This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: c5MLOuUePQqP/QOzS8lkmZcPdxbMlep8imWV3tA67d0= Subject key identifier: BC:59:FD:AF:35:A4:1F:E7:32:06:FA:9B:8B:66:11:44:D9:67:1B:DF Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019ABE88B35311274A388AB2288180228C93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F92 Signing time: Wed 26 Nov 2025 05:00:20 +0000 Manifest this update: Wed 26 Nov 2025 05:00:20 +0000 Manifest next update: Thu 27 Nov 2025 05:00:20 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa (hash: xk0/xdnScysXdBoKt0IBKKmaEmn7cglicebHN1EZ2bo=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: JLcJyYQCgb2P/VNpSEz2NS9DZwaF+adRq8pGJbsUWZU=) 7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 10: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 11: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 12: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 27 Nov 2025 01:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:be:88:b3:53:11:27:4a:38:8a:b2:28:81:80:22:8c:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 26 05:00:20 2025 GMT Not After : Nov 27 05:00:20 2025 GMT Subject: CN=bc59fdaf35a41fe73206fa9b8b661144d9671bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9c:ec:53:c0:69:d5:7a:ee:11:12:f8:ca:b0: 96:71:d2:c6:d7:df:3d:ed:cb:be:35:f4:3d:53:9b: d0:21:27:96:1f:99:92:23:d2:ef:b2:0a:98:a7:f9: d7:02:e5:13:bf:5a:7a:af:3b:7f:4d:a3:e0:83:7c: 83:b7:87:65:ac:fb:2a:05:2f:dc:51:31:81:9d:32: 48:fb:12:63:22:f5:e1:f7:a8:a2:9d:94:e9:ef:18: d8:ef:9e:e7:67:5a:ea:ea:17:81:f2:ec:2a:95:07: 53:9d:4f:ad:e7:68:2c:53:3b:c0:c5:09:21:d8:d4: bc:10:66:3c:43:94:43:29:07:17:f8:bc:99:9a:7a: b7:c2:f8:0b:18:e3:39:df:90:17:57:38:2b:53:87: ee:0b:51:a1:13:db:35:92:c6:c0:3b:91:4d:20:53: 4f:1e:76:ad:2b:0d:b3:f0:75:6c:0a:7d:8a:65:be: 3b:80:f5:3c:9d:a3:f1:83:09:ad:4c:1e:34:48:fd: 0a:a1:b2:8e:50:8b:77:50:6b:37:ba:dd:2e:d7:50: b8:ec:82:2a:82:c6:40:46:23:d0:48:a7:81:c2:5f: 68:fe:94:c5:6c:29:88:9d:86:82:95:d4:8d:13:d9: 86:12:c5:ca:e2:ef:da:f8:59:9b:91:52:11:52:3b: db:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:59:FD:AF:35:A4:1F:E7:32:06:FA:9B:8B:66:11:44:D9:67:1B:DF X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:b4:45:46:61:fa:64:9b:43:fb:c3:6e:06:42:aa:c4:9b:d6: ca:5f:89:8a:12:4d:0c:a4:4c:79:fc:dc:35:96:af:b7:81:66: a2:d9:9b:62:86:0b:53:66:7f:86:42:a7:97:52:e9:b3:7d:94: 4c:24:9b:ef:6a:90:79:e1:fd:81:54:f7:cb:00:f8:76:c4:d6: fa:38:80:ce:fd:4a:0b:dd:d6:67:fc:d7:0d:81:33:ef:db:33: 9f:b2:34:bd:e1:fb:87:2c:91:ee:22:0a:15:70:ee:5f:91:cd: 28:b1:17:f5:bf:c8:d5:65:ed:d7:81:eb:06:b9:2f:13:87:00: d8:e5:99:f9:69:74:31:ff:86:67:64:68:4a:7e:45:ff:6c:8c: 6e:71:69:17:a2:c9:22:2e:2b:ff:9b:60:a5:ef:a8:eb:6a:c3: 42:10:8f:ff:04:f8:c5:04:43:3b:11:4c:e0:af:5f:45:68:4a: ac:56:19:54:c8:6e:b8:27:3f:e8:ce:36:29:84:35:0b:cd:05: 58:d1:d8:c2:4d:12:08:9e:9a:07:bf:a2:5b:44:35:ca:98:69: 3e:2b:4d:af:e5:8d:b1:b9:62:90:e2:48:0c:55:f0:2d:fe:f6: 0d:d0:d8:c5:43:a6:be:2f:fa:f0:60:46:79:b7:81:a7:60:b1: 04:2a:9a:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq+iLNTESdKOIqyKIGAIoyTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTI2MDUwMDIwWhcNMjUxMTI3MDUwMDIwWjAzMTEwLwYDVQQD EyhiYzU5ZmRhZjM1YTQxZmU3MzIwNmZhOWI4YjY2MTE0NGQ5NjcxYmRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZzsU8Bp1XruERL4yrCWcdLG1989 7cu+NfQ9U5vQISeWH5mSI9LvsgqYp/nXAuUTv1p6rzt/TaPgg3yDt4dlrPsqBS/c UTGBnTJI+xJjIvXh96iinZTp7xjY757nZ1rq6heB8uwqlQdTnU+t52gsUzvAxQkh 2NS8EGY8Q5RDKQcX+LyZmnq3wvgLGOM535AXVzgrU4fuC1GhE9s1ksbAO5FNIFNP HnatKw2z8HVsCn2KZb47gPU8naPxgwmtTB40SP0KobKOUIt3UGs3ut0u11C47IIq gsZARiPQSKeBwl9o/pTFbCmInYaCldSNE9mGEsXK4u/a+FmbkVIRUjvbIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxZ/a81pB/nMgb6m4tmEUTZZxvfMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJLRFRmH6 ZJtD+8NuBkKqxJvWyl+JihJNDKRMefzcNZavt4FmotmbYoYLU2Z/hkKnl1Lps32U TCSb72qQeeH9gVT3ywD4dsTW+jiAzv1KC93WZ/zXDYEz79szn7I0veH7hyyR7iIK FXDuX5HNKLEX9b/I1WXt14HrBrkvE4cA2OWZ+Wl0Mf+GZ2RoSn5F/2yMbnFpF6LJ Ii4r/5tgpe+o62rDQhCP/wT4xQRDOxFM4K9fRWhKrFYZVMhuuCc/6M42KYQ1C80F WNHYwk0SCJ6aB7+iW0Q1yphpPitNr+WNsblikOJIDFXwLf72DdDYxUOmvi/68GBG ebeBp2CxBCqaKQ== -----END CERTIFICATE-----Generated at Wed Nov 26 09:25:54 2025 by rpki-client