This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft File: gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft (raw, json) Hash identifier: nP0RI84nF/GhDksC0zzBWO1sXu4eet9axhEAWIpBOiw= Subject key identifier: A4:34:7D:54:B1:E8:59:EF:70:6C:42:99:34:F4:4E:9E:6B:C3:BA:73 Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae Certificate serial: 019B1EAAB970D1293BF543B8BE6AD467052E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft Manifest number: 11C8 Signing time: Sun 14 Dec 2025 21:01:03 +0000 Manifest this update: Sun 14 Dec 2025 21:01:03 +0000 Manifest next update: Mon 15 Dec 2025 21:01:03 +0000 Files and hashes: 1: 20-9mytYHMHndruQgUnF8ikroR8.roa (hash: 2lr50ig6vbMmIzHsYNAhFoZOypQ5RbpTRGyrByTCT20=) 2: fI8A3CovPrmNEuNSOd5whasfei4.roa (hash: vdsVJdsI5nRx6IGPnIMOMSeTTdkDkOzyswcHJNq1lig=) 3: g1EKkeORDxQo9Cif76DEx1ayRZo.roa (hash: vbPzjHWrPv/5Wuh7IZWDGYTkmh23maqwjvKxVVDLrlI=) 4: gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl (hash: xMEDBGd+bdxHBMUpmpaltpE+wzuym4suUwtWr6CdQUg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:aa:b9:70:d1:29:3b:f5:43:b8:be:6a:d4:67:05:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae Validity Not Before: Dec 14 21:01:03 2025 GMT Not After : Dec 15 21:01:03 2025 GMT Subject: CN=a4347d54b1e859ef706c429934f44e9e6bc3ba73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:8a:0c:0f:5b:0c:7d:ad:f9:7f:0b:14:7e: 84:f5:f8:f2:55:f4:34:44:62:31:5f:76:75:e6:07: 83:8a:10:f6:3d:fd:7d:df:df:ec:5b:26:ce:5b:af: d0:2a:b9:1c:37:76:fe:92:7e:67:8d:05:bf:03:4e: 1c:f5:a6:c1:ff:d8:8e:7d:e2:de:0a:a5:f1:0f:f0: d6:df:8a:06:52:d5:f9:a5:37:0f:d6:8d:bf:97:75: 03:01:d4:82:67:8a:2b:81:ba:dd:18:69:d2:09:76: b1:4b:4f:3b:13:54:fc:15:e1:1b:87:8f:df:85:d7: 71:0f:ac:55:2b:55:2c:c4:00:7c:28:94:b8:41:91: 85:05:22:c6:cf:45:89:3f:af:c7:00:ab:6d:06:63: d4:43:38:36:fb:3d:65:99:88:23:d9:f3:69:af:b8: d8:3f:f0:d2:da:57:be:9e:86:d5:df:59:10:2e:91: dc:11:16:8f:8d:f1:0e:b7:d9:d2:32:19:2d:17:a9: 34:f2:a1:13:ce:cf:8b:e8:37:46:ec:42:84:89:95: e7:81:fb:df:80:6d:ba:5c:50:72:b6:c7:74:7f:05: 92:24:f0:51:5d:b6:02:04:e2:12:b7:2f:45:bf:61: 1a:ff:0b:dc:18:d0:1d:b8:95:5c:3f:6c:cc:5d:ef: 6c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:34:7D:54:B1:E8:59:EF:70:6C:42:99:34:F4:4E:9E:6B:C3:BA:73 X509v3 Authority Key Identifier: keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:39:14:4a:32:55:3a:52:2e:eb:7e:44:ca:51:d4:b4:f4:a1: f9:12:17:1d:2f:24:a6:fb:5c:e8:7e:f8:c4:0a:5f:b4:98:6c: 6f:2f:56:f6:72:8f:2d:6d:77:c7:ba:61:46:5a:7e:b1:9c:bf: e3:f4:99:6d:e3:32:51:cb:19:cf:f9:5d:70:2a:46:9f:37:ed: 1f:ad:33:5b:b9:e6:14:15:66:ff:f5:7e:f7:bb:bf:00:9b:64: 93:2e:aa:9e:34:f6:fd:53:c6:a3:be:dd:da:e0:7e:81:b6:6f: a0:79:c3:37:05:ba:05:6a:88:e1:64:a0:51:35:ff:fe:a4:e9: cb:05:ff:f8:00:e9:bd:cd:2c:23:c7:b8:dc:e8:b0:c4:65:cc: 47:7f:3c:3c:ba:93:94:98:91:1b:47:04:fb:94:6f:2c:66:da: ed:5b:17:86:e3:ca:07:3b:30:d9:02:c5:c5:ba:91:68:e8:42: 9b:81:ed:c5:4a:4a:e7:df:a6:20:9a:e4:c9:b4:f2:e7:39:1f: 2e:e6:f0:15:78:f6:7b:9f:70:15:52:81:ad:97:20:bd:40:b8: 0b:89:f5:b3:0f:97:82:33:35:fb:0f:fe:1a:d5:31:1d:07:4d: 3b:f3:c4:d4:29:41:5e:96:21:08:df:05:cc:80:08:7e:7a:61: 66:96:72:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZseqrlw0Sk79UO4vmrUZwUuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxOWI5N2IyMGNjYjRmNjk2NTE4ZTQ3YzQzNzI1OWE4OTEz ZTcyYWUwHhcNMjUxMjE0MjEwMTAzWhcNMjUxMjE1MjEwMTAzWjAzMTEwLwYDVQQD EyhhNDM0N2Q1NGIxZTg1OWVmNzA2YzQyOTkzNGY0NGU5ZTZiYzNiYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhWKDA9bDH2t+X8LFH6E9fjyVfQ0 RGIxX3Z15geDihD2Pf1939/sWybOW6/QKrkcN3b+kn5njQW/A04c9abB/9iOfeLe CqXxD/DW34oGUtX5pTcP1o2/l3UDAdSCZ4orgbrdGGnSCXaxS087E1T8FeEbh4/f hddxD6xVK1UsxAB8KJS4QZGFBSLGz0WJP6/HAKttBmPUQzg2+z1lmYgj2fNpr7jY P/DS2le+nobV31kQLpHcERaPjfEOt9nSMhktF6k08qETzs+L6DdG7EKEiZXngfvf gG26XFBytsd0fwWSJPBRXbYCBOISty9Fv2Ea/wvcGNAduJVcP2zMXe9smQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQ0fVSx6FnvcGxCmTT0Tp5rw7pzMB8GA1UdIwQY MBaAFIGbl7IMy09pZRjkfENyWaiRPnKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUt YTY0YmE0YjhmYTE5LzEvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy83NzRmMzctMGU1Ny00OWU2LTg4NjUtYTY0YmE0YjhmYTE5 LzEvZ1p1WHNnekxUMmxsR09SOFEzSlpxSkUtY3E0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEzkUSjJV OlIu635EylHUtPSh+RIXHS8kpvtc6H74xApftJhsby9W9nKPLW13x7phRlp+sZy/ 4/SZbeMyUcsZz/ldcCpGnzftH60zW7nmFBVm//V+97u/AJtkky6qnjT2/VPGo77d 2uB+gbZvoHnDNwW6BWqI4WSgUTX//qTpywX/+ADpvc0sI8e43OiwxGXMR388PLqT lJiRG0cE+5RvLGba7VsXhuPKBzsw2QLFxbqRaOhCm4HtxUpK59+mIJrkybTy5zkf LubwFXj2e59wFVKBrZcgvUC4C4n1sw+XgjM1+w/+GtUxHQdNO/PE1ClBXpYhCN8F zIAIfnphZpZyRg== -----END CERTIFICATE-----Generated at Sun Dec 14 23:52:30 2025 by rpki-client