This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: zSTOoiWX24rh+ZjRrppXaF89YHjmCETgIlG83V52F5g= Subject key identifier: 87:F5:26:E1:98:1F:32:EF:8E:17:D3:D8:35:F4:2B:45:CA:EC:30:72 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B4ADF4973C9FE792A28DD82F2DE7B61CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FDC Signing time: Tue 23 Dec 2025 11:01:45 +0000 Manifest this update: Tue 23 Dec 2025 11:01:45 +0000 Manifest next update: Wed 24 Dec 2025 11:01:45 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: QmMSbz5nQEqoJWTk0tvzgyjFO7Vg86aPZWBzh5nDUYI=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:df:49:73:c9:fe:79:2a:28:dd:82:f2:de:7b:61:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 23 11:01:45 2025 GMT Not After : Dec 24 11:01:45 2025 GMT Subject: CN=87f526e1981f32ef8e17d3d835f42b45caec3072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:38:9d:06:97:d6:36:de:85:21:54:3d:ee:85: fe:d6:72:46:ba:34:17:95:f6:20:4e:37:d3:51:63: 73:e4:6a:98:5a:c3:5d:d2:d0:88:83:a4:a8:80:85: 38:85:18:88:3e:f7:41:75:ee:fa:e2:00:72:f6:8b: 8f:6c:d2:f0:13:e5:3f:5c:99:d0:0f:36:9f:94:75: 75:92:e7:0b:22:b3:ef:e0:5c:0f:9b:e0:6d:e5:d8: 1f:88:37:51:f5:cf:d7:f4:cf:e4:18:c5:a8:8f:3c: ab:c0:df:b9:10:24:43:41:36:ae:75:a8:3f:45:63: e7:99:d5:52:63:64:55:f1:2e:e7:81:27:be:98:42: e9:48:c8:33:7f:86:f3:da:0f:4b:4d:0a:6d:35:7d: f8:90:f7:ab:32:1a:7d:ce:9d:3e:0d:b7:77:2e:89: 0b:ff:95:46:1e:54:b2:a3:32:e3:67:3b:26:62:40: b6:9b:19:f8:57:00:1d:43:c5:de:26:3c:4a:22:be: 0f:6b:42:43:82:b7:55:1e:2b:03:c0:ed:40:4f:30: f3:7c:81:5c:b5:61:81:76:d6:f5:26:3a:b1:a8:9f: b2:55:b1:61:c8:29:8c:4d:61:d4:f4:e6:56:52:80: 9a:52:ee:a1:ed:22:1c:ad:ca:77:60:9c:f2:7d:70: 92:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:F5:26:E1:98:1F:32:EF:8E:17:D3:D8:35:F4:2B:45:CA:EC:30:72 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7e:5f:2b:d0:f3:c8:2c:5a:84:15:de:3d:8e:80:76:dc:a7: 91:ff:b6:9a:c2:fa:7f:f1:12:b5:ce:b4:ee:77:a1:43:02:1c: 26:99:b7:c9:9c:56:30:5f:49:42:7d:1a:37:1e:93:0e:90:c4: 44:61:d8:c6:60:91:44:a6:9a:a8:43:00:51:c0:f6:36:4d:e7: 3c:80:ae:2e:71:1c:3a:18:1a:17:78:74:e1:89:1a:6f:40:2c: bd:2d:e9:79:0a:b2:7e:b3:99:ce:b6:1a:30:2c:f8:22:d9:2e: 31:c1:72:71:f2:8c:cf:39:6d:bc:66:b0:c7:50:60:97:68:68: 78:61:e8:f5:07:66:b5:39:62:82:ce:1c:0a:be:7c:a6:68:cc: 03:09:9c:34:e0:1c:b5:08:84:0c:31:70:ec:4a:5d:e2:41:7c: 7d:78:9f:a2:6e:44:68:a1:47:f4:01:30:f8:77:56:08:57:23: 0d:7c:53:41:34:4c:3f:cb:86:29:2d:e5:5c:61:68:96:3f:90: b9:60:af:d6:94:11:7b:3b:17:43:10:86:31:39:14:b8:c9:ef: 52:ca:14:51:f0:e9:29:2e:12:39:8c:85:b9:a9:4a:1f:0b:04: 1e:33:b8:68:e3:7f:21:15:f0:3a:21:62:cd:0f:e9:83:eb:20: e9:5e:9e:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtK30lzyf55KijdgvLee2HPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjIzMTEwMTQ1WhcNMjUxMjI0MTEwMTQ1WjAzMTEwLwYDVQQD Eyg4N2Y1MjZlMTk4MWYzMmVmOGUxN2QzZDgzNWY0MmI0NWNhZWMzMDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6DidBpfWNt6FIVQ97oX+1nJGujQX lfYgTjfTUWNz5GqYWsNd0tCIg6SogIU4hRiIPvdBde764gBy9ouPbNLwE+U/XJnQ DzaflHV1kucLIrPv4FwPm+Bt5dgfiDdR9c/X9M/kGMWojzyrwN+5ECRDQTaudag/ RWPnmdVSY2RV8S7ngSe+mELpSMgzf4bz2g9LTQptNX34kPerMhp9zp0+Dbd3LokL /5VGHlSyozLjZzsmYkC2mxn4VwAdQ8XeJjxKIr4Pa0JDgrdVHisDwO1ATzDzfIFc tWGBdtb1JjqxqJ+yVbFhyCmMTWHU9OZWUoCaUu6h7SIcrcp3YJzyfXCSYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIf1JuGYHzLvjhfT2DX0K0XK7DByMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALX5fK9Dz yCxahBXePY6Adtynkf+2msL6f/EStc607nehQwIcJpm3yZxWMF9JQn0aNx6TDpDE RGHYxmCRRKaaqEMAUcD2Nk3nPICuLnEcOhgaF3h04Ykab0AsvS3peQqyfrOZzrYa MCz4ItkuMcFycfKMzzltvGawx1Bgl2hoeGHo9QdmtTligs4cCr58pmjMAwmcNOAc tQiEDDFw7Epd4kF8fXifom5EaKFH9AEw+HdWCFcjDXxTQTRMP8uGKS3lXGFolj+Q uWCv1pQRezsXQxCGMTkUuMnvUsoUUfDpKS4SOYyFualKHwsEHjO4aON/IRXwOiFi zQ/pg+sg6V6exg== -----END CERTIFICATE-----Generated at Tue Dec 23 12:53:32 2025 by rpki-client