This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json) Hash identifier: FmIhlQ3VGvgh8+T3pDHTjofLi9wjXMBnS+D6XWxsyRU= Subject key identifier: 76:94:14:FE:5D:DB:17:E8:32:51:49:4E:C2:85:B0:82:6C:7E:29:6E Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Certificate serial: 019B4BF257BA0709565186387B71A7B15D46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft Manifest number: 1722 Signing time: Tue 23 Dec 2025 16:02:11 +0000 Manifest this update: Tue 23 Dec 2025 16:02:11 +0000 Manifest next update: Wed 24 Dec 2025 16:02:11 +0000 Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: fhjMvGZ2OJQqWW177z/xHYy5U//YsfUmHphU6NZd6Vc=) 2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:f2:57:ba:07:09:56:51:86:38:7b:71:a7:b1:5d:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27 Validity Not Before: Dec 23 16:02:11 2025 GMT Not After : Dec 24 16:02:11 2025 GMT Subject: CN=769414fe5ddb17e83251494ec285b0826c7e296e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:08:0b:f4:9d:22:6e:66:09:01:88:26:3d:02: 32:04:60:77:b6:a5:b8:5b:82:41:6a:af:95:74:4a: ce:e1:b9:55:88:39:a0:20:9e:eb:21:8d:33:fa:fc: 9b:ff:6c:39:9e:bf:07:1b:b1:98:a6:62:6b:be:96: cf:56:2b:64:53:d2:dc:e8:fe:77:ef:70:a6:bf:1f: 97:50:f9:08:fb:04:0b:80:92:ca:80:6e:30:49:22: 72:4a:a0:2f:5d:9e:38:08:62:62:61:4b:15:4a:bd: d2:70:e1:72:9e:2c:df:24:e5:c2:0b:42:02:e4:cf: 14:2d:e5:2a:68:af:f2:f7:e8:2b:e4:c3:3b:60:b3: 63:78:34:ae:65:bc:c7:98:43:3b:6e:be:70:df:4d: e5:10:e8:b1:e9:48:f5:95:97:2f:14:93:51:88:2e: 24:85:a5:57:f1:0c:16:57:e3:4e:8d:57:73:37:ff: 6a:90:70:d2:dc:31:be:c4:ad:05:f6:7a:9a:d0:f5: 33:be:72:d3:53:8d:be:a5:c7:3c:31:dd:6a:b6:cd: f4:05:4a:c3:56:b3:ee:a3:19:ed:b3:4d:66:a9:a7: 12:d1:87:fb:ca:3d:55:32:59:09:d7:b9:58:24:b8: f9:d1:6b:c2:83:05:80:b4:f8:e9:26:ba:5c:56:ca: da:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:94:14:FE:5D:DB:17:E8:32:51:49:4E:C2:85:B0:82:6C:7E:29:6E X509v3 Authority Key Identifier: keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:ea:ac:b9:2b:3e:fd:b7:64:d8:7d:87:f4:6b:d9:1e:23:fd: e8:67:93:c7:e6:84:a5:1a:cd:11:f9:6e:40:7c:da:b8:10:e4: af:b0:3f:e4:0d:2c:4d:f7:18:a7:81:39:7f:dc:0b:ce:c4:49: 5b:28:b8:52:42:f6:a9:a5:5c:68:c9:7d:53:54:d3:4b:e3:d3: 74:1c:4b:15:ae:ea:6e:d7:69:5a:7a:3a:f2:d8:80:19:33:93: c9:e9:44:d2:82:a9:5e:df:7e:aa:d9:b6:41:ab:aa:fc:d3:00: 0e:5a:6a:9d:b1:7f:6a:78:2d:89:fa:44:06:d5:34:a9:9c:a4: 7d:cd:b3:1f:3b:f7:97:96:42:f3:b8:14:4d:4c:08:bb:15:9b: ce:e3:02:a9:71:57:ed:77:c3:6b:20:70:d1:4e:b9:20:ba:f3: 2f:e2:f3:fe:b3:dd:96:b8:aa:54:3c:85:2a:f2:54:f3:e6:55: 64:c8:5f:5f:4e:63:46:e0:20:21:56:f4:db:7c:7b:33:54:56: 17:f4:04:74:56:db:d6:b9:42:81:05:a0:40:c4:75:89:09:44: 5a:34:c6:e1:be:a6:f7:ed:97:0a:c2:39:02:12:ca:9f:ba:a6: 5e:dd:75:71:af:31:e1:b8:d1:37:cb:3d:33:8a:92:3b:8b:95: 85:87:f9:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtL8le6BwlWUYY4e3GnsV1GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZWJkMzNkNGNkNDU0NjVlZmE1MGZhYTgyNGZiODEyYzQx NzNhMjcwHhcNMjUxMjIzMTYwMjExWhcNMjUxMjI0MTYwMjExWjAzMTEwLwYDVQQD Eyg3Njk0MTRmZTVkZGIxN2U4MzI1MTQ5NGVjMjg1YjA4MjZjN2UyOTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAgL9J0ibmYJAYgmPQIyBGB3tqW4 W4JBaq+VdErO4blViDmgIJ7rIY0z+vyb/2w5nr8HG7GYpmJrvpbPVitkU9Lc6P53 73Cmvx+XUPkI+wQLgJLKgG4wSSJySqAvXZ44CGJiYUsVSr3ScOFynizfJOXCC0IC 5M8ULeUqaK/y9+gr5MM7YLNjeDSuZbzHmEM7br5w303lEOix6Uj1lZcvFJNRiC4k haVX8QwWV+NOjVdzN/9qkHDS3DG+xK0F9nqa0PUzvnLTU42+pcc8Md1qts30BUrD VrPuoxnts01mqacS0Yf7yj1VMlkJ17lYJLj50WvCgwWAtPjpJrpcVsraBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHaUFP5d2xfoMlFJTsKFsIJsfiluMB8GA1UdIwQY MBaAFBvr0z1M1FRl76UPqoJPuBLEFzonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDkt OGFiNWViNTU4NDczLzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8xZTdiMDItODg5Yi00YTUzLWE1MDktOGFiNWViNTU4NDcz LzEvRy12VFBVelVWR1h2cFEtcWdrLTRFc1FYT2ljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkeqsuSs+ /bdk2H2H9GvZHiP96GeTx+aEpRrNEfluQHzauBDkr7A/5A0sTfcYp4E5f9wLzsRJ Wyi4UkL2qaVcaMl9U1TTS+PTdBxLFa7qbtdpWno68tiAGTOTyelE0oKpXt9+qtm2 Qauq/NMADlpqnbF/angtifpEBtU0qZykfc2zHzv3l5ZC87gUTUwIuxWbzuMCqXFX 7XfDayBw0U65ILrzL+Lz/rPdlriqVDyFKvJU8+ZVZMhfX05jRuAgIVb023x7M1RW F/QEdFbb1rlCgQWgQMR1iQlEWjTG4b6m9+2XCsI5AhLKn7qmXt11ca8x4bjRN8s9 M4qSO4uVhYf5tw== -----END CERTIFICATE-----Generated at Tue Dec 23 18:56:21 2025 by rpki-client