This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft File: GEe1nSHqNrMGL8qAznXBYWr1EZo.mft (raw, json) Hash identifier: d0qISLpY0oNdQc1dD1+IFyLWMYB/srCuxoCyelvznyA= Subject key identifier: F2:1B:C3:A7:5D:E3:79:96:0B:9E:B1:40:E8:A6:DF:B2:9B:E8:BA:88 Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a Certificate serial: 019B3569E5365219BC85ABA8E1DB3C43900B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft Manifest number: 17A4 Signing time: Fri 19 Dec 2025 07:01:30 +0000 Manifest this update: Fri 19 Dec 2025 07:01:30 +0000 Manifest next update: Sat 20 Dec 2025 07:01:30 +0000 Files and hashes: 1: 8cLxwhiwZ15o52IG0lIcBm8BfIQ.roa (hash: PFZiPiXQsPniAQ08Y5K+gzotL1tE/fkVxovwe7IBhnM=) 2: DEAqR7ouXdK_VgFpEIt6V4-R3vU.roa (hash: wMwsT7eO243EJyubJoTSggJw5Rb7OJyY/cli5aPuyUQ=) 3: GEe1nSHqNrMGL8qAznXBYWr1EZo.crl (hash: +cJn2vp2HgjUwTq1vNIX+pwJUmVLzz5/hc5gaAVUIIA=) 4: Jfkb9wIjflJ9g_nlBWaCF6laiWU.roa (hash: /ljWZ+p/6L9vGqqgT4FUCtEB1Y8qOikrC1+ICoRutK4=) 5: _7WtH8aHR1L2bTDVn9E_76DditQ.roa (hash: GNJqn9i3udIC/30RCw5K5vyaTL+C2PYXuckCZHNZni4=) 6: h5_prNjcgRyXJELM8DURZLP5EFU.roa (hash: Z92j/9sBYKdyWUm0MRd6IKVfVn4W1nRxKsWy96cIZLs=) 7: shcI5ksCijvvRLID7bxpTU4Ek38.roa (hash: 5j6UIvbPGZk819fhFv2lIK9RILlN83FerZg8FUEwxJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:69:e5:36:52:19:bc:85:ab:a8:e1:db:3c:43:90:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a Validity Not Before: Dec 19 07:01:30 2025 GMT Not After : Dec 20 07:01:30 2025 GMT Subject: CN=f21bc3a75de379960b9eb140e8a6dfb29be8ba88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:08:54:47:bc:fa:25:75:5f:27:8e:9b:eb: 84:8b:a4:c3:ac:86:8c:d1:a3:20:7d:f4:d3:4b:3a: e3:6d:ee:a6:b0:b5:0a:2f:21:6b:5d:8e:35:28:3c: c6:f5:51:23:37:fa:fd:75:39:ad:8d:f9:ab:8b:eb: 00:73:4c:bb:05:01:c3:f8:93:cd:0c:6e:4a:59:a5: 52:e7:0c:17:8f:19:ea:40:03:f1:51:c2:4d:ed:7e: c4:23:11:c1:95:36:45:14:37:93:05:ef:37:fa:32: a1:b0:48:71:4e:1c:76:00:31:85:22:81:32:fb:3b: 43:65:4b:01:92:03:14:4f:cd:c6:49:2f:2e:f4:fe: 7d:1c:ff:89:b5:16:ed:d0:99:57:75:cb:92:60:d7: d5:31:e6:f3:0f:2c:43:ce:66:40:61:ee:cf:fc:fa: 44:b7:85:cc:c8:d0:00:43:82:ae:e8:22:07:b0:22: 82:bd:76:dd:93:89:f6:16:dc:c4:00:b7:8c:6c:36: df:b4:12:06:b7:d0:35:86:01:37:3b:9f:0b:c5:5f: 7a:20:be:a7:43:9e:10:4d:61:6c:01:a2:82:11:cb: 65:25:fc:97:8c:8d:75:b3:9d:4b:37:cc:96:ad:3f: 7c:6d:40:da:25:91:f5:ca:d1:41:7f:ff:1a:e2:da: 