This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json) Hash identifier: gba0HECUgdxPiUsgtmPFvWP9C7uNidEAWwMr5FGBCxg= Subject key identifier: B5:2F:CC:27:7F:06:57:15:55:B7:1C:9C:20:8A:1D:82:EF:DD:DE:E6 Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Certificate serial: 019B2364EB5D60B29A4D3AB98AF87394CDD5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft Manifest number: 170D Signing time: Mon 15 Dec 2025 19:02:54 +0000 Manifest this update: Mon 15 Dec 2025 19:02:54 +0000 Manifest next update: Tue 16 Dec 2025 19:02:54 +0000 Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: lYUV5DzvbDQgMfc3AKq0LRciMla2qLdB9FImwvmjwKw=) 2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:64:eb:5d:60:b2:9a:4d:3a:b9:8a:f8:73:94:cd:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Validity Not Before: Dec 15 19:02:54 2025 GMT Not After : Dec 16 19:02:54 2025 GMT Subject: CN=b52fcc277f06571555b71c9c208a1d82efdddee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:96:ec:a8:70:a6:22:8b:bc:0a:7c:e6:07:d6: a1:75:6e:71:78:89:80:0d:f1:bf:a0:28:7d:5f:55: 32:b0:66:23:09:2c:3a:ac:61:de:70:2d:5d:1f:ee: 10:de:cb:aa:de:dd:19:a8:bd:f1:c8:21:41:a7:d1: 36:19:c3:2f:58:5b:3e:80:73:4f:43:15:ae:f9:c6: f4:fb:54:75:b8:79:4b:b9:04:97:0e:93:79:64:fc: ac:c7:86:a1:74:08:35:e5:69:f6:13:58:b7:dc:db: 38:39:21:83:19:21:8c:9a:ea:a4:b3:70:db:f7:a1: 2b:94:2a:7f:80:ff:d5:b8:67:54:27:34:ba:82:19: a4:0c:bd:54:52:8e:78:fb:7c:c7:8c:7e:b4:9c:ca: 34:3f:9e:5d:18:09:b3:fa:83:c0:6e:32:7f:31:2f: cf:1b:89:48:64:c4:d2:bf:6a:c8:85:7b:f3:6e:e9: 78:56:aa:91:f6:d8:2f:8d:ac:d2:1f:30:93:8d:7f: 2d:9d:1e:35:16:3c:b7:6f:4b:b3:7e:ba:ae:1e:82: f8:1e:d9:f8:ee:2f:71:22:5b:19:62:d6:34:6f:13: bd:54:b8:c8:1c:8c:34:a7:99:54:45:de:7e:30:0f: 09:54:94:d1:0e:38:86:d7:4f:21:3e:a9:43:4e:ab: c0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2F:CC:27:7F:06:57:15:55:B7:1C:9C:20:8A:1D:82:EF:DD:DE:E6 X509v3 Authority Key Identifier: keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b3:4e:a4:d8:60:08:4e:45:17:6d:48:86:ed:17:7f:96:63: 35:b3:80:a9:db:63:b4:02:47:24:af:e6:af:d3:43:24:20:94: 31:08:b8:4c:cc:77:74:38:e1:9e:77:d7:24:87:b9:ed:ad:b0: ad:eb:c8:03:95:1d:3c:c6:cc:d4:be:9e:a8:2d:97:49:ef:8a: 19:22:c2:8e:68:dd:d0:86:9d:93:a7:7b:c2:f4:dc:a0:ba:e9: 85:c7:8f:8d:e1:a6:73:5f:c6:ec:7e:98:be:0c:3c:65:b8:46: db:bd:7b:a5:d1:29:00:58:c6:fc:fb:11:07:6c:e6:9a:b1:6d: 58:58:6b:9e:43:4f:9c:73:80:2d:63:e6:1a:7f:3d:36:f1:ed: 4e:46:bd:3f:d8:c1:0f:a4:f0:27:73:d8:4f:cf:86:db:ab:04: 2b:4e:c4:79:9b:7e:b0:37:e2:eb:99:ed:9c:1c:d1:ee:a2:d6: 10:25:4e:6a:d1:bd:2e:a1:86:c6:f2:60:cf:5a:fd:b5:75:81: cc:f0:55:91:93:bc:ba:bb:fb:28:b4:ba:a3:e2:f3:78:59:77: 9a:96:04:1c:e5:c2:7c:65:05:05:5b:61:56:ad:34:cd:99:24: bf:79:15:8d:55:98:a0:e8:58:20:0d:5d:ae:48:af:3a:c5:93: 67:3e:e3:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsjZOtdYLKaTTq5ivhzlM3VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx NzNhMjcwHhcNMjUxMjE1MTkwMjU0WhcNMjUxMjE2MTkwMjU0WjAzMTEwLwYDVQQD EyhiNTJmY2MyNzdmMDY1NzE1NTViNzFjOWMyMDhhMWQ4MmVmZGRkZWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4JbsqHCmIou8CnzmB9ahdW5xeImA DfG/oCh9X1UysGYjCSw6rGHecC1dH+4Q3suq3t0ZqL3xyCFBp9E2GcMvWFs+gHNP QxWu+cb0+1R1uHlLuQSXDpN5ZPysx4ahdAg15Wn2E1i33Ns4OSGDGSGMmuqks3Db 96ErlCp/gP/VuGdUJzS6ghmkDL1UUo54+3zHjH60nMo0P55dGAmz+oPAbjJ/MS/P G4lIZMTSv2rIhXvzbul4VqqR9tgvjazSHzCTjX8tnR41Fjy3b0uzfrquHoL4Htn4 7i9xIlsZYtY0bxO9VLjIHIw0p5lURd5+MA8JVJTRDjiG108hPqlDTqvAdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUvzCd/BlcVVbccnCCKHYLv3d7mMB8GA1UdIwQY MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPbNOpNhg CE5FF21Ihu0Xf5ZjNbOAqdtjtAJHJK/mr9NDJCCUMQi4TMx3dDjhnnfXJIe57a2w revIA5UdPMbM1L6eqC2XSe+KGSLCjmjd0Iadk6d7wvTcoLrphcePjeGmc1/G7H6Y vgw8ZbhG2717pdEpAFjG/PsRB2zmmrFtWFhrnkNPnHOALWPmGn89NvHtTka9P9jB D6TwJ3PYT8+G26sEK07EeZt+sDfi65ntnBzR7qLWECVOatG9LqGGxvJgz1r9tXWB zPBVkZO8urv7KLS6o+LzeFl3mpYEHOXCfGUFBVthVq00zZkkv3kVjVWYoOhYIA1d rkivOsWTZz7jHw== -----END CERTIFICATE-----Generated at Mon Dec 15 21:35:46 2025 by rpki-client