This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft File: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json) Hash identifier: S2/8fryrBtK0UhFq4YN+0WHLjPxwjYOA/5inu7Siz0Q= Subject key identifier: 06:AE:3B:D6:7E:09:B9:CD:2B:8C:51:BB:32:02:04:13:7E:05:12:04 Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Certificate serial: 019B2FD581ECE76A8A3A2804C9DCDB6ED525 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft Manifest number: 0FCE Signing time: Thu 18 Dec 2025 05:01:20 +0000 Manifest this update: Thu 18 Dec 2025 05:01:20 +0000 Manifest next update: Fri 19 Dec 2025 05:01:20 +0000 Files and hashes: 1: 6Yaz7qIk9ypgtGOB0Q9-XcSOAZE.roa (hash: qU0XOf7YigdPVnIfF1J7JtsuRC2jMiFg1/aun3pCmRQ=) 2: 72ompPbzpmnzneIjTtp_bgxv8to.roa (hash: aazsmeYdXGvcDu68YTmlm+z5hJVBvjGJrpJeAcUoELg=) 3: CwLyd1hvwwCpFrY0FJN9R0kCAHM.roa (hash: +InSu+wwGa8+l0ZRRpkm67RN4rfJwmt9k3CDaWDpGUM=) 4: EoqOLJZzdQ3i-M95BH6ZqX7Pq-o.roa (hash: a3yd5mlm4a54YbLPpH0dQXH+MNyJ+T7A5cQjTmvitXU=) 5: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: 8+MLLVYYgEjgbi2dFtcqu6i//5B2jCJx9orGHJOjXfw=) 6: J8otkOOOFhMQcKskyfSet45vpaA.roa (hash: OKOZ6+uREzTIvRtmYWOfCPq5FGMam+EbPwErDVD6eGc=) 7: V-b-2I3iEEIVeiGH0dH9bmUShSo.roa (hash: rtQWMZJe02xbUkvplDdtZ0fDlJmFKLRYx2vE0SO8gTw=) 8: bU6GT3ku3p0MR6dR8VEIPVRff1A.roa (hash: Ggx8XIhx0sf2q0IA6wlbNX4vA755P9SRAXjjwL+vg/w=) 9: dPBOUNuMluSVUVsbkWd3r_lebgU.roa (hash: pOELbtPhwT+Xz573ShVJg/36cMfG9CcY6YmD29hT1jk=) 10: h4WPx1Sgez5mjA1QOYWXTeKaf6I.roa (hash: j0LdK7x2Tf65HMuHIG0cj+mnli0iJ+gVK8H+vxjuT5g=) 11: jFuP-GeZY6Z37SVSGqClEWTPyy4.roa (hash: 65ZwPuCoL1Qqn8JPgxAd7UOuJekWTxCoLNYfjh3KVJo=) 12: m6IyPWEEbbAvvvSNw5JH6euTQ7A.roa (hash: 06SutFrXFPpCbXeexyGeEPlk43CPE0aY99qdVjAphr0=) 13: vmyAzNx7YC2gCU3FErnhSsG464E.roa (hash: b2H/65WWZwau4OQRXdpkdBOUisTMki5wQZ0WO+I8q90=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:81:ec:e7:6a:8a:3a:28:04:c9:dc:db:6e:d5:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf Validity Not Before: Dec 18 05:01:20 2025 GMT Not After : Dec 19 05:01:20 2025 GMT Subject: CN=06ae3bd67e09b9cd2b8c51bb320204137e051204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:79:00:b1:ed:a1:d4:a8:31:c9:1f:95:6d:6a: c9:2c:fc:23:c3:76:35:54:65:0f:19:53:c4:cd:66: 28:a6:b9:78:ce:3a:ea:09:c6:62:2a:e6:44:39:58: 49:84:22:34:b2:94:f4:17:b1:57:d1:22:98:57:bf: e4:0c:77:45:8f:f9:16:8c:5f:95:b7:21:4d:86:a9: 10:e2:cf:c0:f3:59:8f:cc:46:2f:0d:b9:01:ac:b1: 01:36:0c:67:23:ed:91:cb:2b:a8:5e:e1:ff:cf:9b: 03:80:b5:36:cf:8f:d6:c2:e6:84:c8:0d:6d:1e:34: 8f:ee:15:92:77:0d:5f:c7:40:e3:3a:2e:ae:ab:8c: fd:b1:33:23:8f:c8:0a:6a:59:99:a4:bf:aa:e0:49: 60:ea:11:e5:e8:85:94:8f:48:94:bf:11:1a:b3:1b: 5c:72:cf:ac:a6:f3:64:15:dd:76:76:60:11:b6:6b: