This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json) Hash identifier: cvcbhCx6bsEQdQlANikNnL+E1yeycWqJDJsTeEt8dKA= Subject key identifier: B9:8C:C3:3D:14:22:04:76:E2:0B:06:8B:68:2B:87:F4:EA:99:BE:47 Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40 Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840 Certificate serial: 019B51BC551E363E5B7C8B50201D124D9E2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft Manifest number: 1790 Signing time: Wed 24 Dec 2025 19:00:55 +0000 Manifest this update: Wed 24 Dec 2025 19:00:55 +0000 Manifest next update: Thu 25 Dec 2025 19:00:55 +0000 Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=) 2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: AwRejt+fnY4MiOXuM4RLfID7Oe8wktRhq9e1vm5EFes=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bc:55:1e:36:3e:5b:7c:8b:50:20:1d:12:4d:9e:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=827313247c486fe434833c09087a00a900301840 Validity Not Before: Dec 24 19:00:55 2025 GMT Not After : Dec 25 19:00:55 2025 GMT Subject: CN=b98cc33d14220476e20b068b682b87f4ea99be47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:82:ff:e8:8b:76:05:b4:06:82:58:66:c3: 84:14:47:ea:9f:4b:70:31:0e:b5:e5:17:44:30:fe: dd:f2:6e:c5:fa:bc:6f:22:93:9c:8e:22:fe:54:59: d1:4e:60:de:3c:76:a7:04:c1:19:92:ba:81:b0:a6: 3e:28:10:93:12:83:3e:3d:cd:8c:30:7f:e3:ef:da: 9e:e0:53:f9:f1:5c:39:23:d4:26:ca:cd:1b:7b:e8: b4:43:2a:74:ec:20:ac:a2:cc:60:74:03:82:5c:a4: 60:6f:c5:a4:54:66:05:5d:cc:96:86:da:66:cc:b8: c6:81:99:e5:b2:54:dc:25:f0:d1:be:ac:de:d3:0a: cb:46:be:28:1c:f4:b7:1b:33:a7:25:8e:02:11:ed: bf:1f:89:75:74:d2:6e:38:15:a4:af:c3:44:a9:1f: 0b:84:04:92:04:e8:b9:c1:ef:9d:9b:74:62:02:81: c9:39:b2:0d:c0:2d:ba:a5:c0:a8:5f:c2:b7:80:5b: 4a:29:a1:2d:01:28:28:b0:dc:85:7b:5b:7c:f4:de: 88:63:c3:58:13:c7:a0:fe:6a:a6:7b:c7:15:52:58: 8e:4f:2e:e4:bf:1a:03:8d:3a:f9:57:3b:99:89:5b: 7a:8a:d7:e1:57:7a:62:b8:3c:c1:8a:93:9f:f4:cb: 27:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8C:C3:3D:14:22:04:76:E2:0B:06:8B:68:2B:87:F4:EA:99:BE:47 X509v3 Authority Key Identifier: keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c0:0e:f1:30:a4:95:74:50:29:91:dd:6c:54:dd:18:65:03: 98:d5:36:c3:24:56:6d:0b:f3:97:53:6d:1e:88:c8:da:f8:22: e7:29:55:25:77:f7:05:57:a7:c0:06:4a:59:49:7f:79:0d:50: fb:d7:09:97:54:79:69:86:c7:57:b6:7e:0f:69:69:2f:ff:f1: fd:e4:ee:14:8c:4b:b2:81:53:89:0f:78:c0:c5:6e:ce:92:35: 44:45:ed:99:fb:db:5b:bb:1d:a7:16:8b:53:b1:b5:e4:cf:36: cc:4d:9e:0d:dc:1f:21:0d:e3:95:8e:59:2f:2b:1a:8f:27:c3: 5f:7c:17:af:d1:a3:60:c3:fd:d7:26:86:8e:eb:2f:8f:a9:14: c4:f3:28:54:d8:4d:dc:44:b8:a3:f0:67:b3:9e:a2:f4:f9:a1: ee:7b:c8:74:a0:0e:28:09:93:ed:c4:ea:2b:8c:01:b7:e5:b1: 15:04:db:5a:ae:c2:16:51:40:6f:f2:13:c3:fe:5f:01:a1:b6: 70:53:e8:e5:51:73:09:61:ea:9c:71:f5:f3:8f:d8:f9:89:45: 70:3a:4b:3a:f0:a2:7f:e2:56:90:e1:0c:0a:e4:49:e2:ac:31: de:9b:31:f7:df:fb:97:13:bd:9d:11:4d:b3:d1:ba:7b:1c:1c: aa:d0:8d:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvFUeNj5bfItQIB0STZ4sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNzMxMzI0N2M0ODZmZTQzNDgzM2MwOTA4N2EwMGE5MDAz MDE4NDAwHhcNMjUxMjI0MTkwMDU1WhcNMjUxMjI1MTkwMDU1WjAzMTEwLwYDVQQD EyhiOThjYzMzZDE0MjIwNDc2ZTIwYjA2OGI2ODJiODdmNGVhOTliZTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4KC/+iLdgW0BoJYZsOEFEfqn0tw MQ615RdEMP7d8m7F+rxvIpOcjiL+VFnRTmDePHanBMEZkrqBsKY+KBCTEoM+Pc2M MH/j79qe4FP58Vw5I9Qmys0be+i0Qyp07CCsosxgdAOCXKRgb8WkVGYFXcyWhtpm zLjGgZnlslTcJfDRvqze0wrLRr4oHPS3GzOnJY4CEe2/H4l1dNJuOBWkr8NEqR8L hASSBOi5we+dm3RiAoHJObINwC26pcCoX8K3gFtKKaEtASgosNyFe1t89N6IY8NY E8eg/mqme8cVUliOTy7kvxoDjTr5VzuZiVt6itfhV3piuDzBipOf9MsnaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmMwz0UIgR24gsGi2grh/Tqmb5HMB8GA1UdIwQY MBaAFIJzEyR8SG/kNIM8CQh6AKkAMBhAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUt OGQ0NzcyNTk4MzliLzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUtOGQ0NzcyNTk4Mzli LzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm8AO8TCk lXRQKZHdbFTdGGUDmNU2wyRWbQvzl1NtHojI2vgi5ylVJXf3BVenwAZKWUl/eQ1Q +9cJl1R5aYbHV7Z+D2lpL//x/eTuFIxLsoFTiQ94wMVuzpI1REXtmfvbW7sdpxaL U7G15M82zE2eDdwfIQ3jlY5ZLysajyfDX3wXr9GjYMP91yaGjusvj6kUxPMoVNhN 3ES4o/Bns56i9Pmh7nvIdKAOKAmT7cTqK4wBt+WxFQTbWq7CFlFAb/ITw/5fAaG2 cFPo5VFzCWHqnHH184/Y+YlFcDpLOvCif+JWkOEMCuRJ4qwx3psx99/7lxO9nRFN s9G6exwcqtCNQQ== -----END CERTIFICATE-----Generated at Thu Dec 25 01:24:19 2025 by rpki-client