This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft File: gmAVLt1HazFwhARFKVhhW2Xdywo.mft (raw, json) Hash identifier: Cgoi1TZG56Zwbn0fVbHGO+vd8qQxo51wPr9AJPhy5+M= Subject key identifier: 18:BC:04:57:FC:4D:76:74:DA:A6:FD:85:8B:AF:5E:2F:7A:70:A7:DE Authority key identifier: 82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A Certificate issuer: /CN=8260152edd476b31708404452958615b65ddcb0a Certificate serial: 019B5A1A5E85D01A64083E00A45E14FAA5B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 10:00:36 +0000 Manifest this update: Fri 26 Dec 2025 10:00:36 +0000 Manifest next update: Sat 27 Dec 2025 10:00:36 +0000 Files and hashes: 1: ABnX77DVikk7gn2fQ6SCyXZp5CY.roa (hash: tGweD2UyMDN3jg0C7H8c7WDDk9iUdxSAoQTdTpfDf5g=) 2: gmAVLt1HazFwhARFKVhhW2Xdywo.crl (hash: poVGDigsK5Ku4Ax+1ClDNnw8bkM/CXVj62ZXKy3fcfM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:5e:85:d0:1a:64:08:3e:00:a4:5e:14:fa:a5:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8260152edd476b31708404452958615b65ddcb0a Validity Not Before: Dec 26 10:00:36 2025 GMT Not After : Dec 27 10:00:36 2025 GMT Subject: CN=18bc0457fc4d7674daa6fd858baf5e2f7a70a7de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3c:e7:93:2e:6d:cb:a1:5b:20:05:c1:81:63: b8:38:de:88:64:3b:4f:b2:0c:e8:2d:1b:1e:6a:57: 83:ce:a1:19:b9:ee:c8:d1:fb:27:b0:ca:03:19:e4: 28:94:c8:71:12:2a:57:1b:4f:d0:92:e6:35:1a:1c: 05:23:c9:bb:14:e9:99:7e:de:23:31:d7:db:bb:b5: 24:22:06:74:09:3b:a3:89:8e:21:3c:d2:09:29:7a: 24:71:c4:69:37:94:65:69:ba:81:09:dd:9d:1c:30: ec:0d:66:fb:e3:68:5b:52:49:4b:51:54:fc:11:ff: cb:3f:cd:76:6a:c1:91:4b:e9:6c:13:21:77:16:6d: 53:2a:80:60:bd:54:f9:6c:48:9b:32:49:8c:29:30: 99:1f:d2:4c:6a:b9:80:fb:94:a8:c0:a3:ed:f0:c1: 1a:72:d1:5f:30:22:e9:8e:93:ea:1c:50:f3:3b:50: bc:fa:36:ab:0b:30:a1:6c:23:f4:2c:c8:7f:6d:37: 67:a2:cd:a9:7a:99:8c:25:03:94:7c:24:d1:8b:6b: 58:6e:57:c6:3a:b3:ab:72:f9:0e:7b:d4:2b:77:50: ed:56:50:97:23:2c:ca:f1:f1:0a:a8:19:d1:00:51: 22:d3:4f:d2:59:fa:f7:4d:71:5a:2f:4b:29:ed:1a: 0d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BC:04:57:FC:4D:76:74:DA:A6:FD:85:8B:AF:5E:2F:7A:70:A7:DE X509v3 Authority Key Identifier: keyid:82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:a1:d1:60:32:61:5e:81:4f:ed:7f:17:40:81:14:6e:61:4e: b4:de:f6:07:d9:c1:82:54:b2:e7:c0:50:f6:a3:08:32:bd:6b: 