This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft File: G_GA7KTkQF6Heotjkjp1iNd-OdI.mft (raw, json) Hash identifier: tsZeJGCYofWZNbL+WrAAraiiKG0aRQH3qQLK6+SFD0g= Subject key identifier: 6F:10:80:A7:7A:8D:96:79:58:6D:99:39:62:BD:34:44:00:1D:CB:63 Authority key identifier: 1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2 Certificate issuer: /CN=1bf180eca4e4405e877a8b63923a7588d77e39d2 Certificate serial: 019B544FADCADB8738D0E68503AA6A48F503 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft Manifest number: 06EB Signing time: Thu 25 Dec 2025 07:01:06 +0000 Manifest this update: Thu 25 Dec 2025 07:01:06 +0000 Manifest next update: Fri 26 Dec 2025 07:01:06 +0000 Files and hashes: 1: G_GA7KTkQF6Heotjkjp1iNd-OdI.crl (hash: fP8c+Aq0uSUIqNXWNg/soOTL20fg//exU5UOgLkG9rw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 07:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:4f:ad:ca:db:87:38:d0:e6:85:03:aa:6a:48:f5:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bf180eca4e4405e877a8b63923a7588d77e39d2 Validity Not Before: Dec 25 07:01:06 2025 GMT Not After : Dec 26 07:01:06 2025 GMT Subject: CN=6f1080a77a8d9679586d993962bd3444001dcb63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:34:96:0d:eb:39:e0:31:ec:b1:71:de:78: ae:98:9b:04:18:82:2a:9c:c2:e6:cd:d6:af:4e:53: 23:c1:97:6b:d5:e5:3d:78:0e:23:ae:2d:f8:7f:88: 8a:36:e6:6f:19:e7:72:18:74:c4:4e:0e:5d:f1:07: 32:a8:ad:96:44:dd:e0:6c:4d:78:28:d8:c4:bd:41: 5f:78:26:3b:5d:d4:c0:bd:a8:5b:b2:45:dc:44:f0: a5:fd:af:44:c9:6c:05:18:20:e4:05:26:1f:d7:a9: 34:2c:95:2b:98:04:a5:9e:48:b2:f0:97:2f:fe:30: a2:23:10:5e:ee:6a:91:fe:90:69:c1:ef:04:db:4f: 06:e1:53:f4:1d:18:73:9a:17:b8:ba:c0:6e:48:f5: a7:80:2f:cc:d8:36:b5:31:7c:26:9c:38:54:fc:f9: d6:bb:ba:82:04:d9:2d:9b:da:60:f7:06:4f:85:ef: 2a:cb:85:ce:85:76:5b:1f:69:ca:f7:f6:03:23:30: 45:5b:45:7e:da:08:6c:f2:a5:d1:cb:5a:ff:91:3c: 47:aa:08:dd:e9:ba:4c:19:63:39:9d:b3:d3:c3:12: 08:23:05:9f:00:c0:a3:b7:ee:fb:dc:f0:5a:7f:37: 1b:6d:1a:52:42:49:00:8c:6e:36:44:80:2d:f9:9e: 07:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:10:80:A7:7A:8D:96:79:58:6D:99:39:62:BD:34:44:00:1D:CB:63 X509v3 Authority Key Identifier: keyid:1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:4d:01:3d:24:3b:6b:5b:02:f3:2e:20:96:1e:a3:c5:6e:9c: 3b:fd:8e:7e:ed:c9:a8:f5:0c:a4:76:dc:92:d2:0a:01:f6:5e: 