This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft File: Gk0JI-wQZndgrYguavmhVpnAXvg.mft (raw, json) Hash identifier: tpAaN6hngC0qKeWOyz6B0vyzhxgwqsnAefleUyaLuSI= Subject key identifier: 0C:F7:0F:EA:2B:7F:BF:D7:03:D5:AB:A8:39:45:2C:30:1B:D3:81:B2 Authority key identifier: 1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8 Certificate issuer: /CN=1a4d0923ec10667760ad882e6af9a15699c05ef8 Certificate serial: 019B2D0BAEE91DFA33694A1582A3985787FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft Manifest number: 1015 Signing time: Wed 17 Dec 2025 16:01:38 +0000 Manifest this update: Wed 17 Dec 2025 16:01:38 +0000 Manifest next update: Thu 18 Dec 2025 16:01:38 +0000 Files and hashes: 1: Gk0JI-wQZndgrYguavmhVpnAXvg.crl (hash: eqbL5aM4U8X25WMsCIwlAvub5QKgjF9LZvCOELiDfkA=) 2: ZdLIbn9HJxp8pdvNeDczvn0TQ4Q.roa (hash: rg+IefpKLZ6BZTDP0ZlvyqCjjEypkuxTFlnDiZulEgg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 16:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0b:ae:e9:1d:fa:33:69:4a:15:82:a3:98:57:87:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a4d0923ec10667760ad882e6af9a15699c05ef8 Validity Not Before: Dec 17 16:01:38 2025 GMT Not After : Dec 18 16:01:38 2025 GMT Subject: CN=0cf70fea2b7fbfd703d5aba839452c301bd381b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5b:cf:06:b2:78:a5:dd:12:25:09:80:06:81: f1:5b:d2:71:fa:6e:bf:72:f4:3d:82:3b:ad:4e:33: d0:fe:f4:da:51:4d:82:88:77:ad:3d:18:cf:a3:be: 7b:be:ee:42:cc:30:9d:e6:67:66:97:10:4d:64:b5: 33:31:6c:92:93:e3:43:7f:8c:ef:e0:b1:da:c1:75: 09:93:09:cd:c1:76:81:c9:c2:77:a3:91:1d:bd:59: 1e:65:8e:e5:21:9a:35:eb:e5:03:80:c6:f4:db:1e: be:70:e8:d0:80:28:b4:9c:bf:dd:f2:4d:11:09:13: 99:09:13:c4:43:7d:e0:a1:d5:5e:e9:b3:f6:f3:76: e7:6a:51:25:a7:20:18:ed:ad:85:1c:b3:71:65:6b: de:ae:d1:a7:40:d8:5b:03:82:35:30:dc:60:f8:44: be:64:d0:98:ff:6d:89:8c:0f:87:cf:20:1d:86:97: 83:25:27:a0:40:35:9c:5a:9c:0a:10:9d:44:57:a5: ea:2e:ff:81:a6:ce:b0:ba:08:16:d1:0e:d5:1d:22: 51:2d:06:bc:c6:31:a2:67:97:9b:6b:14:6e:40:fb: f7:82:11:1a:b7:ae:3a:9d:c4:d0:42:f5:98:75:6a: 68:1d:ba:cb:35:d6:a4:90:67:5e:b7:f6:09:43:7f: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F7:0F:EA:2B:7F:BF:D7:03:D5:AB:A8:39:45:2C:30:1B:D3:81:B2 X509v3 Authority Key Identifier: keyid:1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:c3:ac:1a:37:95:c4:84:49:df:34:d3:3e:02:f2:a2:56:7e: 