This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json) Hash identifier: E8jWnhg54WpBj32sHHXWkqEhXquo7Ta/LiO9/2qtXPc= Subject key identifier: 91:38:5E:C3:79:61:00:B1:F9:23:A6:62:85:62:B3:78:05:8F:3B:1C Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9 Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9 Certificate serial: 019B3C1017600A79C7177E6190E34E4382BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft Manifest number: 0EDA Signing time: Sat 20 Dec 2025 14:00:46 +0000 Manifest this update: Sat 20 Dec 2025 14:00:46 +0000 Manifest next update: Sun 21 Dec 2025 14:00:46 +0000 Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: AbbAt1ogB3Kgt+KbRN/W8qBhAqPfUIeqNR3USdicVYI=) 2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:17:60:0a:79:c7:17:7e:61:90:e3:4e:43:82:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9 Validity Not Before: Dec 20 14:00:46 2025 GMT Not After : Dec 21 14:00:46 2025 GMT Subject: CN=91385ec3796100b1f923a6628562b378058f3b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bc:e9:e2:fd:7d:2c:1a:73:3a:78:43:c3:22: 26:83:82:da:0a:0a:af:92:23:90:74:34:f4:4e:87: 94:f5:9e:84:f7:fe:53:e3:6f:a0:4a:a7:7c:15:ce: 77:4d:a2:a6:fc:35:4a:6b:97:84:13:d7:80:91:03: e8:21:f5:49:b8:f3:c0:dd:bb:d0:56:36:9b:5f:b3: 24:4f:63:72:ee:a3:8f:b7:b6:6c:74:b2:a8:77:2d: d7:93:92:cf:73:f0:d5:fe:21:e8:91:b1:e5:72:fd: 9b:53:1b:8e:55:5f:56:ee:d5:97:e9:24:82:0b:3a: 9f:b8:4b:e7:1f:13:f2:92:68:e5:7c:02:e2:3f:ab: 68:56:38:69:0a:9c:30:7f:b6:31:ff:2c:50:06:be: 07:66:6a:9d:0e:65:e0:0e:be:06:d1:1a:a9:b9:c7: b6:a0:61:bb:ac:d9:d9:5a:76:92:d8:2b:9d:aa:ef: cf:34:80:17:73:78:6d:bd:29:d0:34:c2:4a:dc:48: 64:cd:04:3b:09:17:30:46:49:28:6b:80:f5:c2:99: 30:e2:26:76:46:d3:13:02:05:ce:04:b7:45:68:98: a7:a6:dc:95:6a:82:07:74:de:7c:eb:0f:d7:0b:60: 56:10:67:6a:86:06:5b:0e:67:56:28:23:a9:6b:6b: 6d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:38:5E:C3:79:61:00:B1:F9:23:A6:62:85:62:B3:78:05:8F:3B:1C X509v3 Authority Key Identifier: keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:3a:97:be:f8:23:39:28:0a:c4:b8:8c:90:ba:31:49:3f:f8: 26:87:cf:0d:d9:53:b1:ed:ef:9e:71:ef:5d:72:18:69:12:d6: 7e:dd:39:f0:6d:95:af:00:e4:c8:30:76:47:76:96:25:66:6f: 11:3e:4a:2d:35:93:ab:41:84:59:0c:c1:ea:8b:02:00:01:b3: fc:44:50:5f:1f:f9:36:a9:cb:7d:cc:a7:91:13:0f:0b:37:18: d0:4d:fa:78:d7:f3:61:28:18:53:58:c8:a8:5e:ca:6b:9d:3f: 05:db:0f:79:e1:a7:6f:d8:8d:2f:49:50:c4:d9:4f:e4:d9:f5: 85:1e:06:4c:ed:54:c4:8e:89:86:3b:15:52:c7:18:8e:34:03: 2d:ef:5f:e8:62:5f:92:ba:d5:fe:8f:59:09:47:b0:dd:56:3d: c3:98:76:8b:14:c6:e3:59:ba:8e:de:c7:db:90:d0:f1:cf:e7: b7:89:24:aa:e6:c8:8c:6f:a3:84:35:9d:73:37:82:02:d5:98: 40:c2:c8:86:6d:17:d5:9c:32:cd:a9:36:1c:27:e6:89:38:c6: 09:37:9f:4e:ae:6f:82:54:f2:c9:6e:29:1a:5d:62:dc:14:1f: f3:cf:81:75:c6:2d:57:8a:13:d2:6c:21:96:f4:71:af:28:df: 90:81:17:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8EBdgCnnHF35hkONOQ4K8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyODg5MDNkOTBjMDFlMmQ1Y2UxODc4ODA1YWQ0YTkyZDI4 YWVkYzkwHhcNMjUxMjIwMTQwMDQ2WhcNMjUxMjIxMTQwMDQ2WjAzMTEwLwYDVQQD Eyg5MTM4NWVjMzc5NjEwMGIxZjkyM2E2NjI4NTYyYjM3ODA1OGYzYjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprzp4v19LBpzOnhDwyImg4LaCgqv kiOQdDT0ToeU9Z6E9/5T42+gSqd8Fc53TaKm/DVKa5eEE9eAkQPoIfVJuPPA3bvQ VjabX7MkT2Ny7qOPt7ZsdLKody3Xk5LPc/DV/iHokbHlcv2bUxuOVV9W7tWX6SSC CzqfuEvnHxPykmjlfALiP6toVjhpCpwwf7Yx/yxQBr4HZmqdDmXgDr4G0Rqpuce2 oGG7rNnZWnaS2Cudqu/PNIAXc3htvSnQNMJK3EhkzQQ7CRcwRkkoa4D1wpkw4iZ2 RtMTAgXOBLdFaJinptyVaoIHdN586w/XC2BWEGdqhgZbDmdWKCOpa2ttVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJE4XsN5YQCx+SOmYoVis3gFjzscMB8GA1UdIwQY MBaAFIKIkD2QwB4tXOGHiAWtSpLSiu3JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODIt YTFkZTU4YTNiMzViLzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi84M2Y4MmQtMTU0NS00MDc0LTg2ODItYTFkZTU4YTNiMzVi LzEvZ29pUVBaREFIaTFjNFllSUJhMUtrdEtLN2NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYDqXvvgj OSgKxLiMkLoxST/4JofPDdlTse3vnnHvXXIYaRLWft058G2VrwDkyDB2R3aWJWZv ET5KLTWTq0GEWQzB6osCAAGz/ERQXx/5NqnLfcynkRMPCzcY0E36eNfzYSgYU1jI qF7Ka50/BdsPeeGnb9iNL0lQxNlP5Nn1hR4GTO1UxI6JhjsVUscYjjQDLe9f6GJf krrV/o9ZCUew3VY9w5h2ixTG41m6jt7H25DQ8c/nt4kkqubIjG+jhDWdczeCAtWY QMLIhm0X1Zwyzak2HCfmiTjGCTefTq5vglTyyW4pGl1i3BQf88+BdcYtV4oT0mwh lvRxryjfkIEXWQ== -----END CERTIFICATE-----Generated at Sat Dec 20 16:46:09 2025 by rpki-client