This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: S9DUSe9J2d5ZloJR8jnQs9sWp4Xz8DkIJVXMacQJKUk= Subject key identifier: 58:EC:C4:D3:6A:B6:39:54:E5:C1:09:14:1F:9B:56:19:B6:27:6B:1E Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BB102ABE6A5ADB86F0A6CE09E29FE6D08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1012 Signing time: Mon 12 Jan 2026 07:01:40 +0000 Manifest this update: Mon 12 Jan 2026 07:01:40 +0000 Manifest next update: Tue 13 Jan 2026 07:01:40 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: FikmiLlyi7pxbWOYhUjnbhn6rkeJGB+FhQnF4ulgEiM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b1:02:ab:e6:a5:ad:b8:6f:0a:6c:e0:9e:29:fe:6d:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 12 07:01:40 2026 GMT Not After : Jan 13 07:01:40 2026 GMT Subject: CN=58ecc4d36ab63954e5c109141f9b5619b6276b1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9d:7b:13:22:dd:8c:0f:4a:7a:4d:96:e9:14: 2c:9b:d5:d0:ec:52:f4:25:fb:c5:88:2e:e0:1f:eb: 14:77:39:ab:c2:45:49:06:8d:89:bc:11:c4:45:be: ea:81:ae:9b:cf:43:7a:63:b0:33:bf:3d:1b:12:f7: b7:bb:25:f0:c4:dd:35:13:63:d1:47:f1:40:ce:6a: 69:43:c5:6d:20:01:52:66:62:0e:1a:64:a3:2b:3e: 23:4b:41:19:82:ff:ec:90:b7:dd:d1:5d:23:43:9d: d2:65:ca:58:34:01:f5:89:b9:01:be:40:66:a3:23: de:95:8d:a5:51:66:12:22:3f:03:19:9b:84:55:31: d1:ec:d8:15:6c:5a:17:97:dc:93:68:33:ba:92:24: a6:cd:c8:bb:9a:b7:88:e0:7c:ae:6d:f0:d4:2c:6e: 15:c0:44:02:7b:2c:f3:4d:3f:d2:56:02:dd:d6:e8: fe:95:bb:c4:3c:03:07:ef:78:80:c4:4f:62:a8:8d: 36:9b:21:ba:6f:66:fa:b0:a0:90:a5:dc:b2:88:bc: dc:59:f2:c0:cd:5f:75:8d:5d:92:c8:9c:b5:8e:19: 29:43:06:3c:00:c8:30:9b:04:4b:6a:48:ca:46:0b: 43:af:80:f0:35:92:77:a8:1d:ac:0b:10:ff:5e:84: 00:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:EC:C4:D3:6A:B6:39:54:E5:C1:09:14:1F:9B:56:19:B6:27:6B:1E X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:16:99:01:95:bb:9b:c6:c2:00:04:94:a0:5b:88:15:1a:f0: 16:b4:90:af:08:ca:fd:2a:e1:fb:24:c1:b2:60:b1:cd:e3:2a: fb:da:83:00:b2:66:85:77:05:f3:a7:d1:3f:56:45:a1:11:ce: ad:01:e0:65:f6:2b:3a:68:c0:21:fc:7b:88:f2:4d:7d:d9:6b: 63:72:f9:c0:00:6d:31:f9:7d:4c:25:24:cd:db:19:83:b5:99: 4c:0f:59:ba:2f:7d:cb:2f:bd:2b:09:1f:58:f1:6c:ea:00:b2: dd:b9:98:7f:86:6b:7d:7f:73:9c:53:5b:7d:76:f7:34:7c:f1: 57:4f:54:5e:54:7e:a6:6f:c8:f2:98:f8:d4:c1:e7:30:40:ea: 53:e5:8c:68:7d:8b:0e:b5:46:e4:97:48:39:69:20:9c:68:ed: ca:9e:45:eb:f5:85:de:10:c9:57:bf:64:91:09:1f:aa:1b:1c: f3:7e:32:3c:32:52:60:f5:42:3c:a5:5e:98:3a:2a:9f:e4:53: 8d:19:9f:01:32:2e:ae:7f:a0:9b:f2:6c:87:c5:78:0f:fa:b5: 0a:b2:5f:d1:16:be:86:a9:9b:dc:e3:48:c6:1e:7a:5c:04:1a: 93:8b:bc:a8:4f:0d:e4:d7:0f:e1:ca:8f:28:2e:ec:42:fd:40: 96:b9:c9:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuxAqvmpa24bwps4J4p/m0IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTEyMDcwMTQwWhcNMjYwMTEzMDcwMTQwWjAzMTEwLwYDVQQD Eyg1OGVjYzRkMzZhYjYzOTU0ZTVjMTA5MTQxZjliNTYxOWI2Mjc2YjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs517EyLdjA9Kek2W6RQsm9XQ7FL0 JfvFiC7gH+sUdzmrwkVJBo2JvBHERb7qga6bz0N6Y7Azvz0bEve3uyXwxN01E2PR R/FAzmppQ8VtIAFSZmIOGmSjKz4jS0EZgv/skLfd0V0jQ53SZcpYNAH1ibkBvkBm oyPelY2lUWYSIj8DGZuEVTHR7NgVbFoXl9yTaDO6kiSmzci7mreI4HyubfDULG4V wEQCeyzzTT/SVgLd1uj+lbvEPAMH73iAxE9iqI02myG6b2b6sKCQpdyyiLzcWfLA zV91jV2SyJy1jhkpQwY8AMgwmwRLakjKRgtDr4DwNZJ3qB2sCxD/XoQAPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFjsxNNqtjlU5cEJFB+bVhm2J2seMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArBaZAZW7 m8bCAASUoFuIFRrwFrSQrwjK/Srh+yTBsmCxzeMq+9qDALJmhXcF86fRP1ZFoRHO rQHgZfYrOmjAIfx7iPJNfdlrY3L5wABtMfl9TCUkzdsZg7WZTA9Zui99yy+9Kwkf WPFs6gCy3bmYf4ZrfX9znFNbfXb3NHzxV09UXlR+pm/I8pj41MHnMEDqU+WMaH2L DrVG5JdIOWkgnGjtyp5F6/WF3hDJV79kkQkfqhsc834yPDJSYPVCPKVemDoqn+RT jRmfATIurn+gm/Jsh8V4D/q1CrJf0Ra+hqmb3ONIxh56XAQak4u8qE8N5NcP4cqP KC7sQv1AlrnJgw== -----END CERTIFICATE-----Generated at Mon Jan 12 09:37:18 2026 by rpki-client