This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File:                     Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier:          fa8++Bht8PT3LfL5hoFcAWyDI5fMUMl0Fn8+muAMWPc=
Subject key identifier:   A4:08:83:5B:33:C4:06:F7:D0:0B:FF:6F:FA:9F:29:38:3D:BC:87:59
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer:       /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial:       019BCDFA10154A9E87D76785C2E06CC7DEBF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest number:          1021
Signing time:             Sat 17 Jan 2026 22:01:15 +0000
Manifest this update:     Sat 17 Jan 2026 22:01:15 +0000
Manifest next update:     Sun 18 Jan 2026 22:01:15 +0000
Files and hashes:         1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=)
                          2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=)
                          3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=)
                          4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=)
                          5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=)
                          6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: oYiTlt7nb1LQjBfUet3NT6Hxxiomu7I+3vGidG6sObM=)
                          7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=)
                          8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=)
                          9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=)
                          10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=)
                          11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=)
                          12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 18 Jan 2026 21:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:cd:fa:10:15:4a:9e:87:d7:67:85:c2:e0:6c:c7:de:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
        Validity
            Not Before: Jan 17 22:01:15 2026 GMT
            Not After : Jan 18 22:01:15 2026 GMT
        Subject: CN=a408835b33c406f7d00bff6ffa9f29383dbc8759
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c1:2d:91:f7:c1:3c:08:f3:c2:c9:f1:88:e9:
                    f2:6b:9d:cc:d7:ce:67:84:8b:47:fa:09:fd:b8:dd:
                    fc:ab:41:1e:de:d7:fe:6e:fb:0d:e9:05:8a:8c:43:
                    0c:76:29:3f:bc:dc:3c:08:bb:92:25:cf:09:87:af:
                    c8:02:e1:b1:6e:9b:5a:ee:07:39:e2:5f:be:a6:5d:
                    ff:31:6c:80:4d:06:92:2a:8f:46:d5:f1:58:5b:56:
                    ce:1d:f1:05:b7:cd:29:a4:de:3e:02:48:b8:8e:49:
                    c9:0c:d5:43:f4:90:24:35:1e:2c:27:a9:4f:ec:47:
                    8d:ed:cb:29:bd:c2:2d:a1:2a:c8:c7:d9:af:6e:c3:
                    1e:cf:69:24:cb:a9:03:07:f9:4d:44:16:7c:b7:1a:
                    c2:1f:36:00:6b:f3:25:23:5e:ec:02:59:2c:72:5d:
                    ac:b6:cf:ff:59:d1:2d:07:42:05:e2:9c:3c:2d:f7:
                    de:6c:e8:df:23:fb:ec:a6:21:5e:aa:f4:74:30:20:
                    9e:86:0f:b4:a0:ee:ec:e2:1e:3b:1e:b5:d5:44:19:
                    2f:6b:7b:6b:62:d0:db:e8:ad:12:ac:e0:44:57:33:
                    02:0a:f7:f2:ef:4b:22:32:ae:be:6a:e2:99:89:58:
                    0f:e1:1c:7e:16:0f:f5:bf:4f:dd:40:a2:e1:f5:58:
                    3a:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:08:83:5B:33:C4:06:F7:D0:0B:FF:6F:FA:9F:29:38:3D:BC:87:59
            X509v3 Authority Key Identifier:
                keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:57:03:e0:91:36:d0:6f:7d:e5:d5:ac:e1:ff:6d:c8:08:70:
         14:fb:90:e0:5f:a9:9e:c4:b1:8d:38:97:f5:c9:a5:91:e7:e4:
         cb:fc:a8:fc:ee:95:3d:62:3d:03:77:4f:b7:37:e8:e8:ab:b6:
         7a:c8:80:6c:99:1d:7a:7f:e2:bb:4e:f2:e2:d0:19:3a:6e:f4:
         23:dd:38:f7:d7:a6:6d:31:e4:02:0f:f3:b4:b1:f6:7c:f9:fa:
         9c:ea:88:9c:14:79:f3:16:f2:e4:eb:53:0b:46:da:31:7c:d1:
         84:8d:5e:47:d9:4a:66:37:92:b8:98:61:f9:9c:f6:43:96:34:
         f0:b2:6b:a0:af:89:1a:5c:f8:12:7d:c5:74:c1:16:a1:16:13:
         11:9d:ea:d8:5e:3c:93:15:23:ef:ca:96:cc:5f:bd:2d:91:61:
         b0:8a:20:77:09:09:82:17:ee:c4:7b:b9:2f:39:2a:ca:69:cb:
         56:8c:35:94:20:40:32:c3:2b:42:44:1f:c0:6c:8d:a6:51:7d:
         80:0e:1e:29:6e:db:d8:5a:f9:e1:81:4e:cc:41:71:38:99:5f:
         78:b2:1e:b5:d3:53:b7:2a:c4:b5:dc:e8:8b:e9:e2:fd:bf:a4:
         2a:5d:36:2f:ae:4b:24:4b:5d:7b:c0:05:ba:0e:af:d2:d9:ac:
         a0:82:d9:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 18 04:11:22 2026 by rpki-client