This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json) Hash identifier: WUPCFcfPr7PH/gVm/SivOvJRdUIvWJQM5DlRMWaS28U= Subject key identifier: F0:B7:B5:2F:D4:D7:10:8C:78:1A:94:79:DE:4C:12:1A:DA:95:40:4C Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Certificate serial: 019B46276BFCC41C006AC60B5B38D323244D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft Manifest number: 171F Signing time: Mon 22 Dec 2025 13:02:27 +0000 Manifest this update: Mon 22 Dec 2025 13:02:27 +0000 Manifest next update: Tue 23 Dec 2025 13:02:27 +0000 Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: y1vF3CE9gcMy+/7fcsA9zH36kN/p9cJouqo9BNA19bU=) 2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:27:6b:fc:c4:1c:00:6a:c6:0b:5b:38:d3:23:24:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Validity Not Before: Dec 22 13:02:27 2025 GMT Not After : Dec 23 13:02:27 2025 GMT Subject: CN=f0b7b52fd4d7108c781a9479de4c121ada95404c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6c:26:65:12:7e:44:8f:54:d1:0a:9e:7b:13: 48:79:1c:f6:47:53:8c:2e:9f:c1:c7:83:55:ba:d9: 98:73:99:1c:96:bf:f2:80:8a:00:6c:5a:17:2c:74: bf:be:d6:7a:34:ac:7f:4e:9f:9a:cf:bb:6c:e4:f7: 1c:4a:28:44:4c:fa:3b:bd:f8:57:20:99:b2:e8:61: 5e:58:59:c6:4e:2e:e3:e3:96:f6:63:d4:5c:83:d0: 10:95:f0:49:6a:c9:90:a8:00:7c:27:6c:e6:6e:82: cf:60:71:7e:f0:2b:4e:51:56:3e:76:49:30:ce:49: 5b:c9:5b:3d:c2:cb:2e:04:d6:0a:0c:15:8c:dc:b1: b1:49:a6:8c:fb:98:9f:cc:8d:e1:fb:42:a2:17:3a: 10:3c:e0:86:d5:88:71:09:01:32:7d:b8:c0:96:bf: 80:37:11:e4:25:f7:a3:b7:ea:bb:2c:95:13:bb:3a: 77:08:76:e2:e8:01:16:80:c5:31:d7:3d:af:eb:8b: b3:b0:0e:24:f0:27:dc:01:08:21:4d:18:62:5d:c7: c2:93:e1:77:96:6b:a1:5c:a1:25:02:8e:1c:d2:d6: 0d:76:3a:a1:54:39:a1:e1:b4:05:7b:a4:9d:c4:72: 00:2b:fd:0a:4a:e7:6c:da:4b:1e:07:0a:8d:42:16: c0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B7:B5:2F:D4:D7:10:8C:78:1A:94:79:DE:4C:12:1A:DA:95:40:4C X509v3 Authority Key Identifier: keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:f5:b8:07:3a:a2:82:d3:48:45:46:a2:a9:15:91:73:e7:a8: 78:8f:dd:03:75:48:c9:05:0b:3d:d6:00:ec:31:05:54:ec:a0: d0:11:e8:41:a6:4c:c8:3e:29:49:84:a3:3d:89:7c:b9:35:56: 43:0a:fb:54:4b:f5:cb:a9:08:2d:fa:a6:3f:8a:91:b1:30:5a: 0b:60:1a:95:a7:50:8a:a3:60:bf:9a:0d:63:1b:bb:71:d0:5b: 71:13:c6:fb:1f:92:de:8a:3e:e9:19:c0:94:14:54:a8:01:e9: 57:91:42:ab:60:af:d2:fd:6e:8d:a3:ec:40:75:2b:8e:1e:25: 9a:92:89:34:c8:d6:e9:84:a9:d3:07:0a:95:60:40:b4:95:cd: 90:bb:3c:7e:c8:b4:77:8a:6c:9a:2c:ee:af:c4:93:f5:e8:3f: cf:7f:1f:05:76:17:7c:40:de:4e:7e:2f:38:4e:d6:6b:a3:71: bb:d1:87:f1:d2:2b:7e:77:f0:10:b1:90:2e:ad:74:25:e9:56: 63:55:25:86:45:8c:0e:07:73:eb:b3:48:b3:5f:50:f9:b7:c9: 52:35:e4:9c:cf:94:60:61:dc:ae:ca:b4:98:3f:b9:88:ad:84: 62:39:42:00:bb:86:56:9c:1c:a8:89:c9:68:8a:33:12:5c:a2: 1c:20:ea:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJ2v8xBwAasYLWzjTIyRNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx NzNhMjcwHhcNMjUxMjIyMTMwMjI3WhcNMjUxMjIzMTMwMjI3WjAzMTEwLwYDVQQD EyhmMGI3YjUyZmQ0ZDcxMDhjNzgxYTk0NzlkZTRjMTIxYWRhOTU0MDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGwmZRJ+RI9U0QqeexNIeRz2R1OM Lp/Bx4NVutmYc5kclr/ygIoAbFoXLHS/vtZ6NKx/Tp+az7ts5PccSihETPo7vfhX IJmy6GFeWFnGTi7j45b2Y9Rcg9AQlfBJasmQqAB8J2zmboLPYHF+8CtOUVY+dkkw zklbyVs9wssuBNYKDBWM3LGxSaaM+5ifzI3h+0KiFzoQPOCG1YhxCQEyfbjAlr+A NxHkJfejt+q7LJUTuzp3CHbi6AEWgMUx1z2v64uzsA4k8CfcAQghTRhiXcfCk+F3 lmuhXKElAo4c0tYNdjqhVDmh4bQFe6SdxHIAK/0KSuds2kseBwqNQhbAaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPC3tS/U1xCMeBqUed5MEhralUBMMB8GA1UdIwQY MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAufW4Bzqi gtNIRUaiqRWRc+eoeI/dA3VIyQULPdYA7DEFVOyg0BHoQaZMyD4pSYSjPYl8uTVW Qwr7VEv1y6kILfqmP4qRsTBaC2AaladQiqNgv5oNYxu7cdBbcRPG+x+S3oo+6RnA lBRUqAHpV5FCq2Cv0v1ujaPsQHUrjh4lmpKJNMjW6YSp0wcKlWBAtJXNkLs8fsi0 d4psmizur8ST9eg/z38fBXYXfEDeTn4vOE7Wa6Nxu9GH8dIrfnfwELGQLq10JelW Y1UlhkWMDgdz67NIs19Q+bfJUjXknM+UYGHcrsq0mD+5iK2EYjlCALuGVpwcqInJ aIozElyiHCDqCw== -----END CERTIFICATE-----Generated at Mon Dec 22 20:48:27 2025 by rpki-client