This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 5ONeoHkCeQLMXLkqUwZVjHD7fEX+/pX1N4H4EZNmxXc= Subject key identifier: E2:A3:96:09:55:B9:20:54:3F:55:18:1B:0B:02:E0:43:C2:A6:E0:DD Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B397CEA23F8D861972425FAE26D359F91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FD3 Signing time: Sat 20 Dec 2025 02:00:46 +0000 Manifest this update: Sat 20 Dec 2025 02:00:46 +0000 Manifest next update: Sun 21 Dec 2025 02:00:46 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: hJqvrZmV1xEct1M3TNB0YWrapKNWUI2iYdbV8gewWuo=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7c:ea:23:f8:d8:61:97:24:25:fa:e2:6d:35:9f:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 20 02:00:46 2025 GMT Not After : Dec 21 02:00:46 2025 GMT Subject: CN=e2a3960955b920543f55181b0b02e043c2a6e0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:15:75:33:09:b7:87:e1:ab:ae:d2:55:85:74: 0c:ee:e3:0b:cb:9d:33:3c:a5:61:cf:f3:d7:2a:7f: ee:dd:86:86:9a:6c:ce:1e:b1:6a:7c:57:25:32:f4: 92:fe:74:ea:48:af:de:35:3e:b8:53:d4:3e:19:ff: 4c:ba:86:ff:70:d9:0c:83:5f:d4:d5:49:1b:bc:7f: 0f:e2:5e:31:45:0e:fe:e3:c7:b1:4b:28:87:55:20: e3:84:eb:91:d8:6c:fd:24:87:62:25:3d:ff:1c:45: 93:c5:e5:7e:84:c6:15:82:ba:52:5d:a9:79:0f:63: f1:eb:17:a1:e3:ca:e2:fa:c7:f9:2f:4c:97:04:65: b3:af:01:5c:6e:a0:8a:3b:37:11:e2:29:2d:46:57: 34:38:9f:50:41:23:6d:7a:67:83:8c:41:c0:6d:ec: 98:60:1f:7d:60:54:de:ee:ed:19:b0:05:77:ce:86: 52:ef:52:55:17:10:d5:96:7d:b8:d2:f5:2c:72:02: 4f:c5:2e:52:a8:e0:8f:05:a4:5a:9b:66:b5:59:1d: a1:92:55:73:c2:fb:f7:23:ba:64:2f:92:70:82:ab: da:ff:db:a4:44:a2:39:e9:2e:07:2f:12:11:e0:a0: ba:98:33:dc:ef:0c:78:8a:58:85:49:dc:aa:93:7a: 1a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:A3:96:09:55:B9:20:54:3F:55:18:1B:0B:02:E0:43:C2:A6:E0:DD X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:1d:33:9c:2a:69:f6:f3:20:8f:61:f4:e8:f2:fe:6d:65:0e: f8:dd:03:76:61:ad:85:1e:ae:86:df:5e:2d:af:36:2a:6b:52: 08:99:19:54:43:4b:27:12:ff:2f:2f:03:94:28:08:39:83:d6: 4e:aa:a9:20:34:de:09:76:4d:63:cd:04:8a:d3:8c:69:4c:ed: 09:fa:48:5f:cc:f3:27:0c:1c:fa:ea:9d:bc:db:75:ba:16:8e: e6:b3:6c:d7:8b:c1:c1:9d:30:6c:b8:82:e0:9e:90:8f:a0:c4: 07:a1:aa:7b:b5:d0:0f:1a:d4:5d:fb:a6:8a:34:d8:1b:4c:2e: eb:62:d0:b1:d8:7b:11:bf:67:13:0e:f9:bd:24:6e:fc:2d:94: 67:d6:89:00:73:09:24:e7:ac:68:6f:29:17:03:00:7c:e0:2f: 70:33:f4:c9:67:ca:7e:82:eb:a4:23:cb:e6:f7:07:1b:ec:05: 29:5e:92:0b:07:33:13:32:1c:75:0e:85:78:86:b5:da:22:1a: d4:85:cd:98:86:9a:df:fe:dd:2d:c8:54:44:68:03:66:48:df: e7:74:63:f1:e5:b4:82:bf:fb:8b:9a:b9:84:e6:50:28:30:93: 25:0d:7c:77:bb:40:e0:6f:08:7f:b8:1b:04:50:c8:77:b5:45: 84:61:da:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fOoj+NhhlyQl+uJtNZ+RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjIwMDIwMDQ2WhcNMjUxMjIxMDIwMDQ2WjAzMTEwLwYDVQQD EyhlMmEzOTYwOTU1YjkyMDU0M2Y1NTE4MWIwYjAyZTA0M2MyYTZlMGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3RV1Mwm3h+GrrtJVhXQM7uMLy50z PKVhz/PXKn/u3YaGmmzOHrFqfFclMvSS/nTqSK/eNT64U9Q+Gf9Muob/cNkMg1/U 1UkbvH8P4l4xRQ7+48exSyiHVSDjhOuR2Gz9JIdiJT3/HEWTxeV+hMYVgrpSXal5 D2Px6xeh48ri+sf5L0yXBGWzrwFcbqCKOzcR4iktRlc0OJ9QQSNtemeDjEHAbeyY YB99YFTe7u0ZsAV3zoZS71JVFxDVln240vUscgJPxS5SqOCPBaRam2a1WR2hklVz wvv3I7pkL5Jwgqva/9ukRKI56S4HLxIR4KC6mDPc7wx4iliFSdyqk3oaRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKjlglVuSBUP1UYGwsC4EPCpuDdMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWx0znCpp 9vMgj2H06PL+bWUO+N0DdmGthR6uht9eLa82KmtSCJkZVENLJxL/Ly8DlCgIOYPW TqqpIDTeCXZNY80EitOMaUztCfpIX8zzJwwc+uqdvNt1uhaO5rNs14vBwZ0wbLiC 4J6Qj6DEB6Gqe7XQDxrUXfumijTYG0wu62LQsdh7Eb9nEw75vSRu/C2UZ9aJAHMJ JOesaG8pFwMAfOAvcDP0yWfKfoLrpCPL5vcHG+wFKV6SCwczEzIcdQ6FeIa12iIa 1IXNmIaa3/7dLchURGgDZkjf53Rj8eW0gr/7i5q5hOZQKDCTJQ18d7tA4G8If7gb BFDId7VFhGHa1Q== -----END CERTIFICATE-----Generated at Sat Dec 20 08:17:46 2025 by rpki-client