This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: lSGlR/6uFjkWPhjwGpag+YrBtM5j5Rf0yg8aBKxi8qQ= Subject key identifier: 45:FD:13:C1:CD:D1:CA:52:B2:1C:6E:84:13:86:12:DC:4F:AF:C0:25 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BC074A34429C8F7BE2F1A2FDC0B6FCE01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 101A Signing time: Thu 15 Jan 2026 07:00:28 +0000 Manifest this update: Thu 15 Jan 2026 07:00:28 +0000 Manifest next update: Fri 16 Jan 2026 07:00:28 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: p6y594MXLh/3lsXN/hatUOOIH5T4MXYbdSiwae9XQzM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 05:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c0:74:a3:44:29:c8:f7:be:2f:1a:2f:dc:0b:6f:ce:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 15 07:00:28 2026 GMT Not After : Jan 16 07:00:28 2026 GMT Subject: CN=45fd13c1cdd1ca52b21c6e84138612dc4fafc025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:74:69:43:53:3d:85:ca:1b:b0:17:42:bc: 8e:d6:8c:79:9c:51:45:a6:37:e9:19:35:72:e6:7e: c8:30:13:87:68:aa:3b:b5:84:5d:8c:73:a5:85:72: 1e:39:74:a0:bc:6e:b2:fa:53:64:9e:36:ec:39:a7: 50:c2:c9:f8:f5:b5:61:e1:b0:ec:57:dc:73:94:72: a3:c6:86:8f:82:57:5b:a8:40:bf:80:7a:cb:67:d7: 8c:64:bd:14:96:03:ca:49:aa:5c:4c:d2:01:f4:7a: 95:1d:b2:35:5e:96:aa:66:bb:1d:f6:08:80:22:de: 04:2a:36:85:27:d8:70:5b:fc:7a:f3:9c:62:7b:2b: 4c:42:0e:d3:21:41:23:8c:97:ae:1e:57:5a:63:b5: 3a:dd:d0:8a:42:85:d3:01:6d:b3:86:91:be:09:35: d4:90:9c:68:92:43:20:64:d9:c2:28:33:b6:80:21: 18:86:11:9d:a6:05:5d:fa:11:f8:cd:d1:c4:c3:76: 7b:32:73:9a:26:97:bf:ad:f5:eb:c7:60:76:42:88: d9:b8:8d:9c:eb:f3:43:4b:a9:45:76:95:fb:f5:e1: c4:d5:ba:a2:91:27:6b:a5:cc:b8:7e:2f:3f:c9:ad: 40:9a:24:9f:f4:45:cd:54:a6:0c:69:79:93:3b:0d: 1a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FD:13:C1:CD:D1:CA:52:B2:1C:6E:84:13:86:12:DC:4F:AF:C0:25 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:f5:58:9d:af:ae:82:a1:12:e8:cb:3d:30:88:96:d5:8c:12: 1e:04:fa:9f:29:c3:65:7b:82:fe:3b:d0:9f:c3:ff:05:e0:5f: f5:37:11:b8:52:c6:39:00:c0:e4:92:b5:57:07:95:84:8a:e7: 36:aa:bf:78:6c:bf:87:1e:e9:78:46:9d:74:5e:11:9f:7e:08: fb:11:e4:d3:f5:35:a2:51:0c:cd:02:9a:ed:1e:53:93:aa:9d: 2d:fe:d1:50:dc:2f:c1:24:c9:10:1e:30:2a:31:34:7c:85:92: 8a:ca:b6:2a:14:7e:5d:ae:9d:09:ad:42:5e:8c:b2:61:f5:37: 64:74:ea:80:1d:ff:12:04:8a:20:8b:84:48:8f:a2:43:a0:c2: 3f:7f:7d:08:f2:f0:29:fe:a0:bf:9d:2f:c3:c3:b2:c8:34:a0: 89:54:b5:d9:fa:5a:9e:f3:c8:c9:1e:b1:59:65:86:c2:ce:79: dc:5a:5a:67:da:09:82:ce:61:43:f2:de:8f:3e:9d:f7:df:9c: ca:73:05:6f:2a:36:ac:35:6e:e0:4b:6c:1e:00:a3:53:f5:3d: 98:77:17:72:5d:df:bd:1a:0a:06:76:67:67:f2:19:4a:16:5f: e7:f0:0d:54:a2:fa:f4:35:c9:db:da:36:2e:57:de:8c:7d:44: c0:87:be:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvAdKNEKcj3vi8aL9wLb84BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTE1MDcwMDI4WhcNMjYwMTE2MDcwMDI4WjAzMTEwLwYDVQQD Eyg0NWZkMTNjMWNkZDFjYTUyYjIxYzZlODQxMzg2MTJkYzRmYWZjMDI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBp0aUNTPYXKG7AXQryO1ox5nFFF pjfpGTVy5n7IMBOHaKo7tYRdjHOlhXIeOXSgvG6y+lNknjbsOadQwsn49bVh4bDs V9xzlHKjxoaPgldbqEC/gHrLZ9eMZL0UlgPKSapcTNIB9HqVHbI1XpaqZrsd9giA It4EKjaFJ9hwW/x685xieytMQg7TIUEjjJeuHldaY7U63dCKQoXTAW2zhpG+CTXU kJxokkMgZNnCKDO2gCEYhhGdpgVd+hH4zdHEw3Z7MnOaJpe/rfXrx2B2QojZuI2c 6/NDS6lFdpX79eHE1bqikSdrpcy4fi8/ya1AmiSf9EXNVKYMaXmTOw0a4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEX9E8HN0cpSshxuhBOGEtxPr8AlMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg/VYna+u gqES6Ms9MIiW1YwSHgT6nynDZXuC/jvQn8P/BeBf9TcRuFLGOQDA5JK1VweVhIrn Nqq/eGy/hx7peEaddF4Rn34I+xHk0/U1olEMzQKa7R5Tk6qdLf7RUNwvwSTJEB4w KjE0fIWSisq2KhR+Xa6dCa1CXoyyYfU3ZHTqgB3/EgSKIIuESI+iQ6DCP399CPLw Kf6gv50vw8OyyDSgiVS12fpanvPIyR6xWWWGws553FpaZ9oJgs5hQ/Lejz6d99+c ynMFbyo2rDVu4EtsHgCjU/U9mHcXcl3fvRoKBnZnZ/IZShZf5/ANVKL69DXJ29o2 LlfejH1EwIe+YQ== -----END CERTIFICATE-----Generated at Thu Jan 15 10:42:41 2026 by rpki-client