This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft File: GAIUWTANFfrFUHBc9uJYmZ09hro.mft (raw, json) Hash identifier: 0ZCMj9mcQF0KHEdbQlrpn9xEo3bedCtFSau75q2X4F4= Subject key identifier: A5:DA:65:66:D7:C4:3F:72:19:82:18:51:C0:65:54:D7:62:2E:C0:4E Authority key identifier: 18:02:14:59:30:0D:15:FA:C5:50:70:5C:F6:E2:58:99:9D:3D:86:BA Certificate issuer: /CN=18021459300d15fac550705cf6e258999d3d86ba Certificate serial: 019B32320B30462AC98A3DEA7B08BEEF9C02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft Manifest number: 0C65 Signing time: Thu 18 Dec 2025 16:01:39 +0000 Manifest this update: Thu 18 Dec 2025 16:01:39 +0000 Manifest next update: Fri 19 Dec 2025 16:01:39 +0000 Files and hashes: 1: GAIUWTANFfrFUHBc9uJYmZ09hro.crl (hash: KqzLOPQtWYmEBnRRNzJIa7H2i/vwLUUMlRl0s9Z1x5I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:32:0b:30:46:2a:c9:8a:3d:ea:7b:08:be:ef:9c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18021459300d15fac550705cf6e258999d3d86ba Validity Not Before: Dec 18 16:01:39 2025 GMT Not After : Dec 19 16:01:39 2025 GMT Subject: CN=a5da6566d7c43f7219821851c06554d7622ec04e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:06:49:80:17:ea:97:47:24:8c:19:ea:ad:32: 25:16:2c:ca:4a:87:05:85:c2:c1:6a:07:17:59:45: 37:cd:10:a5:bd:6d:d6:05:e5:ba:78:65:ff:69:a2: b7:c2:45:a4:d1:a6:10:8f:aa:4d:e3:5a:1f:92:1a: 90:8b:45:d0:51:14:dc:ed:07:33:3b:45:f6:0e:ae: b1:20:76:29:3a:45:4a:ac:06:74:8e:10:42:cc:73: 99:ba:27:27:8f:00:18:79:2a:a9:04:13:4f:35:25: 6c:42:1c:1e:68:5e:d7:c1:ab:fc:12:ed:48:5a:06: 01:27:6e:62:31:55:38:94:f3:c0:23:c6:00:6d:1f: cc:00:bb:ae:1a:f4:22:88:91:58:e8:c5:f5:bf:c6: 24:f6:d4:24:9a:1e:5d:b8:e1:fd:e5:95:56:5d:00: 35:eb:15:13:e8:2c:ad:ca:32:86:33:82:ec:38:51: 63:a7:49:85:a2:e8:16:8a:85:6e:c6:51:fa:05:26: fb:a0:62:39:4d:99:f9:08:c6:6d:77:c9:4f:c7:a2: 4b:63:57:98:84:29:e3:dc:55:f1:0e:0a:3c:9c:87: 93:c5:47:18:27:46:3c:1e:16:52:55:81:7b:90:a8: 29:e0:81:5e:fd:60:41:c2:01:9a:3e:b4:f7:ef:11: 24:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DA:65:66:D7:C4:3F:72:19:82:18:51:C0:65:54:D7:62:2E:C0:4E X509v3 Authority Key Identifier: keyid:18:02:14:59:30:0D:15:FA:C5:50:70:5C:F6:E2:58:99:9D:3D:86:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GAIUWTANFfrFUHBc9uJYmZ09hro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d3327-7084-4ced-9967-9224ce2e965a/1/GAIUWTANFfrFUHBc9uJYmZ09hro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e3:e2:24:71:f7:17:27:3d:c3:2b:34:75:9b:15:33:fc:8c: fa:54:30:1f:00:c1:22:56:ff:f1:ba:4b:44:dd:21:ec:f2:6e: 03:3a:8c:48:61:03:ef:25:98:72:23:e5:cf:fc:ea:de:a8:79: a3:c8:ce:23:54:f3:ca:19:19:23:94:77:42:4c:c5:ea:d2:46: be:fc:4a:43:51:33:3f:d5:c9:e6:3d:67:fd:ce:9f:25:e7:cd: 3f:7a:d2:43:f3:ea:7f:d8:7a:09:1d:f9:f3:af:46:57:52:9a: f6:8d:86:27:90:06:70:97:9d:10:71:e2:d4:61:46:a0:ef:45: 6f:79:36:07:87:bc:a5:09:06:1d:d0:ec:36:00:53:8d:68:9e: f4:6a:e7:eb:0b:93:64:52:e5:ae:30:bc:c7:ef:df:a1:b5:6e: 55:ac:c3:39:8e:54:49:7e:3b:36:bd:7f:0b:0c:58:44:83:0e: 4e:82:23:64:d0:61:34:80:e8:cc:ea:ce:a1:89:66:f0:86:3f: 63:ab:4f:a9:2c:e0:ef:a6:c6:38:6a:58:f2:72:fc:fe:da:fa: aa:b6:a1:55:36:2e:38:d6:e1:3d:17:1a:92:97:1d:af:32:55: 39:5f:13:3a:ec:e3:ab:db:0c:2b:19:c9:82:24:fa:8a:5f:d6: d4:d0:a6:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyMgswRirJij3qewi+75wCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4MDIxNDU5MzAwZDE1ZmFjNTUwNzA1Y2Y2ZTI1ODk5OWQz ZDg2YmEwHhcNMjUxMjE4MTYwMTM5WhcNMjUxMjE5MTYwMTM5WjAzMTEwLwYDVQQD EyhhNWRhNjU2NmQ3YzQzZjcyMTk4MjE4NTFjMDY1NTRkNzYyMmVjMDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgZJgBfql0ckjBnqrTIlFizKSocF hcLBagcXWUU3zRClvW3WBeW6eGX/aaK3wkWk0aYQj6pN41ofkhqQi0XQURTc7Qcz O0X2Dq6xIHYpOkVKrAZ0jhBCzHOZuicnjwAYeSqpBBNPNSVsQhweaF7Xwav8Eu1I WgYBJ25iMVU4lPPAI8YAbR/MALuuGvQiiJFY6MX1v8Yk9tQkmh5duOH95ZVWXQA1 6xUT6CytyjKGM4LsOFFjp0mFougWioVuxlH6BSb7oGI5TZn5CMZtd8lPx6JLY1eY hCnj3FXxDgo8nIeTxUcYJ0Y8HhZSVYF7kKgp4IFe/WBBwgGaPrT37xEkRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKXaZWbXxD9yGYIYUcBlVNdiLsBOMB8GA1UdIwQY MBaAFBgCFFkwDRX6xVBwXPbiWJmdPYa6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZDMzMjctNzA4NC00Y2VkLTk5Njct OTIyNGNlMmU5NjVhLzEvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83ZDMzMjctNzA4NC00Y2VkLTk5NjctOTIyNGNlMmU5NjVh LzEvR0FJVVdUQU5GZnJGVUhCYzl1SlltWjA5aHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWuPiJHH3 Fyc9wys0dZsVM/yM+lQwHwDBIlb/8bpLRN0h7PJuAzqMSGED7yWYciPlz/zq3qh5 o8jOI1TzyhkZI5R3QkzF6tJGvvxKQ1EzP9XJ5j1n/c6fJefNP3rSQ/Pqf9h6CR35 869GV1Ka9o2GJ5AGcJedEHHi1GFGoO9Fb3k2B4e8pQkGHdDsNgBTjWie9Grn6wuT ZFLlrjC8x+/fobVuVazDOY5USX47Nr1/CwxYRIMOToIjZNBhNIDozOrOoYlm8IY/ Y6tPqSzg76bGOGpY8nL8/tr6qrahVTYuONbhPRcakpcdrzJVOV8TOuzjq9sMKxnJ giT6il/W1NCmeA== -----END CERTIFICATE-----Generated at Thu Dec 18 22:36:24 2025 by rpki-client