b8:75:b5:6e:36:33:32:22:04:0c:78:f7:ad:6f:15: 84:6c:c8:46:2c:4d:13:8f:56:12:57:a3:40:a3:95: 52:ea:21:79:90:a5:58:34:a5:6e:a1:21:d5:64:31: f1:99:00:cf:19:73:d8:d7:cd:f1:68:62:86:bc:e3: 60:57:57:66:39:3a:be:1d:4e:7b:2f:6e:ef:c8:48: c9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AE:3B:D6:7E:09:B9:CD:2B:8C:51:BB:32:02:04:13:7E:05:12:04 X509v3 Authority Key Identifier: keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:02:1d:a7:58:2c:70:46:5c:df:18:2a:52:3a:c7:08:16:14: af:22:75:ae:a8:9a:85:34:19:60:82:13:f7:e8:89:d5:3c:1c: 8a:4c:19:53:65:05:30:ba:0c:fb:ac:1b:a3:25:d7:44:a5:bd: 28:cb:b0:2d:84:a0:07:bc:7a:19:14:79:14:5d:74:4e:fe:29: 34:a5:bc:5c:6b:61:9a:38:d5:01:46:f7:af:28:d7:52:fe:5a: 85:93:4d:ce:bb:b8:55:e8:ef:bc:b3:83:25:b5:ec:2c:73:f6: 33:e8:6f:5c:de:bf:c7:ec:92:18:dd:24:a0:bf:44:21:59:5d: 1e:09:35:4f:66:29:2a:3e:7f:16:4e:d6:0c:7a:93:6e:6d:ad: 92:95:19:23:3f:bf:49:97:ff:a9:31:d2:54:cf:d7:cb:1d:75: 98:00:a1:71:02:c5:43:6c:24:7e:6d:80:b5:e4:31:89:4f:16: d2:b4:cb:0f:a2:42:2d:2f:17:90:69:a1:01:cd:d3:27:59:13: 03:31:be:2c:2e:56:6d:dd:a2:51:53:75:f0:e4:7e:f4:ce:30: 70:d9:6f:25:79:a6:f0:09:6b:d1:ad:0c:44:20:7a:2c:14:d7: f5:05:a2:7c:11:d7:04:b6:1e:47:53:ad:17:8a:e0:c8:be:05: 92:68:ca:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1YHs52qKOigEydzbbtUlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2YwMzZlMjU5MjM5MWZiNDVhM2RkMzNjYWYwYjA3OTU2 OTczY2YwHhcNMjUxMjE4MDUwMTIwWhcNMjUxMjE5MDUwMTIwWjAzMTEwLwYDVQQD EygwNmFlM2JkNjdlMDliOWNkMmI4YzUxYmIzMjAyMDQxMzdlMDUxMjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHkAse2h1KgxyR+VbWrJLPwjw3Y1 VGUPGVPEzWYoprl4zjrqCcZiKuZEOVhJhCI0spT0F7FX0SKYV7/kDHdFj/kWjF+V tyFNhqkQ4s/A81mPzEYvDbkBrLEBNgxnI+2RyyuoXuH/z5sDgLU2z4/WwuaEyA1t HjSP7hWSdw1fx0DjOi6uq4z9sTMjj8gKalmZpL+q4Elg6hHl6IWUj0iUvxEasxtc cs+spvNkFd12dmARtmu4dbVuNjMyIgQMePetbxWEbMhGLE0Tj1YSV6NAo5VS6iF5 kKVYNKVuoSHVZDHxmQDPGXPY183xaGKGvONgV1dmOTq+HU57L27vyEjJoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAauO9Z+CbnNK4xRuzICBBN+BRIEMB8GA1UdIwQY MBaAFBp/A24lkjkftFo90zyvCweVaXPPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2It MzQwZDYyNWM2ZGJhLzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC8yNGJlMWEtMTZkYS00ODFjLThiY2ItMzQwZDYyNWM2ZGJh LzEvR244RGJpV1NPUi0wV2ozVFBLOExCNVZwYzg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWwIdp1gs cEZc3xgqUjrHCBYUryJ1rqiahTQZYIIT9+iJ1TwcikwZU2UFMLoM+6wboyXXRKW9 KMuwLYSgB7x6GRR5FF10Tv4pNKW8XGthmjjVAUb3ryjXUv5ahZNNzru4VejvvLOD JbXsLHP2M+hvXN6/x+ySGN0koL9EIVldHgk1T2YpKj5/Fk7WDHqTbm2tkpUZIz+/ SZf/qTHSVM/Xyx11mAChcQLFQ2wkfm2AteQxiU8W0rTLD6JCLS8XkGmhAc3TJ1kT AzG+LC5Wbd2iUVN18OR+9M4wcNlvJXmm8Alr0a0MRCB6LBTX9QWifBHXBLYeR1Ot F4rgyL4FkmjKIw== -----END CERTIFICATE-----Generated at Thu Dec 18 07:33:52 2025 by rpki-client