This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json) Hash identifier: 7j52y3Rqw57qt+gvSq6GkVjzF8V6gDV+G4c9VFt0okk= Subject key identifier: E2:7F:E5:02:80:15:1F:B0:9D:BD:2C:3B:84:0B:D9:50:A5:0A:D1:20 Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85 Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85 Certificate serial: 019B4994DC5F13CC03F433DDFF4D62F8B9E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft Manifest number: 06A2 Signing time: Tue 23 Dec 2025 05:00:50 +0000 Manifest this update: Tue 23 Dec 2025 05:00:50 +0000 Manifest next update: Wed 24 Dec 2025 05:00:50 +0000 Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: U1pQstQUAhM838oZ0tSlbnSLee6w3o/BiV6vBupbbVg=) 2: r0qME3D6vnHPgW7FfIJR7qyiR6U.roa (hash: +N7ZuBvhriEjaq14DPYwTSmD1pr2ezeFoDJODymMVSw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 05:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:94:dc:5f:13:cc:03:f4:33:dd:ff:4d:62:f8:b9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85 Validity Not Before: Dec 23 05:00:50 2025 GMT Not After : Dec 24 05:00:50 2025 GMT Subject: CN=e27fe50280151fb09dbd2c3b840bd950a50ad120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2f:dc:1a:af:8b:18:e8:a9:e1:5a:1b:85:ec: bf:c3:72:00:73:1d:43:c8:ca:aa:11:f0:84:c7:ff: 4b:d2:6d:98:a3:0f:f3:e9:82:cb:80:8a:e4:21:3f: 6c:95:97:70:87:a4:4d:3d:45:0b:51:d9:f4:7f:3f: 9b:59:60:38:f2:24:73:09:8d:9e:83:72:52:3b:1a: fd:88:2c:6d:1a:f4:87:ec:a7:2e:e4:46:8a:9f:5a: 57:08:0f:b4:a4:c3:19:63:c9:de:2b:04:34:ac:a3: a6:fe:8f:d8:e6:c6:d7:c3:e8:3d:9a:5d:1f:36:e7: 23:3c:ab:e6:63:63:0a:95:7e:8c:a9:eb:69:c4:ae: 19:1d:be:88:38:f3:ee:6f:f9:82:eb:28:e5:21:4a: 10:2c:21:2f:93:15:01:7d:bc:24:99:d3:99:39:11: 3c:db:5d:90:73:d1:ee:f4:1e:c7:af:24:ed:8f:e1: be:24:a7:53:29:f9:7a:ad:3c:c6:93:f9:86:44:01: 5e:84:26:18:8e:eb:e3:a4:45:51:dd:bc:0d:3e:a2: 21:46:cf:ba:30:fb:c3:4d:a5:03:ec:b5:1d:34:68: e7:58:7f:c5:d9:14:ef:e6:28:e7:3d:a4:3d:73:7a: 03:ec:34:c7:d7:00:b2:c5:7b:54:6c:a0:22:89:b3: 07:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7F:E5:02:80:15:1F:B0:9D:BD:2C:3B:84:0B:D9:50:A5:0A:D1:20 X509v3 Authority Key Identifier: keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:4f:4d:90:47:d5:44:49:b9:39:72:36:cb:f8:07:1e:6e:ca: cc:54:2d:cc:ac:ed:c4:8c:a2:c6:a8:05:ee:01:c5:c9:98:f0: f4:fc:22:97:a8:0b:ac:9f:49:99:79:dd:52:fb:28:6b:19:ff: e2:5f:cb:c8:32:72:c7:08:f8:86:67:28:68:ac:d1:c5:8a:7e: 46:a9:49:3b:3c:b0:bd:d5:ff:14:b1:89:90:e7:4a:ce:fc:e6: 22:d4:f9:9b:5f:19:75:f6:07:52:e8:4e:c0:25:d8:c5:1e:a7: 4f:31:40:9e:94:96:8f:71:e9:4d:fc:46:0e:ec:ab:cd:b9:a6: 16:19:ed:58:a7:91:21:98:36:b4:4a:2b:7a:b4:a2:08:b4:cf: 38:ba:3b:4a:71:88:4b:ae:41:e9:07:4d:12:89:95:82:16:c0: a4:90:a0:eb:dd:15:1a:cd:a9:cf:05:ef:50:f7:dd:e1:73:ff: 1e:5f:a8:86:39:e5:bf:10:18:dd:a3:2c:f6:3f:f4:24:ad:84: d8:e2:5e:e6:9c:5d:03:3d:0e:e8:33:bd:d1:bc:71:f3:75:72: fe:97:61:bd:62:3f:b7:a5:1c:cc:c3:83:1e:e4:9d:08:cb:82: 1f:f6:7c:44:6a:c7:00:34:48:1b:41:f6:92:35:70:10:34:4c: 42:3a:ef:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJlNxfE8wD9DPd/01i+LnjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NjZkMTcwYzgxMGJhMzRjNDJlOTIwZTg0ZDQyNjI4NDU5 NzdmODUwHhcNMjUxMjIzMDUwMDUwWhcNMjUxMjI0MDUwMDUwWjAzMTEwLwYDVQQD EyhlMjdmZTUwMjgwMTUxZmIwOWRiZDJjM2I4NDBiZDk1MGE1MGFkMTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuS/cGq+LGOip4Vobhey/w3IAcx1D yMqqEfCEx/9L0m2Yow/z6YLLgIrkIT9slZdwh6RNPUULUdn0fz+bWWA48iRzCY2e g3JSOxr9iCxtGvSH7Kcu5EaKn1pXCA+0pMMZY8neKwQ0rKOm/o/Y5sbXw+g9ml0f NucjPKvmY2MKlX6MqetpxK4ZHb6IOPPub/mC6yjlIUoQLCEvkxUBfbwkmdOZORE8 212Qc9Hu9B7HryTtj+G+JKdTKfl6rTzGk/mGRAFehCYYjuvjpEVR3bwNPqIhRs+6 MPvDTaUD7LUdNGjnWH/F2RTv5ijnPaQ9c3oD7DTH1wCyxXtUbKAiibMH2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOJ/5QKAFR+wnb0sO4QL2VClCtEgMB8GA1UdIwQY MBaAFNRm0XDIELo0xC6SDoTUJihFl3+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8yMzA2ZjYtNmNjMC00OTgyLWE1MjMt MTY4NDJiZGFkOTI1LzEvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy8yMzA2ZjYtNmNjMC00OTgyLWE1MjMtMTY4NDJiZGFkOTI1 LzEvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVU9NkEfV REm5OXI2y/gHHm7KzFQtzKztxIyixqgF7gHFyZjw9Pwil6gLrJ9JmXndUvsoaxn/ 4l/LyDJyxwj4hmcoaKzRxYp+RqlJOzywvdX/FLGJkOdKzvzmItT5m18ZdfYHUuhO wCXYxR6nTzFAnpSWj3HpTfxGDuyrzbmmFhntWKeRIZg2tEorerSiCLTPOLo7SnGI S65B6QdNEomVghbApJCg690VGs2pzwXvUPfd4XP/Hl+ohjnlvxAY3aMs9j/0JK2E 2OJe5pxdAz0O6DO90bxx83Vy/pdhvWI/t6UczMODHuSdCMuCH/Z8RGrHADRIG0H2 kjVwEDRMQjrvkw== -----END CERTIFICATE-----Generated at Tue Dec 23 14:54:12 2025 by rpki-client