This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 1phh2q4rwK5jIV436q9wuUVPYlcsXak5tRHrLRScVpA= Subject key identifier: 29:68:41:79:5E:DE:16:31:5F:EC:77:28:41:BF:9E:99:96:13:D1:3B Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BF2AAF86C47C82C8CD74C34369A229A57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1034 Signing time: Sun 25 Jan 2026 01:00:49 +0000 Manifest this update: Sun 25 Jan 2026 01:00:49 +0000 Manifest next update: Mon 26 Jan 2026 01:00:49 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 8MDL80AQ/JQtiBIxnR3XazoNhMXIydLYUDRP8cgpg8U=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:aa:f8:6c:47:c8:2c:8c:d7:4c:34:36:9a:22:9a:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 25 01:00:49 2026 GMT Not After : Jan 26 01:00:49 2026 GMT Subject: CN=296841795ede16315fec772841bf9e999613d13b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:14:69:7f:77:2b:4e:1e:97:ea:69:72:44:0c: 25:94:69:77:7a:94:f5:87:37:04:50:7d:0b:48:09: 62:3a:43:a9:e9:f0:2b:4d:5a:82:9b:3a:2a:6e:a2: e7:7d:9d:e2:c3:36:81:60:4f:61:6e:5c:e9:34:8e: e7:8c:b0:25:bc:d2:81:55:82:ce:81:5e:e6:6c:00: 30:18:6f:aa:e2:1f:4c:29:9e:6e:1a:c7:07:4f:f2: 01:66:d8:89:9c:7e:8f:79:06:67:c6:89:71:9d:5b: bc:5a:5c:c5:a0:bb:fc:d3:00:88:22:95:27:6b:4e: 54:5e:85:38:0b:5e:45:c4:28:67:ca:ca:e4:aa:80: 04:eb:12:03:ba:68:46:be:2b:a6:a1:e2:a2:2c:6c: d7:44:23:c6:6c:ac:5d:a5:76:a6:1b:52:19:fa:76: 21:05:aa:df:1b:32:8d:89:cf:5a:fa:df:39:b8:77: 2a:25:c0:f2:e3:88:90:72:58:76:a6:89:2a:bb:fa: f3:0a:c9:42:1e:51:61:37:85:e8:6a:76:ae:28:4c: 7f:dd:ba:ac:36:a7:9e:31:f8:ad:2c:b2:65:0e:30: a6:d6:cd:fb:71:b5:e8:6e:4b:cd:56:65:45:28:84: ce:20:ab:52:92:cf:1c:65:92:fb:b1:98:a0:71:9d: 0c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:68:41:79:5E:DE:16:31:5F:EC:77:28:41:BF:9E:99:96:13:D1:3B X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:78:c0:91:74:ac:6b:43:4d:6f:1b:51:0e:67:1a:b6:5f:b1: 66:9f:08:93:be:af:0b:d9:5b:62:ca:55:7f:ca:60:78:4e:98: 89:38:41:36:9f:44:67:65:fb:aa:86:32:c9:d5:c3:06:d4:fd: f4:e7:77:3a:58:8a:5f:b0:49:d0:14:ec:1f:3c:fc:b4:c9:bf: 6b:8f:e7:4a:4e:ee:aa:f8:85:b6:4e:9b:b7:b7:88:69:ac:7b: 52:42:75:16:b3:38:f4:03:bb:85:ff:75:33:15:42:6b:b1:e5: fa:49:80:13:56:fb:5a:cf:ee:ca:bd:e1:b6:29:fc:5f:f3:0b: 49:2b:8b:aa:f6:0d:07:aa:c3:e6:e5:f6:52:2f:f6:b4:86:1f: c7:d3:b3:c5:87:b9:91:01:98:4b:95:f3:6f:2c:53:a6:d8:60: fb:f1:7b:e3:1b:95:68:3d:a7:e8:17:16:45:b3:b7:d2:d5:24: 30:8d:f4:6e:60:63:0c:42:46:4f:a1:5b:6b:90:ce:fa:5b:bf: fd:06:4b:59:87:1f:16:41:a8:c3:92:b9:7d:45:c8:06:7c:a5: 10:59:c0:aa:84:72:83:b4:bf:4e:c1:a8:bf:f3:fa:71:e5:dc: e6:83:4e:7f:06:ff:04:47:16:55:c1:2e:0c:21:2d:8b:b4:d8: 94:46:5f:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyqvhsR8gsjNdMNDaaIppXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI1MDEwMDQ5WhcNMjYwMTI2MDEwMDQ5WjAzMTEwLwYDVQQD EygyOTY4NDE3OTVlZGUxNjMxNWZlYzc3Mjg0MWJmOWU5OTk2MTNkMTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBRpf3crTh6X6mlyRAwllGl3epT1 hzcEUH0LSAliOkOp6fArTVqCmzoqbqLnfZ3iwzaBYE9hblzpNI7njLAlvNKBVYLO gV7mbAAwGG+q4h9MKZ5uGscHT/IBZtiJnH6PeQZnxolxnVu8WlzFoLv80wCIIpUn a05UXoU4C15FxChnysrkqoAE6xIDumhGviumoeKiLGzXRCPGbKxdpXamG1IZ+nYh BarfGzKNic9a+t85uHcqJcDy44iQclh2pokqu/rzCslCHlFhN4XoanauKEx/3bqs NqeeMfitLLJlDjCm1s37cbXobkvNVmVFKITOIKtSks8cZZL7sZigcZ0MHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCloQXle3hYxX+x3KEG/npmWE9E7MB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlXjAkXSs a0NNbxtRDmcatl+xZp8Ik76vC9lbYspVf8pgeE6YiThBNp9EZ2X7qoYyydXDBtT9 9Od3OliKX7BJ0BTsHzz8tMm/a4/nSk7uqviFtk6bt7eIaax7UkJ1FrM49AO7hf91 MxVCa7Hl+kmAE1b7Ws/uyr3htin8X/MLSSuLqvYNB6rD5uX2Ui/2tIYfx9OzxYe5 kQGYS5XzbyxTpthg+/F74xuVaD2n6BcWRbO30tUkMI30bmBjDEJGT6Fba5DO+lu/ /QZLWYcfFkGow5K5fUXIBnylEFnAqoRyg7S/TsGov/P6ceXc5oNOfwb/BEcWVcEu DCEti7TYlEZfbA== -----END CERTIFICATE-----Generated at Sun Jan 25 03:59:56 2026 by rpki-client