This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: iZVrEgasydOWu9UcWskA036kLReLctKu28SbnLPFdFE= Subject key identifier: E2:0A:4E:F3:5B:6A:72:C3:82:7B:BC:79:35:DB:61:79:2E:5A:4A:33 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BDD6D63D7B66EADE42C8FF0BFD1B83800 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1029 Signing time: Tue 20 Jan 2026 22:01:32 +0000 Manifest this update: Tue 20 Jan 2026 22:01:32 +0000 Manifest next update: Wed 21 Jan 2026 22:01:32 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 06d9ueZobgeYFSoP3ehYL1gOAbWcPvXjuyvpSTLpJp8=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 22:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dd:6d:63:d7:b6:6e:ad:e4:2c:8f:f0:bf:d1:b8:38:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 20 22:01:32 2026 GMT Not After : Jan 21 22:01:32 2026 GMT Subject: CN=e20a4ef35b6a72c3827bbc7935db61792e5a4a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8b:49:ab:a9:81:b7:ab:9e:16:f0:fa:b7:44: 2e:b0:20:db:62:4a:27:f5:f2:fc:21:d9:54:09:29: c1:2a:56:cd:ae:0f:16:d1:60:cc:52:59:3b:fb:58: 90:3f:16:f6:45:05:cf:40:87:b3:20:ac:c8:de:d2: 1b:de:f0:d4:55:55:32:e8:ba:16:38:e2:f5:9a:1d: fb:37:5b:f5:71:95:d7:70:b0:01:d1:bb:2c:6c:1c: 21:22:10:63:d4:57:cb:7e:59:ca:8d:ae:f2:73:ad: e8:b1:4b:3f:3b:e2:c0:f6:8d:1a:75:15:b8:58:dc: d3:bb:31:d7:2c:fc:6c:c3:7f:1b:30:58:ef:bb:10: 07:f5:e0:a3:d2:d8:96:0c:5f:1d:83:d9:58:a6:2c: f0:a1:9c:3d:fc:8b:9b:a8:a9:89:c5:29:35:4d:9b: 60:e8:76:8a:6a:1e:07:a6:27:93:05:94:98:ef:2d: ec:84:26:68:db:12:d1:86:c0:cb:1b:54:23:ac:d5: e9:07:cd:48:fc:fd:cc:d2:9c:c0:0c:96:60:fa:f4: e7:2f:75:32:e1:4d:aa:b7:dd:a6:78:96:9e:42:68: 28:cb:44:41:07:af:7f:e0:cf:2d:09:65:6b:2c:71: 46:8b:fb:d5:a4:ab:fd:54:b2:10:cd:79:ee:bb:e4: a0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:0A:4E:F3:5B:6A:72:C3:82:7B:BC:79:35:DB:61:79:2E:5A:4A:33 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:8c:1b:c5:7a:e3:2e:45:ec:17:49:81:02:66:db:2d:9b:66: f4:1c:55:27:ea:f3:e0:a4:c6:f7:05:9a:74:bc:13:22:da:0d: b2:a7:e3:f0:bd:1d:3d:7b:f0:c1:f6:d8:ac:05:ef:6c:1c:2e: e0:94:c1:df:d3:4d:3d:e1:80:15:20:30:fc:42:cc:03:cf:d1: 18:c1:8b:36:3a:99:b6:11:61:0e:26:c1:a2:8a:d3:bc:96:17: 1b:dd:e4:ce:8e:87:55:30:d8:b0:28:a8:bb:d8:75:8c:78:a4: 60:d4:82:60:07:98:55:58:e8:21:f9:bd:8e:d2:fa:39:a8:67: 78:a4:fe:b2:4b:e2:03:b3:82:12:52:e9:19:82:b2:33:1a:60: 95:b0:38:93:2b:63:70:a9:17:6e:61:2d:cc:3d:b3:30:4a:2d: 3f:ae:a0:5c:8e:34:d0:ed:08:69:7c:03:3d:86:43:58:7a:c2: 5c:a2:90:fc:a8:cf:c3:33:10:92:a8:5e:4b:3c:e2:5e:10:16: fa:4e:3d:11:5b:49:8b:c7:c9:93:1f:17:9e:48:c7:11:b1:8b: 79:99:f9:07:85:8d:d2:9d:46:77:19:f3:cd:28:aa:0c:14:4d: 9e:d6:5a:ce:ab:3a:aa:c6:8d:99:98:76:22:e8:12:1f:3f:45: 64:98:dc:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvdbWPXtm6t5CyP8L/RuDgAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTIwMjIwMTMyWhcNMjYwMTIxMjIwMTMyWjAzMTEwLwYDVQQD EyhlMjBhNGVmMzViNmE3MmMzODI3YmJjNzkzNWRiNjE3OTJlNWE0YTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YtJq6mBt6ueFvD6t0QusCDbYkon 9fL8IdlUCSnBKlbNrg8W0WDMUlk7+1iQPxb2RQXPQIezIKzI3tIb3vDUVVUy6LoW OOL1mh37N1v1cZXXcLAB0bssbBwhIhBj1FfLflnKja7yc63osUs/O+LA9o0adRW4 WNzTuzHXLPxsw38bMFjvuxAH9eCj0tiWDF8dg9lYpizwoZw9/IubqKmJxSk1TZtg 6HaKah4HpieTBZSY7y3shCZo2xLRhsDLG1QjrNXpB81I/P3M0pzADJZg+vTnL3Uy 4U2qt92meJaeQmgoy0RBB69/4M8tCWVrLHFGi/vVpKv9VLIQzXnuu+SgIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOIKTvNbanLDgnu8eTXbYXkuWkozMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ4wbxXrj LkXsF0mBAmbbLZtm9BxVJ+rz4KTG9wWadLwTItoNsqfj8L0dPXvwwfbYrAXvbBwu 4JTB39NNPeGAFSAw/ELMA8/RGMGLNjqZthFhDibBoorTvJYXG93kzo6HVTDYsCio u9h1jHikYNSCYAeYVVjoIfm9jtL6OahneKT+skviA7OCElLpGYKyMxpglbA4kytj cKkXbmEtzD2zMEotP66gXI400O0IaXwDPYZDWHrCXKKQ/KjPwzMQkqheSzziXhAW +k49EVtJi8fJkx8XnkjHEbGLeZn5B4WN0p1GdxnzzSiqDBRNntZazqs6qsaNmZh2 IugSHz9FZJjc3w== -----END CERTIFICATE-----Generated at Wed Jan 21 06:26:54 2026 by rpki-client