This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json) Hash identifier: RTDbJyOHnKBf+ujImaPeVexJ4yO7dTMRzlKuzTG78Uk= Subject key identifier: 7B:3B:33:66:39:5F:84:BA:6C:F0:E5:B3:F6:80:2D:44:99:0F:7D:9A Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81 Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81 Certificate serial: 019B5E657BA0DD1EC136D4F9357F72CFBC36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft Manifest number: 1799 Signing time: Sat 27 Dec 2025 06:01:07 +0000 Manifest this update: Sat 27 Dec 2025 06:01:07 +0000 Manifest next update: Sun 28 Dec 2025 06:01:07 +0000 Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=) 2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: TV92/LnDzKO1q2cYpxkWmlp90Maq3DDMv/3SfYoavL4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5e:65:7b:a0:dd:1e:c1:36:d4:f9:35:7f:72:cf:bc:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81 Validity Not Before: Dec 27 06:01:07 2025 GMT Not After : Dec 28 06:01:07 2025 GMT Subject: CN=7b3b3366395f84ba6cf0e5b3f6802d44990f7d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:eb:55:c5:da:02:54:58:1f:11:94:7d:0b:31: e9:16:18:7d:9f:f2:23:0a:b2:19:ac:b3:f6:e8:ba: 20:0d:b8:ef:32:cf:6f:fa:17:6e:c3:bd:72:b3:00: 89:73:c3:ad:02:f2:74:3a:a2:af:de:61:67:eb:3d: f1:eb:04:ae:fb:0c:51:da:75:d4:38:24:80:b1:04: 05:51:b6:b0:21:c2:0a:58:85:c5:7e:a1:60:ac:ac: 12:6a:be:9e:5c:39:60:3e:85:f5:92:d0:58:d9:97: 2b:14:47:01:9d:ae:2a:d1:ee:1e:28:1f:40:9f:5f: 41:e9:3d:70:6b:60:53:34:13:f7:ec:27:10:70:b2: 8f:33:6e:0d:1d:36:94:25:6a:64:5a:b0:98:23:b7: d8:1c:eb:28:0f:d8:88:05:47:ec:01:1f:fc:fa:b2: d4:11:39:25:12:8e:ed:4d:e0:fb:c5:57:d6:56:79: d0:9c:1a:bd:93:e6:2f:c2:d5:8f:3d:a8:21:81:b4: d0:4e:f4:f9:c9:d6:01:cc:0d:dd:84:ec:eb:a7:92: fe:85:54:ed:ad:03:a1:be:7f:63:05:c3:1d:2c:82: fa:1a:3f:bf:09:d3:86:30:df:f4:a2:c9:06:7a:2a: 62:f1:0f:6f:dc:51:58:9a:c6:b0:d9:43:a6:65:cc: 4f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3B:33:66:39:5F:84:BA:6C:F0:E5:B3:F6:80:2D:44:99:0F:7D:9A X509v3 Authority Key Identifier: keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:84:63:65:15:32:8e:bc:9a:1f:b3:bf:30:0c:3d:fa:18:61: 49:1d:52:a7:36:57:d9:f5:3f:64:13:96:e1:9a:07:a3:27:25: b6:db:ec:32:c2:00:bc:ad:f8:7a:c2:68:f5:4a:d8:e4:80:38: 9e:98:30:88:74:e4:85:34:c8:00:9b:f1:0f:a6:9d:e6:0c:01: 46:61:d6:e9:77:ba:c0:bd:e1:8e:ae:e4:9b:d8:4b:3b:61:6e: 8e:c6:4a:1e:04:b6:66:0f:a9:04:32:95:9a:af:0e:ba:21:78: 49:c3:e4:7c:7c:06:ec:91:79:a9:77:c5:7b:3f:31:27:e9:ed: ae:02:44:4f:05:98:12:69:fc:2a:b0:78:92:02:f7:6a:ef:7c: 0f:c4:ce:ff:48:47:34:0c:63:f4:9e:fd:2c:0b:70:fd:f2:1d: 91:97:c7:92:1c:6b:a2:92:7b:cd:19:19:41:67:e1:d5:5e:2c: f4:31:4d:83:75:de:71:d4:90:dc:d7:72:88:22:df:a4:b0:d1: b2:c6:14:56:1e:c1:50:f4:9f:46:a2:5c:3b:c5:d0:ab:dd:b5: d4:2a:8a:eb:8b:ff:24:d5:ab:c5:ad:73:1a:a6:24:d1:cb:71: fb:57:5e:b2:2b:0a:f6:60:d4:f6:b7:0d:22:30:4a:50:be:5e: bb:d4:88:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZteZXug3R7BNtT5NX9yz7w2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyODY3MmNkNzM2YjU3ZTFlM2RmYzdkZDczNmYzYmQ4YTYx NmJhODEwHhcNMjUxMjI3MDYwMTA3WhcNMjUxMjI4MDYwMTA3WjAzMTEwLwYDVQQD Eyg3YjNiMzM2NjM5NWY4NGJhNmNmMGU1YjNmNjgwMmQ0NDk5MGY3ZDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAketVxdoCVFgfEZR9CzHpFhh9n/Ij CrIZrLP26LogDbjvMs9v+hduw71yswCJc8OtAvJ0OqKv3mFn6z3x6wSu+wxR2nXU OCSAsQQFUbawIcIKWIXFfqFgrKwSar6eXDlgPoX1ktBY2ZcrFEcBna4q0e4eKB9A n19B6T1wa2BTNBP37CcQcLKPM24NHTaUJWpkWrCYI7fYHOsoD9iIBUfsAR/8+rLU ETklEo7tTeD7xVfWVnnQnBq9k+YvwtWPPaghgbTQTvT5ydYBzA3dhOzrp5L+hVTt rQOhvn9jBcMdLIL6Gj+/CdOGMN/0oskGeipi8Q9v3FFYmsaw2UOmZcxP8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHs7M2Y5X4S6bPDls/aALUSZD32aMB8GA1UdIwQY MBaAFIKGcs1za1fh49/H3XNvO9imFrqBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgt ZWVlN2ZhZTVjMDM3LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC81NGJiNTAtMDFiZS00ZWM2LTk0MTgtZWVlN2ZhZTVjMDM3 LzEvZ29aeXpYTnJWLUhqMzhmZGMyODcyS1lXdW9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPIRjZRUy jryaH7O/MAw9+hhhSR1SpzZX2fU/ZBOW4ZoHoyclttvsMsIAvK34esJo9UrY5IA4 npgwiHTkhTTIAJvxD6ad5gwBRmHW6Xe6wL3hjq7km9hLO2FujsZKHgS2Zg+pBDKV mq8OuiF4ScPkfHwG7JF5qXfFez8xJ+ntrgJETwWYEmn8KrB4kgL3au98D8TO/0hH NAxj9J79LAtw/fIdkZfHkhxropJ7zRkZQWfh1V4s9DFNg3XecdSQ3NdyiCLfpLDR ssYUVh7BUPSfRqJcO8XQq9211CqK64v/JNWrxa1zGqYk0ctx+1desisK9mDU9rcN IjBKUL5eu9SIAQ== -----END CERTIFICATE-----Generated at Sat Dec 27 07:13:54 2025 by rpki-client