This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: LP89C9dCbxuqrosPfE5yhY5PonfCoiRr1t1kR3gZSU4= Subject key identifier: 28:D0:F0:4A:D9:C2:B6:8C:78:37:DF:3D:BB:C5:D8:5C:7A:B9:88:92 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019AD3C768A019E5E35410B8F4D6CED3B3A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0F9D Signing time: Sun 30 Nov 2025 08:00:52 +0000 Manifest this update: Sun 30 Nov 2025 08:00:52 +0000 Manifest next update: Mon 01 Dec 2025 08:00:52 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa (hash: xk0/xdnScysXdBoKt0IBKKmaEmn7cglicebHN1EZ2bo=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: aMYXUCGQx8K1/tzPDZ8wybQar9fFg6AcawfuiYvls3E=) 7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 10: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 11: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 12: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Dec 2025 08:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d3:c7:68:a0:19:e5:e3:54:10:b8:f4:d6:ce:d3:b3:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Nov 30 08:00:52 2025 GMT Not After : Dec 1 08:00:52 2025 GMT Subject: CN=28d0f04ad9c2b68c7837df3dbbc5d85c7ab98892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:2f:52:3d:61:aa:11:f8:a4:b4:b7:ea:5f:82: 38:4b:11:9f:48:2a:17:f5:b5:88:98:63:4b:dd:6c: f8:6b:a0:63:f3:8f:dd:8d:a9:e8:80:b6:93:8c:3d: 7a:22:1d:8f:a2:07:5b:50:63:16:9e:cc:4f:a6:e5: 92:79:8b:55:3e:06:0f:c3:79:7b:8d:81:e9:1e:16: 9e:a9:c3:f2:67:d0:fe:68:57:55:d1:87:b1:69:f7: b1:01:23:fc:d2:ef:b4:9a:76:a8:e7:2b:c0:28:e1: 63:c3:04:14:fe:dc:b0:50:89:ab:e5:51:1d:54:d0: 46:09:94:d0:cb:e6:df:13:1a:36:8b:63:29:d2:3e: 04:b7:d4:53:bf:e0:0a:e1:72:19:a3:61:d6:24:d1: 2a:54:7f:b0:d3:31:85:23:5f:9b:c9:0f:cb:1f:5d: 4f:ce:27:4e:a3:67:46:74:63:f2:b6:1e:f0:2e:ce: c6:49:d9:71:d1:fd:9b:f9:c2:3a:9c:7f:de:be:2f: e3:82:0c:2f:6f:fa:58:25:7a:d0:84:e5:51:71:d1: 67:97:a5:f0:f7:6f:be:d3:0a:cd:5c:ce:47:64:75: bd:39:7c:ce:a8:dc:f3:f4:f0:0c:2c:9f:e2:eb:20: dd:37:77:de:8f:5e:14:9e:ad:d7:79:77:97:46:02: 69:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D0:F0:4A:D9:C2:B6:8C:78:37:DF:3D:BB:C5:D8:5C:7A:B9:88:92 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:67:57:bc:17:f0:3d:da:b4:d4:21:7c:59:cb:d4:06:9c:39: ad:96:f7:4b:be:3e:24:a1:d4:73:f7:de:8c:9f:75:2b:fe:d2: 1b:8a:31:d7:44:52:e5:b1:ab:b5:1f:6b:c9:7b:74:e7:28:f6: f5:d0:66:eb:71:ff:53:1f:48:2f:40:62:89:5d:0d:3b:98:e4: f8:ae:aa:cd:af:f0:de:55:f7:a6:66:17:e6:a4:9b:05:ab:42: 4e:b2:7c:44:07:5b:09:64:d4:59:fb:18:e0:86:ce:62:ed:7a: fd:2c:5f:ea:fe:65:03:ec:7b:0e:cc:b4:8d:80:4d:82:73:a2: f1:3a:4c:f0:90:18:0c:d2:dc:b3:d4:f8:b8:b3:1a:6f:1d:42: d3:92:95:fe:a7:86:69:d2:bf:7d:8d:b0:9a:dc:a5:24:1b:c0: 7a:4b:93:d2:e0:9d:8b:3d:c4:62:b5:e7:a1:5a:58:5b:90:ec: 3f:37:9d:23:da:d7:f9:c5:ff:5a:66:98:fb:99:42:fe:b4:d0: 03:1f:01:2c:db:b6:f1:59:88:af:6c:87:f2:f7:5a:cc:b7:f2: dc:91:01:79:2d:94:75:e2:10:84:4f:79:94:f7:13:a3:6e:21: a1:d8:80:f9:de:07:d1:9a:7c:45:20:fa:a6:fe:26:22:13:d5: ce:26:54:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrTx2igGeXjVBC49NbO07OgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMTMwMDgwMDUyWhcNMjUxMjAxMDgwMDUyWjAzMTEwLwYDVQQD EygyOGQwZjA0YWQ5YzJiNjhjNzgzN2RmM2RiYmM1ZDg1YzdhYjk4ODkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAky9SPWGqEfiktLfqX4I4SxGfSCoX 9bWImGNL3Wz4a6Bj84/djanogLaTjD16Ih2PogdbUGMWnsxPpuWSeYtVPgYPw3l7 jYHpHhaeqcPyZ9D+aFdV0YexafexASP80u+0mnao5yvAKOFjwwQU/tywUImr5VEd VNBGCZTQy+bfExo2i2Mp0j4Et9RTv+AK4XIZo2HWJNEqVH+w0zGFI1+byQ/LH11P zidOo2dGdGPyth7wLs7GSdlx0f2b+cI6nH/evi/jggwvb/pYJXrQhOVRcdFnl6Xw 92++0wrNXM5HZHW9OXzOqNzz9PAMLJ/i6yDdN3fej14Unq3XeXeXRgJpiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCjQ8ErZwraMeDffPbvF2Fx6uYiSMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbWdXvBfw Pdq01CF8WcvUBpw5rZb3S74+JKHUc/fejJ91K/7SG4ox10RS5bGrtR9ryXt05yj2 9dBm63H/Ux9IL0BiiV0NO5jk+K6qza/w3lX3pmYX5qSbBatCTrJ8RAdbCWTUWfsY 4IbOYu16/Sxf6v5lA+x7Dsy0jYBNgnOi8TpM8JAYDNLcs9T4uLMabx1C05KV/qeG adK/fY2wmtylJBvAekuT0uCdiz3EYrXnoVpYW5DsPzedI9rX+cX/WmaY+5lC/rTQ Ax8BLNu28VmIr2yH8vdazLfy3JEBeS2UdeIQhE95lPcTo24hodiA+d4H0Zp8RSD6 pv4mIhPVziZUAQ== -----END CERTIFICATE-----Generated at Sun Nov 30 12:36:46 2025 by rpki-client