This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: DPuhvJkvjJDlcErGbRaEbNhNnRCD30TDfvyE01T32F0= Subject key identifier: B3:04:56:6B:82:BF:7D:FC:E5:AD:24:D7:B2:DE:6A:48:A3:13:4D:F2 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B717E7668F169194B225F387FDE6D6994 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FF0 Signing time: Tue 30 Dec 2025 23:01:11 +0000 Manifest this update: Tue 30 Dec 2025 23:01:11 +0000 Manifest next update: Wed 31 Dec 2025 23:01:11 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: W4VvJP2Jt/QznMmdn5ha2ra2xNt3Qg+shgzTfQeSaPU=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:7e:76:68:f1:69:19:4b:22:5f:38:7f:de:6d:69:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 30 23:01:11 2025 GMT Not After : Dec 31 23:01:11 2025 GMT Subject: CN=b304566b82bf7dfce5ad24d7b2de6a48a3134df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:14:93:16:b0:78:1a:f4:4d:28:1e:5d:f3:f0: a9:85:3b:f5:e7:1e:22:1a:8d:5e:c0:c2:c0:3d:b7: d0:eb:ec:d7:74:43:22:91:8c:58:bc:86:eb:46:9a: a0:84:64:68:c4:5e:ba:bf:13:ad:f4:be:cf:18:23: e5:a9:4b:92:65:16:c2:ae:aa:b3:70:d5:d3:9f:da: 34:04:7d:2c:75:1a:3b:2f:99:0c:19:f7:a4:6f:3c: 7a:d4:12:ff:8a:28:cd:bc:66:de:47:f9:48:b1:44: ac:24:4e:89:a5:86:d8:98:3f:30:10:bf:75:61:cd: b2:d3:fd:49:f1:30:48:db:cd:f4:b1:f8:71:6e:ae: b8:69:78:1f:87:3d:2b:4c:89:b3:44:a5:d6:02:56: dc:b0:c5:a6:f7:b6:2c:0e:93:a2:7f:ca:82:00:6b: 91:7d:c6:3b:9a:96:7a:f2:26:3f:a3:c9:f6:b6:a6: 5f:ab:90:ca:11:bb:0b:9b:22:0a:27:6f:95:44:1b: 1f:e5:be:8a:1a:3a:05:a5:0c:0e:f0:86:5c:ad:d1: 39:26:15:6c:0b:e3:8d:93:3c:db:e8:2e:4f:18:44: 03:96:1e:33:c8:1e:ac:62:bd:86:af:60:4e:62:c7: ac:73:5d:33:f5:05:6f:04:74:71:7d:23:5c:e0:a2: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:04:56:6B:82:BF:7D:FC:E5:AD:24:D7:B2:DE:6A:48:A3:13:4D:F2 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:37:a5:53:85:18:99:00:b3:3b:4d:8a:a2:46:e1:37:77:cd: ce:27:50:7d:98:d8:24:ed:49:77:05:9b:50:72:3d:84:c0:12: 12:0e:11:5e:6c:69:28:61:1f:7e:9b:98:c2:d0:1d:e7:d2:f5: 53:48:fe:88:35:12:7d:b9:63:ea:18:2b:65:bd:e2:b0:c0:f8: be:9e:d4:33:08:99:fe:41:2e:56:c6:92:09:99:34:04:b7:e9: 29:f3:a1:a5:ed:0d:dc:df:95:6d:e8:20:a5:44:ee:78:27:e0: 9b:ce:e4:6c:93:10:31:07:36:08:18:06:c1:12:c8:3e:21:a0: da:0e:f8:f1:19:77:4d:86:36:b7:44:cb:cb:98:4d:75:1d:28: f6:4c:cb:1a:ff:cd:63:31:65:b7:4b:b9:7a:bd:6e:8b:14:1a: cf:b6:c7:4e:da:dd:9a:23:d9:7e:6f:3b:d4:ba:21:52:44:44: 2e:69:07:a9:50:8d:a8:cc:21:1a:cd:fc:72:ab:cc:e1:03:09: d0:b8:53:40:65:da:37:76:23:51:ff:5c:f4:45:ba:e8:ae:a8: ad:05:5a:bb:02:57:f2:d6:00:c0:e7:e0:06:af:68:75:95:46: 73:12:17:14:4f:96:25:ad:4e:92:0b:ad:a3:35:f2:d8:75:69: b7:1d:c1:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxfnZo8WkZSyJfOH/ebWmUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjMwMjMwMTExWhcNMjUxMjMxMjMwMTExWjAzMTEwLwYDVQQD EyhiMzA0NTY2YjgyYmY3ZGZjZTVhZDI0ZDdiMmRlNmE0OGEzMTM0ZGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8xSTFrB4GvRNKB5d8/CphTv15x4i Go1ewMLAPbfQ6+zXdEMikYxYvIbrRpqghGRoxF66vxOt9L7PGCPlqUuSZRbCrqqz cNXTn9o0BH0sdRo7L5kMGfekbzx61BL/iijNvGbeR/lIsUSsJE6JpYbYmD8wEL91 Yc2y0/1J8TBI2830sfhxbq64aXgfhz0rTImzRKXWAlbcsMWm97YsDpOif8qCAGuR fcY7mpZ68iY/o8n2tqZfq5DKEbsLmyIKJ2+VRBsf5b6KGjoFpQwO8IZcrdE5JhVs C+ONkzzb6C5PGEQDlh4zyB6sYr2Gr2BOYsesc10z9QVvBHRxfSNc4KLpSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLMEVmuCv3385a0k17LeakijE03yMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDelU4UY mQCzO02KokbhN3fNzidQfZjYJO1JdwWbUHI9hMASEg4RXmxpKGEffpuYwtAd59L1 U0j+iDUSfblj6hgrZb3isMD4vp7UMwiZ/kEuVsaSCZk0BLfpKfOhpe0N3N+Vbegg pUTueCfgm87kbJMQMQc2CBgGwRLIPiGg2g748Rl3TYY2t0TLy5hNdR0o9kzLGv/N YzFlt0u5er1uixQaz7bHTtrdmiPZfm871LohUkRELmkHqVCNqMwhGs38cqvM4QMJ 0LhTQGXaN3YjUf9c9EW66K6orQVauwJX8tYAwOfgBq9odZVGcxIXFE+WJa1Okgut ozXy2HVptx3Bxw== -----END CERTIFICATE-----Generated at Wed Dec 31 03:26:35 2025 by rpki-client