This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json) Hash identifier: I+K9HFL+T7KeUPWeh/+hip5R81mt+8nwmdICwpF/RQM= Subject key identifier: 2B:0E:BE:B0:AC:6D:95:09:29:E2:50:F9:A6:A5:FF:C9:0B:67:08:09 Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e Certificate serial: 019B394648DCF9B52D0D620CE2F1D7B8058A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft Manifest number: 087E Signing time: Sat 20 Dec 2025 01:01:06 +0000 Manifest this update: Sat 20 Dec 2025 01:01:06 +0000 Manifest next update: Sun 21 Dec 2025 01:01:06 +0000 Files and hashes: 1: J5SKCaGOc1EmK2ciMl5AsL0Yt6k.roa (hash: G1OhQbiptYNimu4j0r+tzGfxHpXqGX5AtlwZt3l6QBs=) 2: TMwrQ9VEC3dWwdOdSzhchqd9LKU.roa (hash: ddLT4suSyGT63FePBoB4o2Q5fl/qPXcvtKn+r4yKT0g=) 3: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: TGGxa0tb5Ff+W46LAmKQlaKXfQDP0hybFHZLnqjzQPg=) 4: qjXXTFXVdVVWr7-MSHZr7AQqbSo.roa (hash: Sp8Mn3EU/O89RIW7deIN1lZCT2/D8tgJU4hIx0BHNRE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:46:48:dc:f9:b5:2d:0d:62:0c:e2:f1:d7:b8:05:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e Validity Not Before: Dec 20 01:01:06 2025 GMT Not After : Dec 21 01:01:06 2025 GMT Subject: CN=2b0ebeb0ac6d950929e250f9a6a5ffc90b670809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b6:62:de:d1:e4:ea:32:f5:98:ff:ec:97:e1: f0:cf:a8:28:7b:54:f1:0e:9c:06:41:0b:96:49:b7: a7:4d:d3:46:41:e3:18:1e:b3:11:7b:26:1c:59:f7: 8e:c9:fc:91:ad:45:e5:ab:bf:34:23:f2:f9:3a:91: c9:8d:56:fe:97:1c:4d:92:e9:6e:a5:9d:18:5d:2a: 2a:ad:d5:19:62:9b:75:7c:78:13:77:df:a9:8e:42: fd:87:a7:fb:ee:da:c2:b0:87:65:bd:94:2f:a7:04: 54:70:8e:7a:64:8d:43:42:5c:aa:b8:78:3c:f9:c4: a0:78:7d:62:02:a1:08:82:91:50:40:e4:ed:3c:a9: be:55:7c:94:94:fa:11:5c:d6:ba:72:39:28:d1:a5: 06:99:f5:e3:86:80:e4:de:d1:e2:7e:5a:1a:81:d1: eb:49:1d:3e:04:0f:93:68:bf:28:46:50:a3:6e:f4: 1f:aa:bb:12:67:7d:67:47:3b:8e:45:ca:c7:cd:83: 08:00:14:47:40:aa:6e:7c:0a:7c:23:ad:b8:24:5e: dd:af:10:e9:07:0c:22:e8:69:81:8e:e3:2b:65:94: 06:93:72:52:5d:dd:ec:00:84:a1:36:bf:e3:b5:f6: 0d:ae:2e:57:a2:01:08:89:9f:eb:99:3e:de:eb:af: 70:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0E:BE:B0:AC:6D:95:09:29:E2:50:F9:A6:A5:FF:C9:0B:67:08:09 X509v3 Authority Key Identifier: keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:56:ed:f4:19:75:3f:b8:91:50:ea:b2:4c:d3:8b:5b:3b:65: e0:9b:ca:43:78:a0:7c:f1:88:fb:2f:7a:77:3c:45:b1:b3:e0: ee:2b:0f:88:d6:3c:94:b3:90:6e:62:ab:3c:81:81:94:a9:cc: c8:b8:99:2e:0b:b1:7b:2c:be:52:38:50:99:f6:b1:ca:d4:20: c8:07:5a:b3:3c:ca:5b:7b:f6:ce:e8:8f:f9:26:45:30:1a:82: b8:a5:3d:9f:c8:70:8c:a4:3f:87:30:0f:95:23:6c:9b:0b:ec: 0e:61:36:fe:6d:e3:e2:38:91:ca:0c:b1:a2:0e:e9:a3:f2:80: 6f:8e:b3:9a:da:f1:61:fb:95:53:7d:73:f4:30:cb:26:a2:26: c1:9c:bd:db:b5:fc:e9:c3:5f:a9:a8:6c:bb:a9:01:1f:b4:40: eb:6d:52:02:07:09:ca:31:72:24:e9:9b:0d:c7:83:be:bc:2c: 28:44:08:a8:8f:af:ba:71:93:9a:a3:9d:75:67:ce:3c:5b:7c: 2f:f9:14:02:8a:c8:e7:24:80:7e:f2:97:2d:92:5d:0a:ef:d4: 71:81:e8:6d:12:9e:ea:e5:ec:1d:88:e2:be:19:40:cd:cc:39: e7:3c:87:6c:14:b8:2c:fb:5f:43:64:c9:14:41:88:60:6b:c6: 35:b8:1b:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5Rkjc+bUtDWIM4vHXuAWKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NjMzNTRhMTExYWY2ZDVlMWFkMTBkYTM4YWQ4MTQ0YjZi ZTg2OGUwHhcNMjUxMjIwMDEwMTA2WhcNMjUxMjIxMDEwMTA2WjAzMTEwLwYDVQQD EygyYjBlYmViMGFjNmQ5NTA5MjllMjUwZjlhNmE1ZmZjOTBiNjcwODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLZi3tHk6jL1mP/sl+Hwz6goe1Tx DpwGQQuWSbenTdNGQeMYHrMReyYcWfeOyfyRrUXlq780I/L5OpHJjVb+lxxNkulu pZ0YXSoqrdUZYpt1fHgTd9+pjkL9h6f77trCsIdlvZQvpwRUcI56ZI1DQlyquHg8 +cSgeH1iAqEIgpFQQOTtPKm+VXyUlPoRXNa6cjko0aUGmfXjhoDk3tHifloagdHr SR0+BA+TaL8oRlCjbvQfqrsSZ31nRzuORcrHzYMIABRHQKpufAp8I624JF7drxDp Bwwi6GmBjuMrZZQGk3JSXd3sAIShNr/jtfYNri5XogEIiZ/rmT7e669wXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsOvrCsbZUJKeJQ+aal/8kLZwgJMB8GA1UdIwQY MBaAFJhjNUoRGvbV4a0Q2jitgUS2voaOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUdNMVNoRWE5dFhoclJEYU9LMkJSTGEtaG80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZWE4NDctYTc4My00ODlkLWFlNGIt NTNmNTc1MDRlZjM1LzEvbUdNMVNoRWE5dFhoclJEYU9LMkJSTGEtaG80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9iZWE4NDctYTc4My00ODlkLWFlNGItNTNmNTc1MDRlZjM1 LzEvbUdNMVNoRWE5dFhoclJEYU9LMkJSTGEtaG80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVbt9Bl1 P7iRUOqyTNOLWztl4JvKQ3igfPGI+y96dzxFsbPg7isPiNY8lLOQbmKrPIGBlKnM yLiZLguxeyy+UjhQmfaxytQgyAdaszzKW3v2zuiP+SZFMBqCuKU9n8hwjKQ/hzAP lSNsmwvsDmE2/m3j4jiRygyxog7po/KAb46zmtrxYfuVU31z9DDLJqImwZy927X8 6cNfqahsu6kBH7RA621SAgcJyjFyJOmbDceDvrwsKEQIqI+vunGTmqOddWfOPFt8 L/kUAorI5ySAfvKXLZJdCu/UcYHobRKe6uXsHYjivhlAzcw55zyHbBS4LPtfQ2TJ FEGIYGvGNbgbXA== -----END CERTIFICATE-----Generated at Sat Dec 20 06:05:35 2025 by rpki-client