This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: KkSCWasSAz6ryXgzFLCpjwxVzV8/Ouhnh6WAlXdRUyY= Subject key identifier: 34:03:A7:C4:3B:24:27:D6:31:FA:98:B6:4E:40:DE:AB:12:58:28:AB Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019C07E9D0CDC586BF9EB94B590AE70948CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 103F Signing time: Thu 29 Jan 2026 04:01:29 +0000 Manifest this update: Thu 29 Jan 2026 04:01:29 +0000 Manifest next update: Fri 30 Jan 2026 04:01:29 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: gGD7JNss/HfPz+kKPadie4GEPiA54CSKVlHDF9GhYag=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:07:e9:d0:cd:c5:86:bf:9e:b9:4b:59:0a:e7:09:48:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 29 04:01:29 2026 GMT Not After : Jan 30 04:01:29 2026 GMT Subject: CN=3403a7c43b2427d631fa98b64e40deab125828ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:75:67:b5:52:63:97:f0:a1:30:16:75:a1:e4: 8e:25:d7:38:89:3a:5a:09:91:3e:26:bd:1f:3e:ea: 87:24:cd:c3:0b:b2:53:64:cb:49:e2:51:4e:1f:7c: 8b:fc:41:b8:0e:0b:e4:6b:9a:63:de:6a:37:4e:f7: 28:f8:b4:54:95:06:7c:0c:2f:08:75:ed:d5:04:2e: 7b:70:c5:60:60:ea:10:27:8c:19:3d:21:12:74:0b: cf:48:a6:f1:bb:07:f7:ed:54:1a:7c:6e:76:ee:02: f2:28:39:f2:86:43:f1:92:f3:3a:05:bb:df:32:0b: ce:d1:60:41:b1:00:26:71:e4:4a:cb:e2:da:59:53: fe:5c:89:bd:f6:a4:0b:04:92:fe:38:7b:9d:e8:82: 4f:02:fc:2e:8b:3c:09:ac:7c:10:c9:14:ef:b2:24: d8:49:ff:ce:81:29:e5:3b:48:bd:2b:5a:41:21:b5: 6a:bc:b2:5f:d4:02:48:a4:ba:8e:50:c3:d3:db:02: 65:5d:d8:a9:0b:e1:ca:6b:c9:00:45:db:cf:fa:88: 36:0d:46:dc:fd:3a:72:b2:b8:bd:03:bb:9b:2f:41: d5:32:07:c6:91:18:8c:7a:0d:c9:fe:41:d3:9c:8e: 52:5d:6c:12:e4:aa:81:b9:e3:cd:18:07:9d:98:54: c4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:03:A7:C4:3B:24:27:D6:31:FA:98:B6:4E:40:DE:AB:12:58:28:AB X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:5e:38:be:03:ec:a0:cf:ca:aa:4d:93:fc:52:5d:7c:20:72: 2c:af:88:42:c8:7a:7b:dc:2b:12:9e:16:59:79:56:ab:09:e5: 9f:b0:a6:89:fa:32:02:f8:f4:b7:15:39:0e:ba:86:6e:0a:85: 92:d6:63:00:b5:79:21:85:7f:82:c4:4c:4b:6c:d1:38:76:e2: f4:b8:5b:48:4a:5f:ba:bf:88:43:54:df:71:b3:11:76:7e:09: 13:3a:dd:92:f5:1d:a0:70:48:10:5b:77:a4:64:9f:d1:b8:50: a4:15:b0:26:4e:33:b2:5a:aa:78:e8:c4:e8:c2:13:1f:72:47: 54:fe:9a:b7:44:00:6f:36:bd:21:38:e2:06:28:bc:9c:57:e2: ba:73:cb:81:c1:86:85:9f:51:c0:85:05:ee:a3:ed:39:e7:0b: a6:16:f5:cf:5b:48:fb:f8:0e:d9:d7:3d:77:22:31:e3:e3:29: 36:ed:00:40:8f:ea:83:49:66:39:1d:1c:40:fb:ee:d7:b3:f7: f0:0c:f5:da:a5:e4:55:1a:75:fa:0a:f1:19:50:3c:2f:79:79: 71:e8:90:a1:4c:2b:73:1d:5a:25:09:1c:22:db:98:ae:ba:7e: a6:a0:9d:26:42:09:0d:95:5f:a5:14:20:8b:c3:6a:da:0c:a7: 62:f4:77:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwH6dDNxYa/nrlLWQrnCUjLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI5MDQwMTI5WhcNMjYwMTMwMDQwMTI5WjAzMTEwLwYDVQQD EygzNDAzYTdjNDNiMjQyN2Q2MzFmYTk4YjY0ZTQwZGVhYjEyNTgyOGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHVntVJjl/ChMBZ1oeSOJdc4iTpa CZE+Jr0fPuqHJM3DC7JTZMtJ4lFOH3yL/EG4Dgvka5pj3mo3Tvco+LRUlQZ8DC8I de3VBC57cMVgYOoQJ4wZPSESdAvPSKbxuwf37VQafG527gLyKDnyhkPxkvM6Bbvf MgvO0WBBsQAmceRKy+LaWVP+XIm99qQLBJL+OHud6IJPAvwuizwJrHwQyRTvsiTY Sf/OgSnlO0i9K1pBIbVqvLJf1AJIpLqOUMPT2wJlXdipC+HKa8kARdvP+og2DUbc /Tpysri9A7ubL0HVMgfGkRiMeg3J/kHTnI5SXWwS5KqBuePNGAedmFTE6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQDp8Q7JCfWMfqYtk5A3qsSWCirMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEl44vgPs oM/Kqk2T/FJdfCByLK+IQsh6e9wrEp4WWXlWqwnln7CmifoyAvj0txU5DrqGbgqF ktZjALV5IYV/gsRMS2zROHbi9LhbSEpfur+IQ1TfcbMRdn4JEzrdkvUdoHBIEFt3 pGSf0bhQpBWwJk4zslqqeOjE6MITH3JHVP6at0QAbza9ITjiBii8nFfiunPLgcGG hZ9RwIUF7qPtOecLphb1z1tI+/gO2dc9dyIx4+MpNu0AQI/qg0lmOR0cQPvu17P3 8Az12qXkVRp1+grxGVA8L3l5ceiQoUwrcx1aJQkcItuYrrp+pqCdJkIJDZVfpRQg i8Nq2gynYvR3TQ== -----END CERTIFICATE-----Generated at Thu Jan 29 11:23:29 2026 by rpki-client