This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: NVu4CBJ52p2zJT4IsI/EucUixkb+98BS1ooCcmRjrQM= Subject key identifier: F8:F1:7F:71:B3:85:BD:6A:E5:0D:F1:6C:4A:D8:63:CF:51:13:C8:46 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BF8763F444E6FE4A888EDE15458884408 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1037 Signing time: Mon 26 Jan 2026 04:00:57 +0000 Manifest this update: Mon 26 Jan 2026 04:00:57 +0000 Manifest next update: Tue 27 Jan 2026 04:00:57 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 8jxDbwWi2aNz981EqMuPUbfaDmD+wrRKKwHV4/qRmpk=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:3f:44:4e:6f:e4:a8:88:ed:e1:54:58:88:44:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 26 04:00:57 2026 GMT Not After : Jan 27 04:00:57 2026 GMT Subject: CN=f8f17f71b385bd6ae50df16c4ad863cf5113c846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:ae:53:0c:cc:bf:99:2e:db:88:57:bd:7b: 37:cd:a9:5d:33:ba:2f:5b:86:e6:f5:82:e3:17:6c: 13:ca:53:5e:7e:a3:97:d9:fe:6c:bf:af:17:0e:70: 83:53:57:06:70:e6:a4:1d:c0:3b:be:03:92:e1:c0: 4c:ed:8f:a0:2f:d1:e8:c7:67:85:70:e9:93:c2:77: e3:af:42:7b:cb:4b:4f:6d:75:b0:79:85:c7:20:61: 9c:ff:bb:b9:f6:77:2d:1f:cb:07:9e:74:69:a4:46: 69:f7:8e:0e:60:73:4a:69:d0:12:04:fb:e2:fa:08: 5d:88:0e:bb:d1:5b:00:4a:90:9b:a0:b3:70:45:63: 36:f5:95:d4:f6:85:60:7f:2c:54:af:6c:43:b1:c4: 6d:6e:fd:eb:cb:5e:53:31:77:b6:ad:f1:ac:00:cb: 5e:ba:b9:11:94:06:23:c4:f2:d4:15:25:d2:ee:4f: 3c:31:e7:54:e9:c6:f1:f3:a8:d8:be:9b:44:e9:91: a7:cb:b2:71:17:a7:53:81:0d:c3:e3:49:e4:b3:64: 8f:ca:fb:ac:d9:66:fc:ea:91:4f:10:82:5d:4c:43: c1:68:b0:4b:d7:41:2e:c2:5d:8f:62:c7:f2:0e:ef: 68:7c:ec:02:87:3d:6e:ba:c8:42:35:0a:97:72:b9: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F1:7F:71:B3:85:BD:6A:E5:0D:F1:6C:4A:D8:63:CF:51:13:C8:46 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:03:fa:a4:8b:33:7b:f7:16:b9:1d:3f:44:17:4e:eb:95:26: 1d:6c:03:af:8f:ce:b2:05:1d:99:c0:f9:80:d2:7e:ca:48:f3: f0:59:42:f9:b3:1b:0a:0d:0b:d0:e5:12:47:a8:e7:65:25:12: 29:de:69:62:5f:d6:54:28:f9:60:ff:b2:6b:4e:0d:96:45:74: 20:79:ff:65:cb:c9:82:58:6e:96:b5:8a:f4:83:b4:08:c7:74: d7:10:7d:46:68:f8:d0:82:42:7b:a3:01:d9:87:63:c6:5f:94: 45:ea:18:07:cc:4d:ee:db:b3:3e:96:27:09:b9:ad:ba:ab:fb: ab:a7:7b:ba:cb:6b:71:91:25:5f:b4:19:37:9b:43:e5:84:9e: 14:92:24:e4:80:dc:3a:2b:a4:77:63:2e:ec:d7:81:7a:20:91: 2d:06:12:4a:33:f1:ef:1f:ec:c0:fe:13:b2:17:5f:7f:6d:43: 92:4a:42:1c:6f:41:b7:ce:58:48:a4:af:7a:1c:f8:e1:0d:e5: 54:c1:0d:d0:60:54:1e:5e:13:aa:e8:5f:21:c7:d2:3f:20:6a: fb:ad:2e:ff:00:d8:42:36:d4:73:02:d3:33:c9:3e:38:66:66: 06:95:7c:c9:62:7b:a5:0a:32:55:53:8f:2b:0f:7d:eb:d5:a7: 4f:c8:a3:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dj9ETm/kqIjt4VRYiEQIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI2MDQwMDU3WhcNMjYwMTI3MDQwMDU3WjAzMTEwLwYDVQQD EyhmOGYxN2Y3MWIzODViZDZhZTUwZGYxNmM0YWQ4NjNjZjUxMTNjODQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNauUwzMv5ku24hXvXs3zaldM7ov W4bm9YLjF2wTylNefqOX2f5sv68XDnCDU1cGcOakHcA7vgOS4cBM7Y+gL9Hox2eF cOmTwnfjr0J7y0tPbXWweYXHIGGc/7u59nctH8sHnnRppEZp944OYHNKadASBPvi +ghdiA670VsASpCboLNwRWM29ZXU9oVgfyxUr2xDscRtbv3ry15TMXe2rfGsAMte urkRlAYjxPLUFSXS7k88MedU6cbx86jYvptE6ZGny7JxF6dTgQ3D40nks2SPyvus 2Wb86pFPEIJdTEPBaLBL10Euwl2PYsfyDu9ofOwChz1uushCNQqXcrnWLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjxf3Gzhb1q5Q3xbErYY89RE8hGMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvwP6pIsz e/cWuR0/RBdO65UmHWwDr4/OsgUdmcD5gNJ+ykjz8FlC+bMbCg0L0OUSR6jnZSUS Kd5pYl/WVCj5YP+ya04NlkV0IHn/ZcvJglhulrWK9IO0CMd01xB9Rmj40IJCe6MB 2Ydjxl+UReoYB8xN7tuzPpYnCbmtuqv7q6d7ustrcZElX7QZN5tD5YSeFJIk5IDc Oiukd2Mu7NeBeiCRLQYSSjPx7x/swP4Tshdff21DkkpCHG9Bt85YSKSvehz44Q3l VMEN0GBUHl4TquhfIcfSPyBq+60u/wDYQjbUcwLTM8k+OGZmBpV8yWJ7pQoyVVOP Kw9969WnT8ij4g== -----END CERTIFICATE-----Generated at Mon Jan 26 11:46:58 2026 by rpki-client