This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: cuBOhAOliHrTRSCdreWZLYvIaqBJbOOxCjw97ExOBTg= Subject key identifier: 37:04:26:72:38:88:0D:AA:88:AE:B2:51:F7:7A:B5:89:EA:6A:62:65 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019BFC5372C9A79A2CDBD67CEAB197CCD196 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 1039 Signing time: Mon 26 Jan 2026 22:01:25 +0000 Manifest this update: Mon 26 Jan 2026 22:01:25 +0000 Manifest next update: Tue 27 Jan 2026 22:01:25 +0000 Files and hashes: 1: 0fq1gRYIVP9dTgOiD1oeMJEo_KQ.roa (hash: FJ5OMI2l4qRYLCvuHNSAsXUeDfS57Wh9X15C8/hlneg=) 2: 1nqC6xnrGeiiCsIQzeNoBlULrNs.roa (hash: M8+11gt77TdIMEMeidkDUFD2MIHTpwuA0Z3lO3wayfw=) 3: 5G7T_ta5GRY-vaF3PWEHkN7X3lY.roa (hash: E1pa9lzYctomz2Si/AVGz+D9ZaUziuZd2hK3Cs63LZA=) 4: 8PXruX0NUFmuFkbr5FDpoooVvXM.roa (hash: XPZ+iCpyreRyaJ/LqZJwBerjbtvxZcmxEnaEbiUms6Q=) 5: CgUHKiRsRmzYx7ZOCnuOhc6JuzM.roa (hash: EQlw+q9jnebrItocrNjEuHmz2ku3rbdvtehDLXwsagY=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: pPcqLFo800GZrMjGhptPycEnlefuTyixf1F1a6O47PM=) 7: Qh6w5R4OY3LRFJlmxw3GEUIorWE.roa (hash: 2TZvTfqZGN/7yXjhJzZ95o9BQTNHk2HmhR+25FxXV1c=) 8: _bCrFb7VC4CCd9K-Wcu_5V2bR1U.roa (hash: 43+13/xiT3wMEpfoLe4Sy/ExJmNhgvNKxVgEkujyVA8=) 9: byxTcbn0R_ABtndiznyuziTHgi8.roa (hash: T2sYxuovHiigJvci2db9Vhz7uwGqQKQmouYx6Ud5yM0=) 10: hPKkrsj0FX97l8P5hhDoNCNjeqE.roa (hash: pR+tDQOXzEiJ05cgUzQGiwCXhXXy4kL5jERdGJNHgJ4=) 11: lGkHGhpYOdTznT_yaE3ovjGf5mQ.roa (hash: 4SHYfC7Bcu60W7bkjANyd/nQPdjStJcUQUz5MyP0/xM=) 12: xUyp5z9ki9x2dJcpNDLQqnXtfXs.roa (hash: OB5oPZJI1/ir+viyC2KaHJjQwYX8WdLDSXZSic2R5Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:53:72:c9:a7:9a:2c:db:d6:7c:ea:b1:97:cc:d1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Jan 26 22:01:25 2026 GMT Not After : Jan 27 22:01:25 2026 GMT Subject: CN=3704267238880daa88aeb251f77ab589ea6a6265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:04:e3:05:e8:6c:e5:c8:7a:9f:e2:6a:ce:24: b7:d1:72:e2:f1:16:39:0a:96:82:13:49:c8:15:de: 24:2a:0b:b9:d1:e4:6a:e5:22:2d:9b:fd:de:14:db: d1:cd:2a:28:97:6e:b8:d6:bc:34:1b:6a:2d:a2:10: c0:19:dc:23:2e:c7:63:6f:76:61:a0:ed:a4:4c:31: 4b:c2:b6:d4:07:20:57:bc:4c:a3:ab:ac:3c:87:29: f4:66:80:a4:19:5d:05:8e:80:c4:a4:7f:95:cf:e1: bf:27:4f:df:b5:85:7c:f8:85:21:7d:ed:f5:87:b0: dd:49:9e:50:ee:f4:e8:31:d9:37:94:25:20:d1:c3: 22:ae:27:a9:fa:21:23:6e:06:e5:4b:01:bd:64:2c: 09:c2:af:fb:7e:f0:a1:91:20:cd:de:a8:e1:4c:d7: 