This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft File: GiR0zlteIgufQxr8hq9OwUD18Ww.mft (raw, json) Hash identifier: Ckp37DtJseHFiPQQy9kqDyfrBq/+b+taxB+m6M64CWw= Subject key identifier: 30:11:DE:67:8D:2C:1F:14:E9:7D:7E:0A:5D:7C:C7:01:24:99:5D:6F Authority key identifier: 1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C Certificate issuer: /CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c Certificate serial: 019B30E8F67C6DBCF727C4F20A3EE5791202 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft Manifest number: 0C5F Signing time: Thu 18 Dec 2025 10:02:12 +0000 Manifest this update: Thu 18 Dec 2025 10:02:12 +0000 Manifest next update: Fri 19 Dec 2025 10:02:12 +0000 Files and hashes: 1: GiR0zlteIgufQxr8hq9OwUD18Ww.crl (hash: HX7VfyBBdTRNSOVvIKo4Oy0+2/JYnhJeJpFTlUREwZw=) 2: xkDVDS74gDDghtjYO_lZo1jkZAw.roa (hash: U2DpQz2gMSrA9mkY42SKxIWprno9ie8cfBuo5TlCH84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e8:f6:7c:6d:bc:f7:27:c4:f2:0a:3e:e5:79:12:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c Validity Not Before: Dec 18 10:02:12 2025 GMT Not After : Dec 19 10:02:12 2025 GMT Subject: CN=3011de678d2c1f14e97d7e0a5d7cc70124995d6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:04:29:05:c0:0d:c5:19:40:b2:c0:d7:a4:15: 35:f4:f8:f1:66:64:49:da:02:57:69:ca:88:e6:7e: c9:a9:7c:36:eb:50:53:c8:15:c9:cb:da:06:d1:97: 60:ed:13:87:80:7d:c2:4e:aa:68:bf:12:00:86:61: 5e:64:04:9e:fd:9c:2b:0c:f6:c9:c2:37:14:3a:ba: d2:34:dc:45:e7:04:3e:1c:42:e6:93:ad:6a:a9:0b: 87:ea:7a:29:a7:eb:ab:53:a0:08:36:37:64:24:ff: dc:0f:1b:f6:f2:56:e7:d1:80:d2:c3:d7:77:89:8e: 8a:33:7b:33:36:cc:fa:1f:09:b6:c3:1c:f0:3e:38: 17:30:91:70:1d:9f:16:08:8c:26:25:fd:69:71:ac: 78:4d:b0:22:5a:ba:51:a8:e8:ab:83:7c:fc:8c:36: 74:61:11:26:a4:77:ed:fd:42:25:27:07:72:81:ed: 81:f8:a7:5e:08:df:9d:a5:73:75:5c:d6:0c:41:1e: 3b:cc:5f:fb:e2:83:71:e4:70:6b:f2:a8:5a:ad:fb: a1:06:35:6e:ca:0b:7d:22:75:4f:1b:85:ae:5a:0c: 58:26:92:51:f3:5d:dd:26:5e:6e:ad:04:33:f5:81: c7:08:ef:4a:6d:3f:54:59:c3:21:13:99:1b:63:3a: 8b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:11:DE:67:8D:2C:1F:14:E9:7D:7E:0A:5D:7C:C7:01:24:99:5D:6F X509v3 Authority Key Identifier: keyid:1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:ef:51:e8:f1:b8:83:d2:89:a7:aa:29:7b:b0:69:76:37:78: 7c:6c:f4:e5:79:92:9b:72:bb:0f:7f:28:cc:6a:79:e2:be:d4: 3e:d6:4a:23:b5:a2:ee:f0:b5:eb:10:8f:18:1c:c5:ec:2a:22: c5:8b:ea:47:39:f9:94:b6:79:69:8c:13:3c:a4:f8:d2:e4:5b: 0b:19:5a:cc:52:ad:8b:52:2e:44:28:90:4d:9b:14:4c:69:67: a4:a5:9d:20:7d:e9:7d:4e:f4:f8:a9:12:cc:ec:c3:3d:08:c3: fd:83:c4:43:03:70:95:2b:73:96:53:9c:39:e6:69:89:e8:cb: 20:88:50:34:bb:69:95:4b:4e:ce:7f:e3:3f:b4:ed:bd:12:47: 54:10:3f:58:36:45:89:bd:c6:a6:ab:ec:03:f9:c0:d0:4a:5c: b3:77:90:58:9e:3e:ff:16:aa:ac:c8:48:d7:bd:33:c7:0b:f4: c2:7f:3f:87:03:e3:d4:d1:5f:a7:fb:05:78:63:22:b4:3f:91: 34:69:de:14:39:c2:8b:ce:9f:55:15:34:5b:9e:0c:02:8f:39: ae:2d:6e:ca:0b:3c:84:67:d9:ee:70:7f:77:81:52:06:5c:d9: 44:4f:93:20:a2:e9:61:36:53:3d:c8:3e:2f:65:81:48:9a:9f: fc:72:28:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw6PZ8bbz3J8TyCj7leRICMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhMjQ3NGNlNWI1ZTIyMGI5ZjQzMWFmYzg2YWY0ZWMxNDBm NWYxNmMwHhcNMjUxMjE4MTAwMjEyWhcNMjUxMjE5MTAwMjEyWjAzMTEwLwYDVQQD EygzMDExZGU2NzhkMmMxZjE0ZTk3ZDdlMGE1ZDdjYzcwMTI0OTk1ZDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQQpBcANxRlAssDXpBU19PjxZmRJ 2gJXacqI5n7JqXw261BTyBXJy9oG0Zdg7ROHgH3CTqpovxIAhmFeZASe/ZwrDPbJ wjcUOrrSNNxF5wQ+HELmk61qqQuH6nopp+urU6AINjdkJP/cDxv28lbn0YDSw9d3 iY6KM3szNsz6Hwm2wxzwPjgXMJFwHZ8WCIwmJf1pcax4TbAiWrpRqOirg3z8jDZ0 YREmpHft/UIlJwdyge2B+KdeCN+dpXN1XNYMQR47zF/74oNx5HBr8qharfuhBjVu ygt9InVPG4WuWgxYJpJR813dJl5urQQz9YHHCO9KbT9UWcMhE5kbYzqLQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDAR3meNLB8U6X1+Cl18xwEkmV1vMB8GA1UdIwQY MBaAFBokdM5bXiILn0Ma/IavTsFA9fFsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2It ZDdkMDJlOTdlMjVkLzEvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2ItZDdkMDJlOTdlMjVk LzEvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaO9R6PG4 g9KJp6ope7Bpdjd4fGz05XmSm3K7D38ozGp54r7UPtZKI7Wi7vC16xCPGBzF7Coi xYvqRzn5lLZ5aYwTPKT40uRbCxlazFKti1IuRCiQTZsUTGlnpKWdIH3pfU70+KkS zOzDPQjD/YPEQwNwlStzllOcOeZpiejLIIhQNLtplUtOzn/jP7TtvRJHVBA/WDZF ib3GpqvsA/nA0Epcs3eQWJ4+/xaqrMhI170zxwv0wn8/hwPj1NFfp/sFeGMitD+R NGneFDnCi86fVRU0W54MAo85ri1uygs8hGfZ7nB/d4FSBlzZRE+TIKLpYTZTPcg+ L2WBSJqf/HIorA== -----END CERTIFICATE-----Generated at Thu Dec 18 14:04:48 2025 by rpki-client