This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft File: gY1FuJShqq5kDmhOV8_bUw36umk.mft (raw, json) Hash identifier: AF1Ead+6Ukpdt7n5mr59yinkJ+vA37IRbNePjO5UM0o= Subject key identifier: E7:E2:EF:EA:61:43:00:65:A6:9E:AC:B7:41:A3:4E:CF:AC:4A:A2:AB Authority key identifier: 81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69 Certificate issuer: /CN=818d45b894a1aaae640e684e57cfdb530dfaba69 Certificate serial: 019B8083EA211669CF0D2FDC405A8CC74F13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft Manifest number: 0C39 Signing time: Fri 02 Jan 2026 21:01:27 +0000 Manifest this update: Fri 02 Jan 2026 21:01:27 +0000 Manifest next update: Sat 03 Jan 2026 21:01:27 +0000 Files and hashes: 1: gY1FuJShqq5kDmhOV8_bUw36umk.crl (hash: 3Lp0B9T5tquYq3KfxvCO9ZKXae5XhfkyzSo+fVnQkzE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:80:83:ea:21:16:69:cf:0d:2f:dc:40:5a:8c:c7:4f:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=818d45b894a1aaae640e684e57cfdb530dfaba69 Validity Not Before: Jan 2 21:01:27 2026 GMT Not After : Jan 3 21:01:27 2026 GMT Subject: CN=e7e2efea61430065a69eacb741a34ecfac4aa2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:de:f1:76:71:b2:24:bc:41:24:14:b6:d2:27: 2c:31:aa:4d:29:47:58:38:52:c2:d6:25:a9:83:b8: 66:5c:5f:a5:fc:24:a8:36:b3:6f:16:db:bb:53:d1: 6e:bc:f9:f6:bc:19:57:23:0f:14:f6:d8:56:00:27: 30:c1:2c:c0:2f:64:61:d0:df:eb:44:2b:aa:b1:98: 40:a3:88:bb:a8:69:d3:d2:ca:e6:da:de:36:5d:26: cd:b6:eb:e4:fe:a3:3b:49:bd:ab:bd:90:6b:61:b4: 2a:4e:ca:b0:5f:a6:08:33:01:9b:9d:d0:97:ff:86: 78:cc:44:94:4c:6a:4d:c3:02:df:c4:df:c6:0b:44: 02:bf:2f:99:90:e1:97:2f:c5:5f:69:48:40:8d:4c: d7:70:89:9c:f3:b9:fd:1d:c6:7a:8b:34:1c:ad:04: ac:91:5f:b0:04:f9:1a:c0:68:b5:39:e4:e6:0e:21: f3:43:96:34:dc:cd:0a:48:9a:5a:a0:5b:a8:96:3f: c2:6b:94:cf:48:59:5e:8c:ae:64:f4:33:70:c6:d7: 8f:ac:b1:77:0d:ef:2b:a2:02:7c:c6:da:8d:c0:fa: df:77:5d:b9:60:5e:b4:58:61:56:a2:af:d9:08:e8: 2e:58:97:e8:fe:8a:ac:8a:f5:e7:7e:f0:23:d0:c3: 09:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E2:EF:EA:61:43:00:65:A6:9E:AC:B7:41:A3:4E:CF:AC:4A:A2:AB X509v3 Authority Key Identifier: keyid:81:8D:45:B8:94:A1:AA:AE:64:0E:68:4E:57:CF:DB:53:0D:FA:BA:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gY1FuJShqq5kDmhOV8_bUw36umk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/703358-b69b-4893-ab4e-e0699d304919/1/gY1FuJShqq5kDmhOV8_bUw36umk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:23:07:4b:8c:c0:98:a9:39:a7:ec:06:c1:37:17:5f:5d:9e: 