43:e6:91:ba:88:e6:44:64:70:01:b4:17:3c:00:b4: eb:cc:a6:48:53:d1:d2:b2:7d:27:dc:bd:cb:59:0b: 58:66:68:9d:1c:65:6b:7c:01:47:a6:01:b1:bb:a7: 07:62:1f:c7:a9:2e:d3:f4:d5:e9:f3:c1:94:7f:f0: 09:08:bc:8e:24:04:b7:3f:73:c3:da:1a:f5:7b:e7: 13:70:84:65:bf:95:81:48:d5:d2:7a:86:1d:f9:ad: 3c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:04:26:72:38:88:0D:AA:88:AE:B2:51:F7:7A:B5:89:EA:6A:62:65 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:bd:61:e0:9f:3f:12:8a:31:57:64:b3:9a:bb:b3:5d:af:82: 40:10:e8:6a:09:ef:fa:f6:56:f1:5f:44:de:ef:7b:ea:bc:31: 10:8c:4f:d6:50:56:c2:88:87:7e:84:ff:d2:7f:c7:00:10:69: c2:f8:8c:70:f6:98:06:80:84:46:2d:cb:60:0e:bd:fc:1e:1a: eb:2c:5d:7f:01:3c:93:f6:ee:28:46:b3:82:c4:10:0c:d0:63: 7f:40:aa:9a:fa:53:5c:72:f8:50:e6:96:96:02:7a:8d:6e:65: e8:5c:0f:da:54:82:eb:15:10:ca:4d:4e:24:65:9d:b4:9d:40: 70:e8:aa:fc:82:ac:a4:6e:e2:7c:64:28:dd:61:9c:de:7f:db: 96:50:78:9e:87:ae:6f:08:4e:c7:a9:77:ec:ca:7b:df:21:3a: 81:9b:b5:43:c4:80:36:55:76:bd:2d:54:fb:fb:12:0e:bb:ef: 54:f3:c5:f7:84:d0:b7:ec:3a:cf:70:12:20:96:99:89:58:dc: c9:eb:9c:68:81:a9:29:ba:b2:d2:8a:25:51:25:9e:96:8e:df: ba:fe:8f:44:da:03:2e:43:75:02:43:05:da:00:22:a8:78:e0: 7c:55:38:a3:5d:ba:57:a5:34:bb:99:a8:e4:6e:94:00:d2:cf: aa:d1:f4:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8U3LJp5os29Z86rGXzNGWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjYwMTI2MjIwMTI1WhcNMjYwMTI3MjIwMTI1WjAzMTEwLwYDVQQD EygzNzA0MjY3MjM4ODgwZGFhODhhZWIyNTFmNzdhYjU4OWVhNmE2MjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiwTjBehs5ch6n+JqziS30XLi8RY5 CpaCE0nIFd4kKgu50eRq5SItm/3eFNvRzSool2641rw0G2otohDAGdwjLsdjb3Zh oO2kTDFLwrbUByBXvEyjq6w8hyn0ZoCkGV0FjoDEpH+Vz+G/J0/ftYV8+IUhfe31 h7DdSZ5Q7vToMdk3lCUg0cMiriep+iEjbgblSwG9ZCwJwq/7fvChkSDN3qjhTNdD 5pG6iOZEZHABtBc8ALTrzKZIU9HSsn0n3L3LWQtYZmidHGVrfAFHpgGxu6cHYh/H qS7T9NXp88GUf/AJCLyOJAS3P3PD2hr1e+cTcIRlv5WBSNXSeoYd+a08nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcEJnI4iA2qiK6yUfd6tYnqamJlMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATL1h4J8/ EooxV2SzmruzXa+CQBDoagnv+vZW8V9E3u976rwxEIxP1lBWwoiHfoT/0n/HABBp wviMcPaYBoCERi3LYA69/B4a6yxdfwE8k/buKEazgsQQDNBjf0CqmvpTXHL4UOaW lgJ6jW5l6FwP2lSC6xUQyk1OJGWdtJ1AcOiq/IKspG7ifGQo3WGc3n/bllB4noeu bwhOx6l37Mp73yE6gZu1Q8SANlV2vS1U+/sSDrvvVPPF94TQt+w6z3ASIJaZiVjc yeucaIGpKbqy0oolUSWelo7fuv6PRNoDLkN1AkMF2gAiqHjgfFU4o126V6U0u5mo 5G6UANLPqtH02g== -----END CERTIFICATE-----Generated at Mon Jan 26 23:48:08 2026 by rpki-client