09:df:55:2c:cc:00:cd:b8:3b:37:17:8b:d6:ab:91:c1:99:c6: 08:1d:9d:ec:3d:7e:37:68:41:b5:ef:b5:a7:d5:91:b1:8c:2e: 7f:ee:01:a9:68:95:73:0c:2b:89:62:03:92:fa:9d:6a:9a:a3: fd:22:e9:fe:12:13:1d:e8:3e:67:fc:67:09:be:71:fc:23:24: cf:66:00:58:c0:5e:c2:f9:d8:e9:52:29:3a:33:a9:a0:fa:c0: 3b:c7:b2:fa:df:f9:9d:a6:66:14:71:1a:d4:a1:0f:25:44:ae: 96:c5:10:67:ca:53:dc:ad:6d:46:45:e8:e2:2b:98:e4:01:7f: b9:2e:f7:23:10:f2:ec:b9:5a:a7:c4:da:db:e5:ef:4a:8b:f0: 13:e4:3d:96:a3:40:69:3e:6c:9f:54:de:d9:3b:db:54:fb:96: f8:3c:52:26:0a:6c:e3:20:94:a1:14:69:29:75:be:22:c4:8a: c8:a4:0f:53:5d:0d:b3:66:0b:b7:e8:ee:38:5e:35:34:12:68: a3:3a:76:3a:54:ad:4e:cc:f1:a0:00:37:0a:1a:4a:25:f4:74: 1c:73:b5:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGl6F0BpkCD4ApF4U+qW5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNjAxNTJlZGQ0NzZiMzE3MDg0MDQ0NTI5NTg2MTViNjVk ZGNiMGEwHhcNMjUxMjI2MTAwMDM2WhcNMjUxMjI3MTAwMDM2WjAzMTEwLwYDVQQD EygxOGJjMDQ1N2ZjNGQ3Njc0ZGFhNmZkODU4YmFmNWUyZjdhNzBhN2RlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6zznky5ty6FbIAXBgWO4ON6IZDtP sgzoLRsealeDzqEZue7I0fsnsMoDGeQolMhxEipXG0/QkuY1GhwFI8m7FOmZft4j Mdfbu7UkIgZ0CTujiY4hPNIJKXokccRpN5RlabqBCd2dHDDsDWb742hbUklLUVT8 Ef/LP812asGRS+lsEyF3Fm1TKoBgvVT5bEibMkmMKTCZH9JMarmA+5SowKPt8MEa ctFfMCLpjpPqHFDzO1C8+jarCzChbCP0LMh/bTdnos2pepmMJQOUfCTRi2tYblfG OrOrcvkOe9Qrd1DtVlCXIyzK8fEKqBnRAFEi00/SWfr3TXFaL0sp7RoNXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBi8BFf8TXZ02qb9hYuvXi96cKfeMB8GA1UdIwQY MBaAFIJgFS7dR2sxcIQERSlYYVtl3csKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ21BVkx0MUhhekZ3aEFSRktWaGhXMlhkeXdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS80OWY0MGMtNTQ0OC00MjE3LTk1NmYt Y2NmOWIwZjBlMjI3LzEvZ21BVkx0MUhhekZ3aEFSRktWaGhXMlhkeXdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS80OWY0MGMtNTQ0OC00MjE3LTk1NmYtY2NmOWIwZjBlMjI3 LzEvZ21BVkx0MUhhekZ3aEFSRktWaGhXMlhkeXdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATqHRYDJh XoFP7X8XQIEUbmFOtN72B9nBglSy58BQ9qMIMr1rCd9VLMwAzbg7NxeL1quRwZnG CB2d7D1+N2hBte+1p9WRsYwuf+4BqWiVcwwriWIDkvqdapqj/SLp/hITHeg+Z/xn Cb5x/CMkz2YAWMBewvnY6VIpOjOpoPrAO8ey+t/5naZmFHEa1KEPJUSulsUQZ8pT 3K1tRkXo4iuY5AF/uS73IxDy7Llap8Ta2+XvSovwE+Q9lqNAaT5sn1Te2TvbVPuW +DxSJgps4yCUoRRpKXW+IsSKyKQPU10Ns2YLt+juOF41NBJoozp2OlStTszxoAA3 ChpKJfR0HHO1PA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:17 2025 by rpki-client