This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft File: gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json) Hash identifier: O4W4hmDwt2YPDgRZPcutEGCrHxDf4OxjTCIfo9LQ3Mg= Subject key identifier: 8A:7B:2D:D4:14:5C:A5:12:22:E5:BF:C5:6C:3F:04:E5:8B:D7:5A:06 Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66 Certificate issuer: /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66 Certificate serial: 019B36B3A0EC98844687A3265BFF98357927 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft Manifest number: 1782 Signing time: Fri 19 Dec 2025 13:01:40 +0000 Manifest this update: Fri 19 Dec 2025 13:01:40 +0000 Manifest next update: Sat 20 Dec 2025 13:01:40 +0000 Files and hashes: 1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: CMk0thdq+Gp4vIM2125kb8PtJjuA7f0vBs7ABRvlpmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 13:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b3:a0:ec:98:84:46:87:a3:26:5b:ff:98:35:79:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66 Validity Not Before: Dec 19 13:01:40 2025 GMT Not After : Dec 20 13:01:40 2025 GMT Subject: CN=8a7b2dd4145ca51222e5bfc56c3f04e58bd75a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:88:af:33:7b:71:ce:08:27:8d:aa:b8:73:ac: b9:d9:01:53:4a:37:21:d0:68:11:e6:56:7f:59:92: 70:70:48:1f:4b:fb:15:0f:4b:3a:5c:31:90:5b:ee: ee:d3:b3:62:49:6f:c0:a6:ce:71:92:bb:a7:ad:2c: 9f:e7:5a:0d:cc:0f:c2:95:a2:ee:cf:ee:3b:86:0a: e7:2e:1f:fc:5f:7f:47:8d:9b:d0:58:dd:5c:5e:ea: ff:c5:28:c6:aa:39:2d:c6:3e:65:73:25:ee:d8:af: 77:37:41:9c:ed:9f:33:3b:70:2c:0b:38:a3:a1:3d: c8:7e:8b:b9:97:fd:39:b2:2a:99:f6:83:96:31:79: e4:ae:4f:59:00:c6:b6:45:21:00:8c:a2:fb:eb:c5: 6f:be:53:d9:65:bb:f1:fe:de:33:7d:1d:9c:ab:92: 01:7f:7c:81:d3:ab:2b:ee:7d:3c:fe:3e:c9:27:e7: 7c:13:40:93:d8:2c:34:ef:08:55:43:d5:c3:ac:0d: 56:d4:a6:d5:b3:11:35:67:c6:58:67:51:b1:21:02: a2:56:fc:cc:73:4c:b6:d7:05:0f:cb:0d:c4:cc:03: a4:02:5f:9c:d9:0e:ae:b6:a1:e4:da:ca:2e:50:a5: ac:bb:b1:cb:20:69:5a:ef:fc:ab:5d:dc:7e:91:1f: da:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7B:2D:D4:14:5C:A5:12:22:E5:BF:C5:6C:3F:04:E5:8B:D7:5A:06 X509v3 Authority Key Identifier: keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:7d:67:d7:f3:52:c8:88:67:72:71:b3:f4:93:8f:c4:f2:ce: 21:95:1e:69:32:c9:c9:06:6d:c4:90:f5:fd:47:6f:02:a0:26: e8:7f:24:47:89:68:93:89:0e:ef:08:75:77:4d:07:8a:b4:2f: b7:fd:f0:07:77:04:c3:86:03:d5:23:8c:6a:d2:97:b1:e4:70: dc:a6:18:60:10:47:5e:03:ac:c8:b5:c5:a5:ea:3b:04:34:0b: 5a:b4:f1:5e:20:6b:fb:57:e3:3c:11:f4:dd:1a:fb:5d:ca:bc: 85:96:07:2b:14:17:64:4a:91:46:fb:7b:58:13:23:06:da:54: 6b:4c:bc:89:9b:38:39:9a:c2:87:4e:34:70:1a:e7:cb:01:d6: c3:ad:1d:f7:2d:9b:31:40:da:9b:6d:c4:f3:15:47:b9:46:22: 01:15:5e:90:5b:ad:6d:a5:cc:e6:e0:7c:56:c3:bf:97:12:3a: a5:eb:7a:1d:e3:16:00:fe:e7:8c:4f:b2:4d:eb:00:87:1c:85: 62:a9:ef:aa:6c:c9:4c:65:90:6f:9d:bd:96:44:0c:32:2c:b9: 2c:e8:74:05:43:e4:a1:b0:36:88:8b:dc:f7:ed:f7:74:e6:1f: 25:9b:45:d4:af:97:f9:ab:ae:7f:11:c0:6d:b7:f9:10:25:53: f1:da:19:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2s6DsmIRGh6MmW/+YNXknMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNDE0ZjcwNmY2Y2QyYzg3YWYwZjYwNmIyZDEzNzZiODZi NWZhNjYwHhcNMjUxMjE5MTMwMTQwWhcNMjUxMjIwMTMwMTQwWjAzMTEwLwYDVQQD Eyg4YTdiMmRkNDE0NWNhNTEyMjJlNWJmYzU2YzNmMDRlNThiZDc1YTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYivM3txzggnjaq4c6y52QFTSjch 0GgR5lZ/WZJwcEgfS/sVD0s6XDGQW+7u07NiSW/Aps5xkrunrSyf51oNzA/ClaLu z+47hgrnLh/8X39HjZvQWN1cXur/xSjGqjktxj5lcyXu2K93N0Gc7Z8zO3AsCzij oT3Ifou5l/05siqZ9oOWMXnkrk9ZAMa2RSEAjKL768VvvlPZZbvx/t4zfR2cq5IB f3yB06sr7n08/j7JJ+d8E0CT2Cw07whVQ9XDrA1W1KbVsxE1Z8ZYZ1GxIQKiVvzM c0y21wUPyw3EzAOkAl+c2Q6utqHk2souUKWsu7HLIGla7/yrXdx+kR/azQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIp7LdQUXKUSIuW/xWw/BOWL11oGMB8GA1UdIwQY MBaAFIBBT3BvbNLIevD2BrLRN2uGtfpmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy84MWU1YmQtZjdhYi00Mjg3LWJiYjUt NmQ4NTZmODRhODEzLzEvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy84MWU1YmQtZjdhYi00Mjg3LWJiYjUtNmQ4NTZmODRhODEz LzEvZ0VGUGNHOXMwc2g2OFBZR3N0RTNhNGExLW1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqn1n1/NS yIhncnGz9JOPxPLOIZUeaTLJyQZtxJD1/UdvAqAm6H8kR4lok4kO7wh1d00HirQv t/3wB3cEw4YD1SOMatKXseRw3KYYYBBHXgOsyLXFpeo7BDQLWrTxXiBr+1fjPBH0 3Rr7Xcq8hZYHKxQXZEqRRvt7WBMjBtpUa0y8iZs4OZrCh040cBrnywHWw60d9y2b MUDam23E8xVHuUYiARVekFutbaXM5uB8VsO/lxI6pet6HeMWAP7njE+yTesAhxyF YqnvqmzJTGWQb529lkQMMiy5LOh0BUPkobA2iIvc9+33dOYfJZtF1K+X+auufxHA bbf5ECVT8doZOw== -----END CERTIFICATE-----Generated at Fri Dec 19 17:22:28 2025 by rpki-client