44:4a:c5:55:bd:0b:f6:ff:c5:bd:eb:17:a6:f1:51:62:4c:6b: 1a:a0:ce:e4:ff:9e:35:b8:c4:15:8d:91:de:b2:7d:76:a4:34: cb:67:9b:19:12:97:15:e1:27:e3:5d:44:aa:84:41:93:b2:61: ee:3b:a8:5b:6a:41:1c:65:50:c4:3b:5a:15:3a:8f:8b:0f:fe: 96:bb:86:76:d8:c3:d2:4e:b6:6d:42:6d:0c:68:62:4d:8d:d7: b1:44:db:cc:9d:3d:4d:ac:82:f0:b2:c7:e3:4b:48:60:f3:ce: 58:ec:bd:70:d8:43:c9:f6:30:7f:0f:9a:f8:88:a6:91:12:8d: 0b:b3:45:d4:f0:56:c5:f5:18:c6:a2:4e:cd:dd:6e:2f:28:21: 27:2b:71:e3:ee:03:f5:aa:74:ca:11:29:1e:95:1c:13:aa:61: ee:3e:c6:0d:78:91:72:09:f2:40:7d:90:95:58:64:cd:85:37: 2b:a6:17:29:50:f0:b8:b0:35:ea:0a:69:73:ae:70:22:f1:30: 21:90:a8:f3:ff:0f:db:68:7b:58:d6:c3:ce:51:40:60:da:92: fe:e9:a8:a5:e5:0c:ef:b2:90:0a:d3:1b:fa:0b:51:e2:b8:9e: 25:c9:1d:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuAg+ohFmnPDS/cQFqMx08TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxOGQ0NWI4OTRhMWFhYWU2NDBlNjg0ZTU3Y2ZkYjUzMGRm YWJhNjkwHhcNMjYwMTAyMjEwMTI3WhcNMjYwMTAzMjEwMTI3WjAzMTEwLwYDVQQD EyhlN2UyZWZlYTYxNDMwMDY1YTY5ZWFjYjc0MWEzNGVjZmFjNGFhMmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtt7xdnGyJLxBJBS20icsMapNKUdY OFLC1iWpg7hmXF+l/CSoNrNvFtu7U9FuvPn2vBlXIw8U9thWACcwwSzAL2Rh0N/r RCuqsZhAo4i7qGnT0srm2t42XSbNtuvk/qM7Sb2rvZBrYbQqTsqwX6YIMwGbndCX /4Z4zESUTGpNwwLfxN/GC0QCvy+ZkOGXL8VfaUhAjUzXcImc87n9HcZ6izQcrQSs kV+wBPkawGi1OeTmDiHzQ5Y03M0KSJpaoFuolj/Ca5TPSFlejK5k9DNwxtePrLF3 De8rogJ8xtqNwPrfd125YF60WGFWoq/ZCOguWJfo/oqsivXnfvAj0MMJ4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOfi7+phQwBlpp6st0GjTs+sSqKrMB8GA1UdIwQY MBaAFIGNRbiUoaquZA5oTlfP21MN+rppMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC83MDMzNTgtYjY5Yi00ODkzLWFiNGUt ZTA2OTlkMzA0OTE5LzEvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC83MDMzNTgtYjY5Yi00ODkzLWFiNGUtZTA2OTlkMzA0OTE5 LzEvZ1kxRnVKU2hxcTVrRG1oT1Y4X2JVdzM2dW1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFyMHS4zA mKk5p+wGwTcXX12eRErFVb0L9v/FvesXpvFRYkxrGqDO5P+eNbjEFY2R3rJ9dqQ0 y2ebGRKXFeEn411EqoRBk7Jh7juoW2pBHGVQxDtaFTqPiw/+lruGdtjD0k62bUJt DGhiTY3XsUTbzJ09TayC8LLH40tIYPPOWOy9cNhDyfYwfw+a+IimkRKNC7NF1PBW xfUYxqJOzd1uLyghJytx4+4D9ap0yhEpHpUcE6ph7j7GDXiRcgnyQH2QlVhkzYU3 K6YXKVDwuLA16gppc65wIvEwIZCo8/8P22h7WNbDzlFAYNqS/umopeUM77KQCtMb +gtR4rieJckd3w== -----END CERTIFICATE-----Generated at Sat Jan 3 04:17:51 2026 by rpki-client