This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft File: rUS-GO4-DSdHZwVV6GsACWXoE5s.mft (raw, json) Hash identifier: rNraiwuqzNx0pxbKlgn3JQ11B6hfNV4mvk+YQN/XPRc= Subject key identifier: 9C:05:CE:1D:7D:A2:47:53:8D:57:F6:56:67:F8:00:88:A8:2B:F0:5B Authority key identifier: AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B Certificate issuer: /CN=ad44be18ee3e0d2747670555e86b000965e8139b Certificate serial: 019B1F866172B77245F2A807642EA4354B59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft Manifest number: 1779 Signing time: Mon 15 Dec 2025 01:00:59 +0000 Manifest this update: Mon 15 Dec 2025 01:00:59 +0000 Manifest next update: Tue 16 Dec 2025 01:00:59 +0000 Files and hashes: 1: kX62bL3xBVpkyK0FphmC5iQUK74.roa (hash: GEBZd8qkO5malJhFWg729yyTB3o+issIVlA3FLkcy9o=) 2: rUS-GO4-DSdHZwVV6GsACWXoE5s.crl (hash: Y2te+xEPk4DJowCOXRfdUdBVExeKLrX7qvPxePOQgQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:86:61:72:b7:72:45:f2:a8:07:64:2e:a4:35:4b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad44be18ee3e0d2747670555e86b000965e8139b Validity Not Before: Dec 15 01:00:59 2025 GMT Not After : Dec 16 01:00:59 2025 GMT Subject: CN=9c05ce1d7da247538d57f65667f80088a82bf05b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:49:5f:46:50:d1:f0:49:80:02:6e:6c:3a: a1:8c:8b:87:81:28:ef:5b:0d:19:d9:2e:f3:71:b6: 08:77:50:88:ec:50:44:c7:79:bc:77:f7:a0:e3:92: 61:38:e2:b4:4c:b6:87:6c:da:2d:a1:ca:c5:18:37: 12:04:69:9c:ea:c2:1b:fc:2a:93:6c:99:e4:f6:6a: 4c:9b:bb:c3:77:0d:35:3e:52:a1:8f:b8:0e:c8:e3: a7:15:01:66:15:07:3d:c6:fc:9c:ce:1d:8b:3d:7f: a2:27:f7:65:9d:5d:d5:42:48:62:ab:da:67:c4:10: 9f:1e:ac:f6:8b:92:2d:27:6e:a3:58:58:a5:8d:14: c6:1c:72:ac:aa:d3:71:41:be:3f:dd:51:d2:0a:74: 60:5e:0b:90:0e:9c:35:ab:f9:f5:c2:16:11:19:4a: 0a:b9:cb:9e:58:72:90:ed:52:00:f1:08:21:cd:2d: 54:2e:df:5a:3d:e0:98:53:5a:30:a6:a6:51:82:1d: 64:0b:64:ce:d3:b1:e0:80:c0:85:32:55:a2:49:1b: 84:de:f0:db:87:99:20:ee:27:17:26:a9:38:76:c9: 7f:10:64:c3:6d:c7:88:ff:a2:0f:d6:42:a4:19:41: d5:80:eb:31:dc:42:8c:6d:db:fd:4b:ab:ec:1d:4e: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:05:CE:1D:7D:A2:47:53:8D:57:F6:56:67:F8:00:88:A8:2B:F0:5B X509v3 Authority Key Identifier: keyid:AD:44:BE:18:EE:3E:0D:27:47:67:05:55:E8:6B:00:09:65:E8:13:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUS-GO4-DSdHZwVV6GsACWXoE5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f8cf57-571f-49ee-a76d-13a8cb2587d4/1/rUS-GO4-DSdHZwVV6GsACWXoE5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:fc:02:0a:04:c1:54:a4:38:60:4e:14:d8:7f:c2:c0:54:d1: 