This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: xmaY4LhJqZhdQcxxx1nqvQzXAHKb3SCZdy+iyuCwkxI= Subject key identifier: 76:10:A4:B6:F3:D4:A5:D8:C1:CD:12:B3:92:B6:52:8A:72:63:CC:96 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B864E9C53B02AFF9E06303F8F25B7FD17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FFB Signing time: Sun 04 Jan 2026 00:00:57 +0000 Manifest this update: Sun 04 Jan 2026 00:00:57 +0000 Manifest next update: Mon 05 Jan 2026 00:00:57 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: IQ4E09d6AK/m/c0JocQlWCPNNLuk2PKTKGzeOCKyEEI=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: ZxfgrYdrY89o-a2LS8GaW93TD4Y.roa (hash: oyxsPNLoW2aLavfIhXORGRPykTN2rEtCwJdPmfe1EN0=) 9: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 10: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 11: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 12: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 13: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 Jan 2026 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:86:4e:9c:53:b0:2a:ff:9e:06:30:3f:8f:25:b7:fd:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 4 00:00:57 2026 GMT Not After : Jan 5 00:00:57 2026 GMT Subject: CN=7610a4b6f3d4a5d8c1cd12b392b6528a7263cc96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:de:ac:d0:d2:e3:2e:2e:e6:06:27:a7:23:f4: 86:8c:8b:7b:08:22:a3:8a:7c:b8:2a:8e:5f:30:ea: 78:32:ea:f0:09:7c:b8:52:f3:df:a2:7d:61:ea:2f: 01:3d:d0:64:cb:25:07:67:30:b1:59:c9:ff:f5:24: dc:25:fa:05:15:fb:f4:0a:f3:25:e2:e7:8a:f8:bb: da:72:bf:d0:10:12:ed:49:f0:fb:43:27:0f:d7:8f: 62:56:a2:c1:e5:bd:ca:f9:d4:5c:73:0b:3f:72:98: c2:3c:68:4d:ff:4d:64:5c:9d:7a:c9:88:a7:84:be: 96:4a:92:da:34:21:6d:8f:20:95:9c:28:7f:92:2a: 52:86:1f:d2:77:cd:10:f6:8c:7f:d2:38:15:5e:9c: 52:fd:83:e2:ac:d6:02:19:00:9f:48:44:d6:60:14: 58:9e:a8:7c:49:ae:c9:f0:f5:e6:5c:8b:0c:1b:1f: 8c:86:81:56:e3:46:a1:d8:b3:96:96:ba:79:be:80: a3:6e:d6:c0:55:fb:3e:70:bc:25:d0:07:5d:98:93: b2:e9:60:de:ab:ea:82:96:ee:c8:a0:2a:c3:eb:c7: b8:21:bb:82:27:53:f2:5e:68:43:11:23:a1:f9:e1: 1f:44:d4:e3:aa:0b:e0:1e:21:de:1c:6e:ea:2e:17: d7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:10:A4:B6:F3:D4:A5:D8:C1:CD:12:B3:92:B6:52:8A:72:63:CC:96 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5e:13:a8:f9:b3:93:e2:0e:55:4c:42:ed:39:a6:d3:21:4d: f9:3e:b7:a7:66:3d:91:f7:a1:07:77:84:aa:68:cc:07:21:dd: b3:db:65:8e:f9:60:a2:07:53:8e:92:20:fd:f8:30:e3:a1:6e: 44:38:a0:2b:f5:72:e1:91:55:f9:c0:76:f4:fc:6c:42:57:e3: 19:d9:15:03:96:e8:d5:40:ef:9b:49:14:78:76:c5:0a:47:b0: 27:0f:0d:f1:b9:4e:c1:89:fc:23:8e:de:5f:18:dd:6a:07:a9: ad:bc:17:b4:5c:15:a2:25:5f:84:cb:a8:a2:05:1f:02:7f:f9: 3f:e6:d0:90:6f:cd:4a:2d:a4:a2:ab:b2:a2:21:fb:19:ea:8b: ea:24:e4:f3:cb:d0:e1:7a:6d:48:f5:07:38:ce:18:f1:d8:70: 59:30:f1:3a:89:e2:2d:23:f0:3b:23:c2:fb:97:2b:77:5f:6c: f7:a7:2a:9f:ca:09:2c:28:2f:e1:d1:ff:4f:36:9e:d4:1b:04: 21:53:13:09:20:9f:7d:0e:b3:a6:3c:60:8f:ba:a9:4c:b7:73: ed:72:fe:7c:7a:f7:55:44:dd:cf:ac:93:82:f1:fd:a5:45:21: 24:e6:82:12:6e:50:2a:03:1e:c2:ea:a6:64:03:4d:73:07:d5: fa:65:95:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuGTpxTsCr/ngYwP48lt/0XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTA0MDAwMDU3WhcNMjYwMTA1MDAwMDU3WjAzMTEwLwYDVQQD Eyg3NjEwYTRiNmYzZDRhNWQ4YzFjZDEyYjM5MmI2NTI4YTcyNjNjYzk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj96s0NLjLi7mBienI/SGjIt7CCKj iny4Ko5fMOp4MurwCXy4UvPfon1h6i8BPdBkyyUHZzCxWcn/9STcJfoFFfv0CvMl 4ueK+Lvacr/QEBLtSfD7QycP149iVqLB5b3K+dRccws/cpjCPGhN/01kXJ16yYin hL6WSpLaNCFtjyCVnCh/kipShh/Sd80Q9ox/0jgVXpxS/YPirNYCGQCfSETWYBRY nqh8Sa7J8PXmXIsMGx+MhoFW40ah2LOWlrp5voCjbtbAVfs+cLwl0AddmJOy6WDe q+qClu7IoCrD68e4IbuCJ1PyXmhDESOh+eEfRNTjqgvgHiHeHG7qLhfXaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYQpLbz1KXYwc0Ss5K2UopyY8yWMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATV4TqPmz k+IOVUxC7Tmm0yFN+T63p2Y9kfehB3eEqmjMByHds9tljvlgogdTjpIg/fgw46Fu RDigK/Vy4ZFV+cB29PxsQlfjGdkVA5bo1UDvm0kUeHbFCkewJw8N8blOwYn8I47e XxjdageprbwXtFwVoiVfhMuoogUfAn/5P+bQkG/NSi2koquyoiH7GeqL6iTk88vQ 4XptSPUHOM4Y8dhwWTDxOoniLSPwOyPC+5crd19s96cqn8oJLCgv4dH/Tzae1BsE IVMTCSCffQ6zpjxgj7qpTLdz7XL+fHr3VUTdz6yTgvH9pUUhJOaCEm5QKgMewuqm ZANNcwfV+mWVew== -----END CERTIFICATE-----Generated at Sun Jan 4 05:53:57 2026 by rpki-client