT Subject: CN=705d51be7f137a4509e0e8579136645391f96ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9b:a3:82:6d:27:b4:a0:58:96:55:d7:04:f7: 80:98:ab:77:16:da:b3:c2:28:04:c5:9b:98:56:bc: f7:66:c0:83:ba:d5:ac:98:d9:22:13:f3:a2:84:8d: 0b:ee:27:17:2f:df:cb:7a:e6:ac:56:40:23:d7:27: 1e:93:63:0c:aa:1b:52:72:13:31:17:5c:ef:06:b8: 39:11:39:f3:7d:d5:bb:a6:12:10:89:2b:e9:43:aa: ba:2a:d4:e8:ca:45:85:2d:48:a7:6b:00:b9:d0:af: 9b:be:9d:21:08:83:f1:96:53:76:96:8c:4b:53:42: 43:60:17:83:5b:a7:1c:1d:48:68:4a:48:ea:ee:87: 5d:4e:6a:96:e1:e4:d6:1d:ac:79:17:28:3d:2e:15: 45:6a:52:5a:c8:01:6d:59:14:4f:00:b1:23:63:62: 51:d5:86:81:ad:88:e7:67:a1:6e:ab:7e:07:d7:ea: 70:08:42:0b:b6:95:32:34:09:9f:cb:2a:8e:f7:8e: ac:a8:ef:cd:83:d5:86:34:92:18:bc:97:36:5f:78: b3:de:d2:8d:03:3e:1e:4c:17:36:6f:dc:cf:96:84: 49:3b:cd:89:b7:70:46:84:b3:35:ca:67:93:a9:22: a9:bd:70:ae:f9:20:e3:3b:b3:ed:ce:1b:f2:3e:9b: da:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5D:51:BE:7F:13:7A:45:09:E0:E8:57:91:36:64:53:91:F9:6D:ED X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:df:7d:e9:98:47:42:a7:98:1a:38:11:5e:5a:b6:04:2e:57: ef:39:9b:60:4f:50:30:85:84:0e:58:91:5e:ee:92:55:87:a6: aa:2f:d1:5d:4a:fa:0d:1c:f4:06:6f:d2:8c:16:f8:0a:cf:58: 71:36:25:5b:eb:b8:3a:4c:d1:a9:f7:06:68:57:d9:53:ab:ed: 30:c4:d3:19:55:13:29:78:eb:10:cf:40:a8:fe:28:79:03:71: 79:1e:3e:c0:f2:08:67:b4:7e:e3:f1:f7:4a:c9:66:2a:3d:7c: 86:e1:8a:07:2e:43:2a:c4:3d:f5:10:cc:f2:87:20:17:b8:d7: 73:b6:a9:61:ab:33:24:d6:2b:1e:b2:33:e3:6f:26:92:fd:e1: 37:3c:aa:c8:0f:d8:4b:45:08:98:2c:fb:27:21:9e:d9:f1:77: 9b:f9:e7:55:d4:a2:73:13:21:af:37:76:0a:f0:c6:3c:00:14: 8f:79:fc:e4:67:73:f7:ae:c9:e5:62:a9:3a:be:6c:9b:09:7c: 3f:c0:5d:bb:1c:03:88:2c:29:f3:80:b4:6b:ca:ed:40:cd:2a: d0:68:ae:d4:00:4b:ea:66:03:a9:25:98:87:95:d8:35:c9:a6: a2:0d:01:ce:52:3a:c0:68:6b:20:51:5a:8c:c0:01:27:68:96: f2:11:85:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrjOoist6Uo//UpDG9SZf8OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjAzMDgwMDU1WhcNMjUxMjA0MDgwMDU1WjAzMTEwLwYDVQQD Eyg3MDVkNTFiZTdmMTM3YTQ1MDllMGU4NTc5MTM2NjQ1MzkxZjk2ZGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Zujgm0ntKBYllXXBPeAmKt3Ftqz wigExZuYVrz3ZsCDutWsmNkiE/OihI0L7icXL9/LeuasVkAj1ycek2MMqhtSchMx F1zvBrg5ETnzfdW7phIQiSvpQ6q6KtToykWFLUinawC50K+bvp0hCIPxllN2loxL U0JDYBeDW6ccHUhoSkjq7oddTmqW4eTWHax5Fyg9LhVFalJayAFtWRRPALEjY2JR 1YaBrYjnZ6Fuq34H1+pwCEILtpUyNAmfyyqO946sqO/Ng9WGNJIYvJc2X3iz3tKN Az4eTBc2b9zPloRJO82Jt3BGhLM1ymeTqSKpvXCu+SDjO7PtzhvyPpvaNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHBdUb5/E3pFCeDoV5E2ZFOR+W3tMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvN996ZhH QqeYGjgRXlq2BC5X7zmbYE9QMIWEDliRXu6SVYemqi/RXUr6DRz0Bm/SjBb4Cs9Y cTYlW+u4OkzRqfcGaFfZU6vtMMTTGVUTKXjrEM9AqP4oeQNxeR4+wPIIZ7R+4/H3 SslmKj18huGKBy5DKsQ99RDM8ocgF7jXc7apYaszJNYrHrIz428mkv3hNzyqyA/Y S0UImCz7JyGe2fF3m/nnVdSicxMhrzd2CvDGPAAUj3n85Gdz967J5WKpOr5smwl8 P8BduxwDiCwp84C0a8rtQM0q0Giu1ABL6mYDqSWYh5XYNcmmog0BzlI6wGhrIFFa jMABJ2iW8hGFcw== -----END CERTIFICATE-----Generated at Wed Dec 3 12:59:26 2025 by rpki-client