This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: xQQVpSRRyZI+YCGIELgk7MWwoKl4KfgndNzAmS3UE7s= Subject key identifier: 3A:59:CD:AF:0B:BD:26:3A:96:F0:7E:7D:B8:23:A5:40:BD:34:BC:85 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B31C40928AFB2D0DFB2CD74BA74206573 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FCF Signing time: Thu 18 Dec 2025 14:01:29 +0000 Manifest this update: Thu 18 Dec 2025 14:01:29 +0000 Manifest next update: Fri 19 Dec 2025 14:01:29 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: vJZyAVK86xrQB42vyfx9KB9o/mpMHpr/6EeQNmUBcIo=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:c4:09:28:af:b2:d0:df:b2:cd:74:ba:74:20:65:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 18 14:01:29 2025 GMT Not After : Dec 19 14:01:29 2025 GMT Subject: CN=3a59cdaf0bbd263a96f07e7db823a540bd34bc85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d4:c5:85:9a:0b:13:0a:03:dd:fa:51:b2:e3: 3a:be:78:9c:59:d4:fb:a5:99:d5:99:a1:3c:40:86: 85:04:c3:10:c2:cc:e7:b7:b7:92:8a:a2:b1:0d:6b: 89:36:0a:0f:e2:e4:01:dd:2a:ea:c0:7d:51:3e:5a: f9:ea:8c:e1:89:b8:b1:a8:f1:61:4e:1f:e6:63:d4: 42:62:99:e3:2c:aa:d7:c4:68:d3:b5:9c:72:60:ec: 3f:2d:74:a4:3f:e0:66:93:f8:94:79:07:57:b4:bf: 85:9e:22:6c:72:75:a0:86:cd:a8:bc:19:96:b9:cd: 89:d1:58:f0:af:c1:ab:0b:8d:14:33:3e:13:85:5e: 91:5c:12:d7:5d:5e:11:64:4a:56:36:53:1a:2b:0a: 30:e5:57:58:35:7f:09:5c:ec:60:22:9b:63:ba:78: 8c:f4:81:58:f8:00:bb:aa:fb:60:2f:4b:bf:58:68: f9:fc:34:f2:27:a2:27:71:9a:41:b7:f1:13:43:17: 14:9a:9c:93:1e:da:62:e6:1f:a4:c8:96:85:04:c2: 31:05:74:71:61:03:28:0b:c6:1f:91:9c:ca:ea:df: a0:16:d2:9b:5c:9f:f8:2d:a4:da:95:8b:cd:cc:f8: af:6a:b8:7d:27:99:a2:4b:6d:dc:31:69:07:95:f0: 67:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:59:CD:AF:0B:BD:26:3A:96:F0:7E:7D:B8:23:A5:40:BD:34:BC:85 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:56:e5:04:3d:4d:6d:ab:23:9e:09:99:54:67:b3:a5:62:15: 7c:33:3d:a7:ec:8a:da:74:ad:c6:5d:90:6d:30:a5:ab:67:89: 0e:24:c6:6a:28:94:42:79:82:29:78:e4:d3:15:34:f2:4b:1d: 51:7a:e5:58:c5:57:fb:fd:94:e8:a0:0a:0c:7f:68:40:ae:38: 00:c2:75:e9:e7:4e:b8:6d:10:bc:b9:8c:9c:c9:d1:68:cb:38: 24:5b:0f:4d:66:1b:ed:01:07:6d:b1:0c:07:99:77:41:a6:20: ba:ef:fb:87:33:41:0e:73:8e:cb:77:9a:27:bd:9b:69:ea:64: 38:fa:01:7f:1a:09:df:75:0c:7a:54:17:36:fe:56:8f:86:ac: 1a:f1:a3:76:90:a0:f3:0f:82:88:04:c8:ea:c4:54:2b:4f:f6: b3:a3:27:4a:db:56:12:ba:f9:84:6d:26:5a:29:02:7a:41:e0: a4:57:91:68:67:eb:d0:f5:89:4b:7e:85:79:5c:33:4d:3b:66: 6b:86:12:67:bb:4e:75:21:7a:16:53:cd:3a:71:a9:e6:77:3d: 03:ce:af:8d:c0:fe:ea:11:8c:d1:d4:fd:de:9c:41:ca:4c:a9: 00:b8:77:1e:ce:dc:fc:ab:1b:d4:14:f0:ce:72:08:e2:37:47: 1b:7c:51:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxxAkor7LQ37LNdLp0IGVzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjE4MTQwMTI5WhcNMjUxMjE5MTQwMTI5WjAzMTEwLwYDVQQD EygzYTU5Y2RhZjBiYmQyNjNhOTZmMDdlN2RiODIzYTU0MGJkMzRiYzg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dTFhZoLEwoD3fpRsuM6vnicWdT7 pZnVmaE8QIaFBMMQwsznt7eSiqKxDWuJNgoP4uQB3SrqwH1RPlr56ozhibixqPFh Th/mY9RCYpnjLKrXxGjTtZxyYOw/LXSkP+Bmk/iUeQdXtL+FniJscnWghs2ovBmW uc2J0Vjwr8GrC40UMz4ThV6RXBLXXV4RZEpWNlMaKwow5VdYNX8JXOxgIptjuniM 9IFY+AC7qvtgL0u/WGj5/DTyJ6IncZpBt/ETQxcUmpyTHtpi5h+kyJaFBMIxBXRx YQMoC8YfkZzK6t+gFtKbXJ/4LaTalYvNzPivarh9J5miS23cMWkHlfBn4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDpZza8LvSY6lvB+fbgjpUC9NLyFMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArVblBD1N basjngmZVGezpWIVfDM9p+yK2nStxl2QbTClq2eJDiTGaiiUQnmCKXjk0xU08ksd UXrlWMVX+/2U6KAKDH9oQK44AMJ16edOuG0QvLmMnMnRaMs4JFsPTWYb7QEHbbEM B5l3QaYguu/7hzNBDnOOy3eaJ72baepkOPoBfxoJ33UMelQXNv5Wj4asGvGjdpCg 8w+CiATI6sRUK0/2s6MnSttWErr5hG0mWikCekHgpFeRaGfr0PWJS36FeVwzTTtm a4YSZ7tOdSF6FlPNOnGp5nc9A86vjcD+6hGM0dT93pxBykypALh3Hs7c/Ksb1BTw znII4jdHG3xRew== -----END CERTIFICATE-----Generated at Thu Dec 18 22:15:23 2025 by rpki-client