This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft File: GEe1nSHqNrMGL8qAznXBYWr1EZo.mft (raw, json) Hash identifier: 6WoJg52JQbnT3n44+cyYka7C2mZze/H88oNCZIt6YNU= Subject key identifier: 55:17:07:5B:27:CD:E8:F7:09:42:33:0A:C0:F3:42:11:D0:03:E1:9F Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a Certificate serial: 019B3D233E40FC4667300E1B4B76460AFAE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft Manifest number: 17A8 Signing time: Sat 20 Dec 2025 19:01:18 +0000 Manifest this update: Sat 20 Dec 2025 19:01:18 +0000 Manifest next update: Sun 21 Dec 2025 19:01:18 +0000 Files and hashes: 1: 8cLxwhiwZ15o52IG0lIcBm8BfIQ.roa (hash: PFZiPiXQsPniAQ08Y5K+gzotL1tE/fkVxovwe7IBhnM=) 2: DEAqR7ouXdK_VgFpEIt6V4-R3vU.roa (hash: wMwsT7eO243EJyubJoTSggJw5Rb7OJyY/cli5aPuyUQ=) 3: GEe1nSHqNrMGL8qAznXBYWr1EZo.crl (hash: ndwWuCdmKjRO+NWlIkceGEgJ1znbWuS7jOJ18kZdCFM=) 4: Jfkb9wIjflJ9g_nlBWaCF6laiWU.roa (hash: /ljWZ+p/6L9vGqqgT4FUCtEB1Y8qOikrC1+ICoRutK4=) 5: _7WtH8aHR1L2bTDVn9E_76DditQ.roa (hash: GNJqn9i3udIC/30RCw5K5vyaTL+C2PYXuckCZHNZni4=) 6: h5_prNjcgRyXJELM8DURZLP5EFU.roa (hash: Z92j/9sBYKdyWUm0MRd6IKVfVn4W1nRxKsWy96cIZLs=) 7: shcI5ksCijvvRLID7bxpTU4Ek38.roa (hash: 5j6UIvbPGZk819fhFv2lIK9RILlN83FerZg8FUEwxJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:3e:40:fc:46:67:30:0e:1b:4b:76:46:0a:fa:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a Validity Not Before: Dec 20 19:01:18 2025 GMT Not After : Dec 21 19:01:18 2025 GMT Subject: CN=5517075b27cde8f70942330ac0f34211d003e19f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:45:e6:a5:ed:55:b5:7c:0e:c1:28:67:15: 59:df:b4:69:27:fa:80:37:8e:ad:77:40:d6:44:69: d5:4f:78:cd:26:07:c0:56:28:bd:4a:50:e5:60:5e: b9:4e:74:ea:0a:b2:2f:97:40:ae:53:eb:c1:ae:99: fd:04:0f:67:65:1d:b4:05:d9:26:3d:0f:ff:b0:97: fe:bd:01:b4:5a:ab:b7:93:ab:39:9b:39:4b:e0:28: e4:20:b8:d8:db:d5:f0:1a:26:2e:b3:66:a6:83:a2: 9f:82:92:21:42:b9:c8:d9:74:a8:e6:fd:3e:d7:ba: 11:2d:f2:7b:0a:fd:fa:ee:ac:6e:96:61:ad:bf:11: cc:53:43:3b:1d:2e:2f:4f:96:be:a3:f3:4f:06:f9: 73:31:45:7c:90:ef:55:87:d8:fd:73:71:94:d9:ca: 2b:4e:2e:1e:3c:fc:06:e5:39:fd:32:f8:04:69:a4: 98:71:7d:51:11:55:d1:3a:3a:c5:f6:dd:6c:57:68: de:02:17:17:9c:37:81:cc:92:25:53:1a:f4:0b:c7: 7a:f3:b5:5c:b2:80:b2:c5:9c:29:bc:ba:30:da:64: b7:45:46:32:bb:a1:07:6e:db:e9:aa:94:df:54:64: 9f:26:d4:e9:1c:29:79:a9:04:42:4b:6d:f5:30:d8: 54:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:17:07:5B:27:CD:E8:F7:09:42:33:0A:C0:F3:42:11:D0:03:E1:9F X509v3 Authority Key Identifier: keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:a8:06:98:47:b7:47:92:0c:a2:ed:d5:21:e9:8e:67:fa:cd: 63:75:40:32:a8:bb:38:d3:ca:b7:09:1d:eb:c8:c8:6f:28:20: dd:ef:9d:a2:6b:8f:75:cb:8e:44:61:f8:3f:08:f1:cc:f1:29: 04:f4:0e:30:06:d6:97:a0:b9:6a:04:6d:c2:eb:19:14:ec:2f: 3b:99:30:c2:64:2b:d0:40:86:0a:80:3c:0d:60:5a:da:dc:32: 82:9d:83:3c:70:00:f3:95:e0:64:6e:b6:07:e2:e9:06:26:0b: 33:51:a8:3a:6c:08:36:5e:45:04:52:c6:7b:e4:0d:4d:71:77: e5:69:5b:81:21:08:87:2c:61:bf:3a:c7:a7:83:03:c9:19:31: c9:ae:cb:cd:e0:99:61:27:e8:e7:7a:fb:81:33:80:23:f1:9b: de:92:fe:b8:2c:4b:97:0b:11:a0:79:d7:54:0e:33:43:ff:95: b6:03:26:b1:6b:fd:a7:ff:32:f8:02:20:b6:75:db:67:f5:a0: 70:9b:d2:d4:60:7b:ba:7e:ac:49:c7:5b:d5:81:3d:47:6a:a5: 43:73:f5:6e:52:7e:6c:a1:e3:99:a3:7a:6c:39:13:b4:47:20: 85:93:90:0e:65:5a:d5:ff:d0:1e:f9:48:5f:60:5e:33:ee:6d: 9e:2d:e0:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Iz5A/EZnMA4bS3ZGCvriMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NDdiNTlkMjFlYTM2YjMwNjJmY2E4MGNlNzVjMTYxNmFm NTExOWEwHhcNMjUxMjIwMTkwMTE4WhcNMjUxMjIxMTkwMTE4WjAzMTEwLwYDVQQD Eyg1NTE3MDc1YjI3Y2RlOGY3MDk0MjMzMGFjMGYzNDIxMWQwMDNlMTlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnlhF5qXtVbV8DsEoZxVZ37RpJ/qA N46td0DWRGnVT3jNJgfAVii9SlDlYF65TnTqCrIvl0CuU+vBrpn9BA9nZR20Bdkm PQ//sJf+vQG0Wqu3k6s5mzlL4CjkILjY29XwGiYus2amg6KfgpIhQrnI2XSo5v0+ 17oRLfJ7Cv367qxulmGtvxHMU0M7HS4vT5a+o/NPBvlzMUV8kO9Vh9j9c3GU2cor Ti4ePPwG5Tn9MvgEaaSYcX1REVXROjrF9t1sV2jeAhcXnDeBzJIlUxr0C8d687Vc soCyxZwpvLow2mS3RUYyu6EHbtvpqpTfVGSfJtTpHCl5qQRCS231MNhUbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUXB1snzej3CUIzCsDzQhHQA+GfMB8GA1UdIwQY MBaAFBhHtZ0h6jazBi/KgM51wWFq9RGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTIt ZjkxYmI1MTc5MjE3LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTItZjkxYmI1MTc5MjE3 LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlKgGmEe3 R5IMou3VIemOZ/rNY3VAMqi7ONPKtwkd68jIbygg3e+domuPdcuORGH4PwjxzPEp BPQOMAbWl6C5agRtwusZFOwvO5kwwmQr0ECGCoA8DWBa2twygp2DPHAA85XgZG62 B+LpBiYLM1GoOmwINl5FBFLGe+QNTXF35WlbgSEIhyxhvzrHp4MDyRkxya7LzeCZ YSfo53r7gTOAI/Gb3pL+uCxLlwsRoHnXVA4zQ/+VtgMmsWv9p/8y+AIgtnXbZ/Wg cJvS1GB7un6sScdb1YE9R2qlQ3P1blJ+bKHjmaN6bDkTtEcghZOQDmVa1f/QHvlI X2BeM+5tni3gEw== -----END CERTIFICATE-----Generated at Sat Dec 20 21:16:06 2025 by rpki-client