This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft File: GiR0zlteIgufQxr8hq9OwUD18Ww.mft (raw, json) Hash identifier: 5NzRpcxMHpgUu+M+aG7CDmWVVIyZ8hlwx4mjxkHeUgU= Subject key identifier: 18:01:42:49:A8:CC:38:7A:78:66:DE:EA:2E:66:27:1E:38:10:23:72 Authority key identifier: 1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C Certificate issuer: /CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c Certificate serial: 019B2D0AFCE64EAEBAD68386AD0CF2FE3476 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft Manifest number: 0C5D Signing time: Wed 17 Dec 2025 16:00:53 +0000 Manifest this update: Wed 17 Dec 2025 16:00:53 +0000 Manifest next update: Thu 18 Dec 2025 16:00:53 +0000 Files and hashes: 1: GiR0zlteIgufQxr8hq9OwUD18Ww.crl (hash: Nfsjs5glN1h9E1bNYiAy7hVEJfcyu5t8XgQFrB58HEM=) 2: xkDVDS74gDDghtjYO_lZo1jkZAw.roa (hash: U2DpQz2gMSrA9mkY42SKxIWprno9ie8cfBuo5TlCH84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0a:fc:e6:4e:ae:ba:d6:83:86:ad:0c:f2:fe:34:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c Validity Not Before: Dec 17 16:00:53 2025 GMT Not After : Dec 18 16:00:53 2025 GMT Subject: CN=18014249a8cc387a7866deea2e66271e38102372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:34:3d:40:f3:71:11:33:ec:9d:1f:94:d7:04: 2b:83:72:aa:50:65:78:61:9f:e8:df:9b:12:fc:a4: 1a:00:6f:39:91:65:cb:4a:8a:a6:6a:7b:5a:8a:f9: 7f:df:25:71:31:00:69:24:8c:a9:75:aa:82:86:43: e1:7c:33:df:f5:a3:76:55:ee:ec:38:bd:39:54:b6: 3f:21:47:b0:f7:28:f9:95:cf:5e:2b:78:89:07:62: 13:81:9c:05:6d:1a:42:fd:9e:bb:ce:25:14:4c:3b: bb:60:62:4e:ce:e1:d1:8a:45:e3:98:55:38:45:15: b1:2d:03:91:60:f7:74:50:50:19:aa:6d:f7:98:73: b3:4a:09:83:18:92:91:78:3e:5c:8e:83:dc:fb:48: 50:29:fd:12:5f:18:a7:70:f2:b2:bc:4c:39:fa:5a: 55:77:07:5d:b1:38:5d:f5:54:ad:b0:14:77:1e:bb: c5:d2:bc:1a:9b:c6:8b:ec:bf:23:26:a0:82:78:3e: 44:34:2f:02:53:c3:3d:32:7a:17:d3:88:b5:61:73: cf:ea:ec:38:5d:50:4a:c8:20:64:b8:74:15:2b:62: e9:9c:dd:a8:18:47:48:f0:7c:0f:46:fc:6c:cf:c8: b6:28:a5:2b:ea:6f:f7:d2:c6:a2:0e:1e:4e:2d:96: 3f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:01:42:49:A8:CC:38:7A:78:66:DE:EA:2E:66:27:1E:38:10:23:72 X509v3 Authority Key Identifier: keyid:1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:8c:4f:d3:4f:2a:b6:5f:9a:3d:b1:ae:34:df:1b:32:ed:33: 15:d7:8f:ef:ef:e5:91:31:e3:6e:07:25:fc:29:b1:10:56:85: 29:57:f6:80:31:a1:ef:bf:29:30:9a:66:49:6b:7c:63:f8:27: 1d:15:86:c1:b8:11:bc:e1:ca:98:69:37:c8:5b:96:a1:0f:ff: 0c:f3:a3:c8:21:ff:e5:70:f7:eb:29:88:d5:d7:1c:37:d5:2e: 93:71:bb:b6:80:c4:ce:6b:36:20:e1:9d:76:63:07:56:dc:83: 58:59:db:6c:92:25:b4:bd:9f:7e:c8:e3:3b:12:77:39:cd:46: 02:0a:f6:48:75:7a:a4:75:32:ef:f5:2b:62:73:c5:0b:43:52: 60:d6:c3:7c:d5:bd:4c:3f:f3:48:54:2a:e2:51:5c:1e:dc:66: 1a:65:3e:2b:68:d0:f5:a1:2b:f8:18:19:a6:bd:8d:aa:4e:e9: 50:34:00:f3:21:5b:e3:c7:07:57:fa:11:fa:3d:7a:b0:56:c2: b0:15:43:52:df:f5:46:e2:80:5c:ef:44:bf:6b:8f:eb:cc:4f: 9e:b4:71:32:7d:5f:54:38:dd:8a:85:3d:5b:67:60:d9:17:25: fc:c8:62:d8:e0:e8:08:f9:eb:08:dd:23:9c:b0:22:5f:ef:16: b1:d5:88:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstCvzmTq661oOGrQzy/jR2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhMjQ3NGNlNWI1ZTIyMGI5ZjQzMWFmYzg2YWY0ZWMxNDBm NWYxNmMwHhcNMjUxMjE3MTYwMDUzWhcNMjUxMjE4MTYwMDUzWjAzMTEwLwYDVQQD EygxODAxNDI0OWE4Y2MzODdhNzg2NmRlZWEyZTY2MjcxZTM4MTAyMzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTQ9QPNxETPsnR+U1wQrg3KqUGV4 YZ/o35sS/KQaAG85kWXLSoqmantaivl/3yVxMQBpJIypdaqChkPhfDPf9aN2Ve7s OL05VLY/IUew9yj5lc9eK3iJB2ITgZwFbRpC/Z67ziUUTDu7YGJOzuHRikXjmFU4 RRWxLQORYPd0UFAZqm33mHOzSgmDGJKReD5cjoPc+0hQKf0SXxincPKyvEw5+lpV dwddsThd9VStsBR3HrvF0rwam8aL7L8jJqCCeD5ENC8CU8M9MnoX04i1YXPP6uw4 XVBKyCBkuHQVK2LpnN2oGEdI8HwPRvxsz8i2KKUr6m/30saiDh5OLZY/9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBgBQkmozDh6eGbe6i5mJx44ECNyMB8GA1UdIwQY MBaAFBokdM5bXiILn0Ma/IavTsFA9fFsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2It ZDdkMDJlOTdlMjVkLzEvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2ItZDdkMDJlOTdlMjVk LzEvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiYxP008q tl+aPbGuNN8bMu0zFdeP7+/lkTHjbgcl/CmxEFaFKVf2gDGh778pMJpmSWt8Y/gn HRWGwbgRvOHKmGk3yFuWoQ//DPOjyCH/5XD36ymI1dccN9Uuk3G7toDEzms2IOGd dmMHVtyDWFnbbJIltL2ffsjjOxJ3Oc1GAgr2SHV6pHUy7/UrYnPFC0NSYNbDfNW9 TD/zSFQq4lFcHtxmGmU+K2jQ9aEr+BgZpr2Nqk7pUDQA8yFb48cHV/oR+j16sFbC sBVDUt/1RuKAXO9Ev2uP68xPnrRxMn1fVDjdioU9W2dg2Rcl/Mhi2ODoCPnrCN0j nLAiX+8WsdWIIQ== -----END CERTIFICATE-----Generated at Wed Dec 17 18:24:32 2025 by rpki-client