03:e9:65:be:e6:9c:3f:c4:92:2b:0c:71:3f:2d:95:af:be:4c: c6:5f:c8:dc:c6:f3:c5:4c:50:8e:eb:e1:6c:4c:f5:66:cf:f3: 89:e1:56:5d:08:00:67:61:f0:b9:2d:1d:f6:6a:e8:d1:5d:88: 89:bc:da:ad:71:c1:ef:65:fe:ac:5e:79:fe:a4:66:1e:5c:eb: 6c:20:65:6e:47:8e:20:69:68:92:48:f7:e6:35:74:9f:77:d8: 46:24:9c:97:2b:98:3c:4e:a8:68:37:55:9c:81:c2:5d:43:d0: 4d:a2:a2:ef:76:30:3b:66:0d:94:1c:45:11:2e:da:94:18:e2: 97:31:f2:74:23:62:c2:6f:3a:96:db:04:d1:42:2d:e8:7a:8a: 68:3f:2a:e1:41:bf:2e:96:f1:69:a1:e9:2e:da:7e:cb:8e:ef: 73:5c:b1:40:0f:28:0d:b2:35:ac:f0:b1:97:0c:03:30:03:81: 88:38:f0:24:ab:f6:89:23:e5:6f:d7:98:1d:99:27:a1:d9:31: 52:79:3a:19:7b:21:a7:8d:4d:ea:85:cd:b0:0d:b1:29:52:53: 4e:a6:66:94:e6:fe:98:2e:bb:61:30:18:6c:49:cd:37:6c:d7: a1:9c:6f:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfhmFyt3JF8qgHZC6kNUtZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNDRiZTE4ZWUzZTBkMjc0NzY3MDU1NWU4NmIwMDA5NjVl ODEzOWIwHhcNMjUxMjE1MDEwMDU5WhcNMjUxMjE2MDEwMDU5WjAzMTEwLwYDVQQD Eyg5YzA1Y2UxZDdkYTI0NzUzOGQ1N2Y2NTY2N2Y4MDA4OGE4MmJmMDViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyW9JX0ZQ0fBJgAJubDqhjIuHgSjv Ww0Z2S7zcbYId1CI7FBEx3m8d/eg45JhOOK0TLaHbNotocrFGDcSBGmc6sIb/CqT bJnk9mpMm7vDdw01PlKhj7gOyOOnFQFmFQc9xvyczh2LPX+iJ/dlnV3VQkhiq9pn xBCfHqz2i5ItJ26jWFiljRTGHHKsqtNxQb4/3VHSCnRgXguQDpw1q/n1whYRGUoK ucueWHKQ7VIA8QghzS1ULt9aPeCYU1owpqZRgh1kC2TO07HggMCFMlWiSRuE3vDb h5kg7icXJqk4dsl/EGTDbceI/6IP1kKkGUHVgOsx3EKMbdv9S6vsHU5bZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJwFzh19okdTjVf2Vmf4AIioK/BbMB8GA1UdIwQY MBaAFK1EvhjuPg0nR2cFVehrAAll6BObMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclVTLUdPNC1EU2RIWndWVjZHc0FDV1hvRTVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mOGNmNTctNTcxZi00OWVlLWE3NmQt MTNhOGNiMjU4N2Q0LzEvclVTLUdPNC1EU2RIWndWVjZHc0FDV1hvRTVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9mOGNmNTctNTcxZi00OWVlLWE3NmQtMTNhOGNiMjU4N2Q0 LzEvclVTLUdPNC1EU2RIWndWVjZHc0FDV1hvRTVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASvwCCgTB VKQ4YE4U2H/CwFTRA+llvuacP8SSKwxxPy2Vr75Mxl/I3MbzxUxQjuvhbEz1Zs/z ieFWXQgAZ2HwuS0d9mro0V2IibzarXHB72X+rF55/qRmHlzrbCBlbkeOIGlokkj3 5jV0n3fYRiSclyuYPE6oaDdVnIHCXUPQTaKi73YwO2YNlBxFES7alBjilzHydCNi wm86ltsE0UIt6HqKaD8q4UG/LpbxaaHpLtp+y47vc1yxQA8oDbI1rPCxlwwDMAOB iDjwJKv2iSPlb9eYHZknodkxUnk6GXshp41N6oXNsA2xKVJTTqZmlOb+mC67YTAY bEnNN2zXoZxvDQ== -----END CERTIFICATE-----Generated at Mon Dec 15 04:57:14 2025 by rpki-client