This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: 8go3rfagiK6lP53KsI0pPA9WCxNTgrCttwMcNpokZns= Subject key identifier: 19:53:05:88:C2:1D:09:D1:43:02:BC:67:97:48:E0:3B:C2:1E:26:01 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019AF0BEE950EE5524AA1979F6E197DB0E1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FAC Signing time: Fri 05 Dec 2025 23:00:34 +0000 Manifest this update: Fri 05 Dec 2025 23:00:34 +0000 Manifest next update: Sat 06 Dec 2025 23:00:34 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gl-ggUsVmmpqDcNPHMzYBGmrMA8.roa (hash: xk0/xdnScysXdBoKt0IBKKmaEmn7cglicebHN1EZ2bo=) 6: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: kN+r3t+I4N9wbixJ62QlA3IoudRLKv+lLP/TfeR4/tU=) 7: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 8: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 9: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 10: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 11: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 12: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:be:e9:50:ee:55:24:aa:19:79:f6:e1:97:db:0e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 5 23:00:34 2025 GMT Not After : Dec 6 23:00:34 2025 GMT Subject: CN=19530588c21d09d14302bc679748e03bc21e2601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:a8:15:f0:b5:b1:a1:ec:ba:e7:34:d8:5d:5b: fe:51:9a:dc:ff:b9:59:5c:c6:2d:83:75:03:11:dd: cf:f6:38:cd:14:7f:0e:a5:02:83:4d:05:53:77:c7: 14:5f:68:a5:ff:dc:22:56:83:52:8b:58:a0:7f:6c: b9:56:3c:63:70:2b:64:22:e8:85:52:84:92:57:60: 2d:0c:e7:94:19:e6:21:d7:4d:88:07:06:8b:c4:28: c2:65:33:9c:54:91:c6:9a:82:42:d8:d4:13:91:a0: d2:71:b3:91:60:5f:b4:fb:73:64:1e:95:18:7e:09: d2:d5:31:33:8c:36:b2:7b:a5:26:3b:1d:f1:d9:66: cc:4e:84:be:1f:99:d3:df:4c:75:3a:f2:5b:2d:fa: 7b:6a:0f:16:fd:76:de:74:44:13:d5:c2:4e:4a:76: 26:08:2d:f4:28:e6:73:ee:6f:ea:32:0e:eb:e5:82: da:12:f6:36:9d:2e:6a:0b:af:dc:65:60:81:d3:bb: 4d:b8:d5:df:25:18:7f:61:2f:da:9b:c9:1c:61:63: 36:4c:56:42:1a:74:93:8e:64:77:e5:e2:f4:8b:b3: e8:36:72:cd:60:53:9c:d1:81:02:37:3f:48:cb:cf: cf:59:08:2f:ce:18:8b:1a:cd:da:94:5b:a5:15:b7: c2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:53:05:88:C2:1D:09:D1:43:02:BC:67:97:48:E0:3B:C2:1E:26:01 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:98:89:fa:94:c5:1e:fd:4f:28:2c:8b:46:0a:29:66:e3:71: 2c:ce:2b:f5:33:74:c0:c8:64:19:b2:6a:41:33:00:2c:b3:82: d8:57:07:88:2f:a0:25:07:a8:f1:cd:b0:13:f8:88:ae:42:5a: 87:96:9f:f1:a3:10:ab:78:86:23:8e:d4:a2:a0:ec:59:42:4d: da:e1:8c:d4:64:33:d4:38:7c:22:57:9a:04:72:d9:03:53:b4: d5:64:a3:8a:78:3e:71:6c:08:63:b8:34:84:92:f4:c1:6d:b1: a2:91:9e:6c:a5:00:df:49:86:51:8c:b2:c6:38:5d:bc:a9:2d: f3:f9:9a:f3:fd:d5:bd:e2:ce:2a:ee:f0:2f:d8:a0:6b:c9:a3: 9c:18:92:09:20:01:f7:d6:7d:10:2e:07:7c:77:96:7d:96:bf: fb:c1:3d:27:96:25:a1:3d:80:a1:c6:f2:ce:c6:9b:aa:17:48: 46:cf:9a:85:42:2f:2f:6a:fd:ef:81:a7:fb:0b:b1:01:b5:f2: 95:3f:33:23:62:7a:51:55:e5:42:dc:30:92:98:0c:68:80:cd: f4:68:61:5a:51:8c:40:b8:cc:e8:bb:42:09:1c:cb:13:0f:74: 7b:8f:2a:f8:4c:a1:b8:ce:5f:57:80:a9:f7:aa:21:df:6b:2f: 0f:d9:be:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvulQ7lUkqhl59uGX2w4cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjA1MjMwMDM0WhcNMjUxMjA2MjMwMDM0WjAzMTEwLwYDVQQD EygxOTUzMDU4OGMyMWQwOWQxNDMwMmJjNjc5NzQ4ZTAzYmMyMWUyNjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiqgV8LWxoey65zTYXVv+UZrc/7lZ XMYtg3UDEd3P9jjNFH8OpQKDTQVTd8cUX2il/9wiVoNSi1igf2y5VjxjcCtkIuiF UoSSV2AtDOeUGeYh102IBwaLxCjCZTOcVJHGmoJC2NQTkaDScbORYF+0+3NkHpUY fgnS1TEzjDaye6UmOx3x2WbMToS+H5nT30x1OvJbLfp7ag8W/XbedEQT1cJOSnYm CC30KOZz7m/qMg7r5YLaEvY2nS5qC6/cZWCB07tNuNXfJRh/YS/am8kcYWM2TFZC GnSTjmR35eL0i7PoNnLNYFOc0YECNz9Iy8/PWQgvzhiLGs3alFulFbfCXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBlTBYjCHQnRQwK8Z5dI4DvCHiYBMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbJiJ+pTF Hv1PKCyLRgopZuNxLM4r9TN0wMhkGbJqQTMALLOC2FcHiC+gJQeo8c2wE/iIrkJa h5af8aMQq3iGI47UoqDsWUJN2uGM1GQz1Dh8IleaBHLZA1O01WSjing+cWwIY7g0 hJL0wW2xopGebKUA30mGUYyyxjhdvKkt8/ma8/3VveLOKu7wL9iga8mjnBiSCSAB 99Z9EC4HfHeWfZa/+8E9J5YloT2AocbyzsabqhdIRs+ahUIvL2r974Gn+wuxAbXy lT8zI2J6UVXlQtwwkpgMaIDN9GhhWlGMQLjM6LtCCRzLEw90e48q+EyhuM5fV4Cp 96oh32svD9m+7w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:26 2025 by rpki-client