88:a9:e7:34:1c:29:d8:db:db:3e:0d:0d:65:0a:63:24:2d:ad: 4a:62:1a:2e:20:65:72:fa:20:7a:39:14:97:48:42:7b:a6:d8: bf:6b:54:3d:07:e5:39:e3:7d:78:1c:e2:ee:da:01:79:34:be: 84:93:fc:a4:fc:25:16:f2:2e:43:6a:d0:c2:77:47:77:ce:d9: 65:48:f4:f5:e3:50:f6:1e:21:d6:5a:29:5d:0f:41:6b:a0:9c: b1:85:47:9f:67:fa:2c:7a:af:f4:d8:7f:63:68:97:64:30:d8: 9e:6f:95:a4:cb:6c:31:f0:43:f7:5f:66:31:2b:3f:55:79:85: 7f:6b:17:dd:a9:91:0d:9c:d2:72:76:61:b0:b6:ae:87:7c:0c: 2e:f0:41:72:31:1d:45:62:57:2b:b6:79:72:ea:fd:fd:53:9f: a9:cc:73:89:2e:9a:c9:1e:13:54:77:e7:7e:f3:4f:ae:2b:57: a7:0f:09:db:e9:be:08:c8:78:7d:66:76:fe:09:07:c1:af:d9: 06:74:c7:c8:5a:56:d5:f9:02:33:df:68:ff:a1:f3:d5:ee:38: d9:6f:f0:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUT63K24c40OaFA6pqSPUDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZjE4MGVjYTRlNDQwNWU4NzdhOGI2MzkyM2E3NTg4ZDc3 ZTM5ZDIwHhcNMjUxMjI1MDcwMTA2WhcNMjUxMjI2MDcwMTA2WjAzMTEwLwYDVQQD Eyg2ZjEwODBhNzdhOGQ5Njc5NTg2ZDk5Mzk2MmJkMzQ0NDAwMWRjYjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywQ0lg3rOeAx7LFx3niumJsEGIIq nMLmzdavTlMjwZdr1eU9eA4jri34f4iKNuZvGedyGHTETg5d8QcyqK2WRN3gbE14 KNjEvUFfeCY7XdTAvahbskXcRPCl/a9EyWwFGCDkBSYf16k0LJUrmASlnkiy8Jcv /jCiIxBe7mqR/pBpwe8E208G4VP0HRhzmhe4usBuSPWngC/M2Da1MXwmnDhU/PnW u7qCBNktm9pg9wZPhe8qy4XOhXZbH2nK9/YDIzBFW0V+2ghs8qXRy1r/kTxHqgjd 6bpMGWM5nbPTwxIIIwWfAMCjt+773PBafzcbbRpSQkkAjG42RIAt+Z4HewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG8QgKd6jZZ5WG2ZOWK9NEQAHctjMB8GA1UdIwQY MBaAFBvxgOyk5EBeh3qLY5I6dYjXfjnSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR19HQTdLVGtRRjZIZW90amtqcDFpTmQtT2RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9lODkyMmQtYjMwNC00MTg4LWJkYTYt ZGM2YjFmZjcyYzE4LzEvR19HQTdLVGtRRjZIZW90amtqcDFpTmQtT2RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9lODkyMmQtYjMwNC00MTg4LWJkYTYtZGM2YjFmZjcyYzE4 LzEvR19HQTdLVGtRRjZIZW90amtqcDFpTmQtT2RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV00BPSQ7 a1sC8y4glh6jxW6cO/2Ofu3JqPUMpHbcktIKAfZeiKnnNBwp2NvbPg0NZQpjJC2t SmIaLiBlcvogejkUl0hCe6bYv2tUPQflOeN9eBzi7toBeTS+hJP8pPwlFvIuQ2rQ wndHd87ZZUj09eNQ9h4h1lopXQ9Ba6CcsYVHn2f6LHqv9Nh/Y2iXZDDYnm+VpMts MfBD919mMSs/VXmFf2sX3amRDZzScnZhsLauh3wMLvBBcjEdRWJXK7Z5cur9/VOf qcxziS6ayR4TVHfnfvNPritXpw8J2+m+CMh4fWZ2/gkHwa/ZBnTHyFpW1fkCM99o /6Hz1e442W/wrA== -----END CERTIFICATE-----Generated at Thu Dec 25 15:41:59 2025 by rpki-client