40:d6:e9:a8:e8:b1:48:e4:0c:92:32:8b:ca:a8:b2:a5:95:b8: 92:1b:92:65:a8:9c:8c:b6:7b:b0:61:e1:e4:fd:29:85:d3:c2: 45:41:55:6a:48:d4:54:1e:3a:0c:02:ee:ba:6c:dd:f2:31:f5: 65:3a:c5:39:52:02:db:36:42:8f:08:53:c7:23:b9:1b:d2:76: 09:00:f5:d6:6f:c1:d0:86:92:17:fa:27:bb:d8:81:7b:70:49: 46:cf:a5:f9:dd:30:80:16:bc:84:fb:a6:1f:a7:6a:5b:88:65: 4f:ce:6f:4a:a6:6d:03:80:e6:8c:fa:3e:7c:6c:ac:3b:7e:48: 5f:6b:ef:ff:35:91:8d:ad:a0:ae:92:77:58:2d:51:09:d4:5f: 21:a4:53:d0:f6:98:e4:a8:d6:7e:f7:67:76:b6:e9:36:f1:e2: 14:3e:48:45:bf:f0:5c:83:93:d8:e5:44:16:75:25:15:d7:76: f7:f6:c8:a2:6d:44:de:83:3e:d6:3a:08:92:5b:d2:50:59:e5: a7:b9:e6:1b:d2:e3:66:0d:fe:a1:75:1d:63:a9:e9:72:5f:5d: 2e:eb:1a:91:cf:1e:f8:41:3b:84:2d:da:b8:90:db:ee:9f:ab: ab:ef:fb:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstC67pHfozaUoVgqOYV4f6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhNGQwOTIzZWMxMDY2Nzc2MGFkODgyZTZhZjlhMTU2OTlj MDVlZjgwHhcNMjUxMjE3MTYwMTM4WhcNMjUxMjE4MTYwMTM4WjAzMTEwLwYDVQQD EygwY2Y3MGZlYTJiN2ZiZmQ3MDNkNWFiYTgzOTQ1MmMzMDFiZDM4MWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVvPBrJ4pd0SJQmABoHxW9Jx+m6/ cvQ9gjutTjPQ/vTaUU2CiHetPRjPo757vu5CzDCd5mdmlxBNZLUzMWySk+NDf4zv 4LHawXUJkwnNwXaBycJ3o5EdvVkeZY7lIZo16+UDgMb02x6+cOjQgCi0nL/d8k0R CROZCRPEQ33godVe6bP283bnalElpyAY7a2FHLNxZWvertGnQNhbA4I1MNxg+ES+ ZNCY/22JjA+HzyAdhpeDJSegQDWcWpwKEJ1EV6XqLv+Bps6wuggW0Q7VHSJRLQa8 xjGiZ5ebaxRuQPv3ghEat646ncTQQvWYdWpoHbrLNdakkGdet/YJQ3/RMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAz3D+orf7/XA9WrqDlFLDAb04GyMB8GA1UdIwQY MBaAFBpNCSPsEGZ3YK2ILmr5oVaZwF74MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2swSkktd1FabmRncllndWF2bWhWcG5BWHZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8zNTY0ZTctMTFkNC00ZDdhLThiY2Mt YTk1Mzc2OGZkZTJmLzEvR2swSkktd1FabmRncllndWF2bWhWcG5BWHZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8zNTY0ZTctMTFkNC00ZDdhLThiY2MtYTk1Mzc2OGZkZTJm LzEvR2swSkktd1FabmRncllndWF2bWhWcG5BWHZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIcOsGjeV xIRJ3zTTPgLyolZ+QNbpqOixSOQMkjKLyqiypZW4khuSZaicjLZ7sGHh5P0phdPC RUFVakjUVB46DALuumzd8jH1ZTrFOVIC2zZCjwhTxyO5G9J2CQD11m/B0IaSF/on u9iBe3BJRs+l+d0wgBa8hPumH6dqW4hlT85vSqZtA4DmjPo+fGysO35IX2vv/zWR ja2grpJ3WC1RCdRfIaRT0PaY5KjWfvdndrbpNvHiFD5IRb/wXIOT2OVEFnUlFdd2 9/bIom1E3oM+1joIklvSUFnlp7nmG9LjZg3+oXUdY6npcl9dLusakc8e+EE7hC3a uJDb7p+rq+/7Og== -----END CERTIFICATE-----Generated at Wed Dec 17 23:44:13 2025 by rpki-client