This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json) Hash identifier: an38SJAaaQPwrkViRJPX4lfyvXlDFy6HAaUpHV+MhNo= Subject key identifier: F2:96:BD:56:16:92:7D:1C:C2:FD:99:3C:F8:22:A0:6C:59:FA:A5:EC Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Certificate serial: 019B481443B7EF5299AADD8DD46EFB16E12E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft Manifest number: 1720 Signing time: Mon 22 Dec 2025 22:00:46 +0000 Manifest this update: Mon 22 Dec 2025 22:00:46 +0000 Manifest next update: Tue 23 Dec 2025 22:00:46 +0000 Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: t7ek9HGwzTaiLYkMu0PVpLFM1ZWzeFgS5M1aN2dSUTo=) 2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:14:43:b7:ef:52:99:aa:dd:8d:d4:6e:fb:16:e1:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Validity Not Before: Dec 22 22:00:46 2025 GMT Not After : Dec 23 22:00:46 2025 GMT Subject: CN=f296bd5616927d1cc2fd993cf822a06c59faa5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:13:37:01:f4:46:1f:3f:8e:c9:73:58:af:8c: 47:e5:f9:81:4e:47:8b:a4:18:f0:bc:db:86:53:bc: 54:91:1a:4b:09:de:f4:e4:c5:4b:88:eb:59:ea:08: e5:a0:1d:06:ab:e6:a8:4b:b1:fd:b4:66:db:f5:56: 4a:19:e8:56:62:ac:af:56:cb:81:44:49:f7:70:46: d2:17:a6:98:ef:67:34:25:f6:60:66:8e:22:36:e7: 2c:20:65:1c:9a:df:8f:51:c3:46:f9:4c:9d:ae:7d: c1:75:6a:3e:85:7f:0c:dc:31:e7:07:f6:a1:c5:a7: 5c:c5:91:08:0e:73:3b:74:ef:eb:b1:98:83:75:1a: e7:cf:4c:80:9d:d0:48:49:af:0e:3d:8d:11:f3:a4: fb:d6:87:ec:29:e0:28:17:86:53:f3:b6:fb:08:8f: 6b:7d:74:db:b3:82:ee:b6:e7:2c:c6:b6:8a:65:51: e6:71:94:18:f2:3c:5a:40:8d:dc:c6:0c:d9:99:aa: c2:75:ab:86:3b:1b:e0:44:c9:26:67:8c:45:8b:ad: 82:3b:c7:26:87:db:0a:76:3f:5c:5d:b2:3f:8e:a3: 30:5e:02:79:7f:24:21:fb:69:09:f4:08:d6:de:97: c1:f9:31:06:b9:8c:b2:36:7a:03:68:30:5c:40:86: e7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:96:BD:56:16:92:7D:1C:C2:FD:99:3C:F8:22:A0:6C:59:FA:A5:EC X509v3 Authority Key Identifier: keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:3e:1b:bc:40:a5:cc:49:90:8f:8f:68:11:3a:26:93:3b:75: 16:fe:66:ac:4f:2a:19:a0:2b:4e:24:2b:25:e3:02:1a:ed:f9: a1:31:74:65:8d:a8:fa:b0:aa:1d:10:f7:00:4f:c9:b0:28:f0: 19:8f:f9:17:d5:30:48:bc:80:81:18:ee:09:60:7d:ab:23:f7: c5:fe:6e:9a:00:59:4a:d8:12:2c:cf:88:35:8b:74:78:8f:57: 6f:e7:75:5e:94:f8:43:d5:49:a3:8e:3e:76:d4:dd:ca:6d:c8: 8a:ce:06:8a:25:c1:ee:f5:2b:67:e8:63:f0:e0:49:fa:de:3e: f3:3c:0b:c5:e6:d3:da:5c:a1:75:c3:84:b2:e7:dc:20:5b:90: f6:4e:3c:df:fe:54:87:5b:6f:5c:c5:8f:7e:94:b1:08:e3:01: 66:91:6a:61:a9:c5:ee:9f:4a:11:b4:ff:00:ac:7a:50:cb:79: 4f:53:e1:12:4e:98:6b:37:07:ed:b0:2f:02:ca:45:7e:11:9d: 03:77:9b:67:b4:26:93:c9:c2:f8:37:93:a2:d1:df:f1:99:84: 16:03:09:05:55:db:5b:bb:23:f9:fd:d5:5f:19:67:82:fc:f2: b0:a7:51:6f:fe:bc:56:2e:8a:98:9f:8c:06:0f:71:ca:fc:6a: 44:50:e1:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFEO371KZqt2N1G77FuEuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx NzNhMjcwHhcNMjUxMjIyMjIwMDQ2WhcNMjUxMjIzMjIwMDQ2WjAzMTEwLwYDVQQD EyhmMjk2YmQ1NjE2OTI3ZDFjYzJmZDk5M2NmODIyYTA2YzU5ZmFhNWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthM3AfRGHz+OyXNYr4xH5fmBTkeL pBjwvNuGU7xUkRpLCd705MVLiOtZ6gjloB0Gq+aoS7H9tGbb9VZKGehWYqyvVsuB REn3cEbSF6aY72c0JfZgZo4iNucsIGUcmt+PUcNG+Uydrn3BdWo+hX8M3DHnB/ah xadcxZEIDnM7dO/rsZiDdRrnz0yAndBISa8OPY0R86T71ofsKeAoF4ZT87b7CI9r fXTbs4LutucsxraKZVHmcZQY8jxaQI3cxgzZmarCdauGOxvgRMkmZ4xFi62CO8cm h9sKdj9cXbI/jqMwXgJ5fyQh+2kJ9AjW3pfB+TEGuYyyNnoDaDBcQIbnmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPKWvVYWkn0cwv2ZPPgioGxZ+qXsMB8GA1UdIwQY MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOj4bvECl zEmQj49oETomkzt1Fv5mrE8qGaArTiQrJeMCGu35oTF0ZY2o+rCqHRD3AE/JsCjw GY/5F9UwSLyAgRjuCWB9qyP3xf5umgBZStgSLM+INYt0eI9Xb+d1XpT4Q9VJo44+ dtTdym3Iis4GiiXB7vUrZ+hj8OBJ+t4+8zwLxebT2lyhdcOEsufcIFuQ9k483/5U h1tvXMWPfpSxCOMBZpFqYanF7p9KEbT/AKx6UMt5T1PhEk6YazcH7bAvAspFfhGd A3ebZ7Qmk8nC+DeTotHf8ZmEFgMJBVXbW7sj+f3VXxlngvzysKdRb/68Vi6KmJ+M Bg9xyvxqRFDhhw== -----END CERTIFICATE-----Generated at Tue Dec 23 02:09:01 2025 by rpki-client