This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: SSsaS8wV5XtMvure9hetaVkMDwoDh0n+ecaycAQTZQk= Subject key identifier: B1:AF:A8:4A:E4:B3:8D:97:53:E3:F0:5D:84:D4:29:9B:20:2B:44:A6 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BBC98AE16EDC170D5631B4A421BE01D25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1018 Signing time: Wed 14 Jan 2026 13:01:21 +0000 Manifest this update: Wed 14 Jan 2026 13:01:21 +0000 Manifest next update: Thu 15 Jan 2026 13:01:21 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: JgrVArsNwrXBQnbhH23+Ah1pcx/Auy58S5LMrPkD6Ok=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 Jan 2026 13:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bc:98:ae:16:ed:c1:70:d5:63:1b:4a:42:1b:e0:1d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 14 13:01:21 2026 GMT Not After : Jan 15 13:01:21 2026 GMT Subject: CN=b1afa84ae4b38d9753e3f05d84d4299b202b44a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:85:91:5c:4e:73:fc:2e:bc:b5:69:e5:2b:62: d8:58:e2:fa:03:ad:46:a0:d0:69:47:d6:3e:36:42: ae:c7:5b:ac:24:03:92:fa:04:9e:44:9e:65:ef:40: c3:34:4b:24:3b:a0:da:12:31:ef:6e:c2:c1:3b:79: 5c:ff:ac:14:a3:5f:3f:2a:b0:d0:31:2b:3e:8b:7c: 55:17:69:f2:cf:76:b8:a9:d7:be:6d:ff:e4:5c:a1: 94:d2:b4:41:64:6e:ae:64:1d:44:58:b8:e5:e7:48: bd:c0:ee:c1:45:2e:b5:54:c4:67:cb:6f:18:1a:1f: fc:1a:94:b1:15:52:cb:89:a4:02:26:72:af:36:67: 76:9e:ad:99:3a:ac:93:fe:5a:be:28:5b:be:ca:38: 28:a4:de:41:07:79:35:bd:6d:41:59:f4:61:21:c3: 8e:e4:8d:25:cb:01:0b:33:2d:06:62:a2:d4:0b:db: d5:3f:85:b7:a6:fa:87:3b:d1:e3:5a:56:9e:00:6a: 59:6a:10:70:f2:21:b2:46:eb:ca:ae:9d:8e:c5:33: 66:bd:32:d6:f8:0e:53:54:41:3b:ec:7e:45:a3:41: 92:3e:4c:24:06:c1:a4:f4:b8:cc:49:af:79:cc:39: 9e:a8:6d:08:69:1d:b5:c1:8e:55:8c:d9:f3:30:21: 4b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AF:A8:4A:E4:B3:8D:97:53:E3:F0:5D:84:D4:29:9B:20:2B:44:A6 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:61:9d:4a:e4:63:d8:57:3f:8a:4d:44:47:d6:99:aa:4a:67: f3:b0:ff:fc:75:80:d7:e0:ca:de:77:e0:c3:26:4c:9f:8e:77: 18:d3:d4:e6:14:f0:32:a4:1b:13:70:87:ef:29:bd:b1:e6:8c: c1:d3:b5:48:04:b1:3e:d7:81:d4:52:28:7c:72:cb:b3:6e:29: 24:28:a2:75:05:a8:af:6f:ba:6d:9a:be:cf:82:86:19:24:bf: 56:10:a0:bf:e0:95:c4:08:60:7a:00:93:eb:bb:e3:18:a5:43: 3a:d3:57:75:1c:c5:04:c1:e1:32:37:f4:ed:d4:24:e0:e5:06: c4:20:8c:a2:d1:f7:6b:57:16:d6:2f:03:03:50:9c:21:8b:68: 31:41:92:ba:89:00:14:66:94:07:58:cb:9c:d0:ba:f3:fc:46: db:9e:1c:c7:7f:e7:62:8d:a7:a1:99:d4:b5:fc:20:d4:33:18: cd:70:bd:41:52:a7:8c:36:b5:e4:a6:b6:89:f9:3e:d6:d8:e0: 09:ae:81:ad:4f:ab:76:ee:6a:2f:ef:67:aa:cf:b4:71:93:c2: 36:46:fc:63:15:75:4a:4f:33:1a:f9:23:53:9c:b1:d1:0b:77: 51:45:ef:14:bd:a9:3a:71:2c:ed:79:0e:1d:39:20:75:53:bf: a2:6d:43:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu8mK4W7cFw1WMbSkIb4B0lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTE0MTMwMTIxWhcNMjYwMTE1MTMwMTIxWjAzMTEwLwYDVQQD EyhiMWFmYTg0YWU0YjM4ZDk3NTNlM2YwNWQ4NGQ0Mjk5YjIwMmI0NGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYWRXE5z/C68tWnlK2LYWOL6A61G oNBpR9Y+NkKux1usJAOS+gSeRJ5l70DDNEskO6DaEjHvbsLBO3lc/6wUo18/KrDQ MSs+i3xVF2nyz3a4qde+bf/kXKGU0rRBZG6uZB1EWLjl50i9wO7BRS61VMRny28Y Gh/8GpSxFVLLiaQCJnKvNmd2nq2ZOqyT/lq+KFu+yjgopN5BB3k1vW1BWfRhIcOO 5I0lywELMy0GYqLUC9vVP4W3pvqHO9HjWlaeAGpZahBw8iGyRuvKrp2OxTNmvTLW +A5TVEE77H5Fo0GSPkwkBsGk9LjMSa95zDmeqG0IaR21wY5VjNnzMCFLrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLGvqErks42XU+PwXYTUKZsgK0SmMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd2GdSuRj 2Fc/ik1ER9aZqkpn87D//HWA1+DK3nfgwyZMn453GNPU5hTwMqQbE3CH7ym9seaM wdO1SASxPteB1FIofHLLs24pJCiidQWor2+6bZq+z4KGGSS/VhCgv+CVxAhgegCT 67vjGKVDOtNXdRzFBMHhMjf07dQk4OUGxCCMotH3a1cW1i8DA1CcIYtoMUGSuokA FGaUB1jLnNC68/xG254cx3/nYo2noZnUtfwg1DMYzXC9QVKnjDa15Ka2ifk+1tjg Ca6BrU+rdu5qL+9nqs+0cZPCNkb8YxV1Sk8zGvkjU5yx0Qt3UUXvFL2pOnEs7XkO HTkgdVO/om1DuA== -----END CERTIFICATE-----Generated at Wed Jan 14 17:00:41 2026 by rpki-client