6f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1B:C3:A7:5D:E3:79:96:0B:9E:B1:40:E8:A6:DF:B2:9B:E8:BA:88 X509v3 Authority Key Identifier: keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ea:22:f4:41:8b:eb:86:46:5a:01:1e:30:d1:a3:85:56:77: cb:8e:3e:3c:a5:5f:ab:27:20:02:7b:f0:15:4e:6e:a3:fc:94: 79:9f:df:b6:09:29:65:30:e3:78:4a:f7:01:14:64:46:03:4b: 69:b3:be:83:c3:7d:37:45:48:71:08:3b:33:52:6b:c8:47:e0: 32:e0:10:0c:2c:2f:3e:a9:57:64:6f:ee:42:b0:e7:fa:44:a5: d3:4a:fa:7c:30:5c:7a:ac:29:a0:07:38:58:11:0a:5a:0c:21: 1c:27:18:e2:ec:dd:2e:aa:dd:6b:cd:5b:18:01:c3:fb:0c:9b: 35:23:df:c1:25:c3:c5:6c:01:2c:5d:0a:8b:a0:71:e5:2c:6a: ad:7f:50:8f:0e:06:9e:2c:b2:23:df:f3:98:08:a3:f5:c4:08: 6d:62:97:20:ef:f2:43:b2:d8:9a:67:95:c3:78:65:2d:dc:05: 8a:59:3e:d0:ac:ef:ff:d8:9c:c3:02:2b:86:21:39:1b:af:b7: 6b:78:07:92:58:be:b5:dd:b1:ac:39:80:7c:ff:44:83:2a:0b: df:bd:1a:1c:e0:09:c7:00:9d:46:1b:e7:bd:41:a2:66:56:16: cc:3c:28:b4:07:df:3e:89:09:61:6f:97:27:81:87:fe:1c:c0: 55:4f:3b:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1aeU2Uhm8hauo4ds8Q5ALMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NDdiNTlkMjFlYTM2YjMwNjJmY2E4MGNlNzVjMTYxNmFm NTExOWEwHhcNMjUxMjE5MDcwMTMwWhcNMjUxMjIwMDcwMTMwWjAzMTEwLwYDVQQD EyhmMjFiYzNhNzVkZTM3OTk2MGI5ZWIxNDBlOGE2ZGZiMjliZThiYTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjkIVEe8+iV1XyeOm+uEi6TDrIaM 0aMgffTTSzrjbe6msLUKLyFrXY41KDzG9VEjN/r9dTmtjfmri+sAc0y7BQHD+JPN DG5KWaVS5wwXjxnqQAPxUcJN7X7EIxHBlTZFFDeTBe83+jKhsEhxThx2ADGFIoEy +ztDZUsBkgMUT83GSS8u9P59HP+JtRbt0JlXdcuSYNfVMebzDyxDzmZAYe7P/PpE t4XMyNAAQ4Ku6CIHsCKCvXbdk4n2FtzEALeMbDbftBIGt9A1hgE3O58LxV96IL6n Q54QTWFsAaKCEctlJfyXjI11s51LN8yWrT98bUDaJZH1ytFBf/8a4tpvmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIbw6dd43mWC56xQOim37Kb6LqIMB8GA1UdIwQY MBaAFBhHtZ0h6jazBi/KgM51wWFq9RGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTIt ZjkxYmI1MTc5MjE3LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTItZjkxYmI1MTc5MjE3 LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArOoi9EGL 64ZGWgEeMNGjhVZ3y44+PKVfqycgAnvwFU5uo/yUeZ/ftgkpZTDjeEr3ARRkRgNL abO+g8N9N0VIcQg7M1JryEfgMuAQDCwvPqlXZG/uQrDn+kSl00r6fDBceqwpoAc4 WBEKWgwhHCcY4uzdLqrda81bGAHD+wybNSPfwSXDxWwBLF0Ki6Bx5SxqrX9Qjw4G niyyI9/zmAij9cQIbWKXIO/yQ7LYmmeVw3hlLdwFilk+0Kzv/9icwwIrhiE5G6+3 a3gHkli+td2xrDmAfP9EgyoL370aHOAJxwCdRhvnvUGiZlYWzDwotAffPokJYW+X J4GH/hzAVU874w== -----END CERTIFICATE-----Generated at Fri Dec 19 13:48:27 2025 by rpki-client