This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft File: Gvq72Ih6kieJRewu74JDoSlq33g.mft (raw, json) Hash identifier: bdxWp2McpyTCH7140+nnPpqSVjn+X5uiToG/sXfujRQ= Subject key identifier: 1A:D9:0F:17:CC:F0:7C:8D:41:9F:09:96:1A:56:20:DB:25:65:47:67 Authority key identifier: 1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78 Certificate issuer: /CN=1afabbd8887a92278945ec2eef8243a1296adf78 Certificate serial: 019B59768A10B024EC60668638BFD0D5AEAC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft Manifest number: 1794 Signing time: Fri 26 Dec 2025 07:01:39 +0000 Manifest this update: Fri 26 Dec 2025 07:01:39 +0000 Manifest next update: Sat 27 Dec 2025 07:01:39 +0000 Files and hashes: 1: Gvq72Ih6kieJRewu74JDoSlq33g.crl (hash: hkFD5Akwnmw4Ln6uHpZwRO7iDjGI4fPUnK6iPpIEHFc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:8a:10:b0:24:ec:60:66:86:38:bf:d0:d5:ae:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1afabbd8887a92278945ec2eef8243a1296adf78 Validity Not Before: Dec 26 07:01:39 2025 GMT Not After : Dec 27 07:01:39 2025 GMT Subject: CN=1ad90f17ccf07c8d419f09961a5620db25654767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:61:d8:2c:a0:64:28:91:76:71:43:8c:b6:dd: d7:42:d3:f3:37:02:de:a9:e5:20:2a:7d:51:15:6e: d3:ce:ed:46:f4:58:8c:fb:59:65:c1:d9:7e:dd:60: 10:20:a2:d9:1a:11:c0:05:b6:b7:c6:e6:77:2f:70: b0:6c:35:7e:dc:30:f5:fd:d1:08:3b:a6:91:e5:82: d5:11:6f:11:10:04:30:33:fa:e4:ab:69:93:a8:98: ef:d0:9e:e4:2b:7c:e9:ea:7b:a6:7c:22:97:72:f1: 85:82:6d:d6:74:a6:ae:c3:33:30:a7:bc:ec:ed:45: 34:35:f6:9c:7f:5a:10:98:d4:52:d8:27:07:ef:9b: 54:11:7b:f0:10:79:29:b1:a3:e3:8d:66:d0:4e:7f: b0:9d:78:11:b4:31:71:27:d2:0f:b0:2d:dc:a9:08: b4:b8:5b:d5:34:23:60:da:90:24:39:f2:1d:dc:17: c6:14:bd:ca:33:0e:64:90:c9:48:ab:0a:3f:bb:c5: b5:6b:9f:7a:5b:38:fc:4d:fa:0a:8d:ba:26:31:35: b4:58:dc:4e:47:9d:3b:68:7a:fa:ee:2a:c3:d6:ca: 7f:00:d9:3d:5e:c6:32:9e:00:38:38:94:d1:4d:88: 28:db:b1:59:e9:f8:2c:58:e9:3a:7b:81:e8:04:c0: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D9:0F:17:CC:F0:7C:8D:41:9F:09:96:1A:56:20:DB:25:65:47:67 X509v3 Authority Key Identifier: keyid:1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:af:49:a8:ec:a5:f6:9f:73:56:db:fc:14:99:1a:13:2c:9c: 72:ad:a4:b8:7f:bc:4c:db:92:e4:c7:3a:79:33:bb:dc:f0:77: d8:5f:3e:2f:9e:c9:09:89:79:b5:9b:10:8e:f9:be:ba:ba:4b: 6e:db:e6:95:a6:70:64:df:d0:93:8f:97:b5:22:a9:ee:b9:17: d3:f0:4e:03:70:92:89:a8:53:1c:5b:86:c1:c3:fa:14:bd:7b: f6:b6:ca:fb:ef:12:e7:54:9a:cd:8e:d9:fd:31:2b:e7:51:a6: ff:80:3e:8d:87:15:0d:39:38:56:b6:ec:c8:b2:ea:2b:4c:8c: 90:64:ab:c3:bf:77:5a:19:26:af:6b:ed:ec:87:94:15:c3:b3: ee:08:5c:9a:89:89:e3:80:f8:b6:65:c6:70:a3:b9:d0:ec:b7: 15:54:06:15:ef:82:13:fd:2a:f2:19:36:71:00:bf:a1:f5:1a: 57:6f:63:72:20:b7:62:13:ba:61:4e:82:5b:c0:f5:f4:0e:5a: 80:2a:e9:04:66:f0:08:91:b7:35:f7:bb:33:e7:08:ab:ad:50: 67:21:14:89:75:0d:c8:60:37:57:54:ab:d0:80:00:0f:b2:f3: ae:4e:0a:db:1c:4e:12:d0:28:15:74:b4:7f:b2:0a:a0:ad:b0: 3b:eb:24:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdooQsCTsYGaGOL/Q1a6sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhZmFiYmQ4ODg3YTkyMjc4OTQ1ZWMyZWVmODI0M2ExMjk2 YWRmNzgwHhcNMjUxMjI2MDcwMTM5WhcNMjUxMjI3MDcwMTM5WjAzMTEwLwYDVQQD EygxYWQ5MGYxN2NjZjA3YzhkNDE5ZjA5OTYxYTU2MjBkYjI1NjU0NzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2HYLKBkKJF2cUOMtt3XQtPzNwLe qeUgKn1RFW7Tzu1G9FiM+1llwdl+3WAQIKLZGhHABba3xuZ3L3CwbDV+3DD1/dEI O6aR5YLVEW8REAQwM/rkq2mTqJjv0J7kK3zp6numfCKXcvGFgm3WdKauwzMwp7zs 7UU0Nfacf1oQmNRS2CcH75tUEXvwEHkpsaPjjWbQTn+wnXgRtDFxJ9IPsC3cqQi0 uFvVNCNg2pAkOfId3BfGFL3KMw5kkMlIqwo/u8W1a596Wzj8TfoKjbomMTW0WNxO R507aHr67irD1sp/ANk9XsYyngA4OJTRTYgo27FZ6fgsWOk6e4HoBMBQJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBrZDxfM8HyNQZ8JlhpWINslZUdnMB8GA1UdIwQY MBaAFBr6u9iIepIniUXsLu+CQ6Epat94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kZjdhNGMtMjU0OC00MGRkLTkwMGUt NTE2MDY1YjZjZmE1LzEvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9kZjdhNGMtMjU0OC00MGRkLTkwMGUtNTE2MDY1YjZjZmE1 LzEvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkK9JqOyl 9p9zVtv8FJkaEyyccq2kuH+8TNuS5Mc6eTO73PB32F8+L57JCYl5tZsQjvm+urpL btvmlaZwZN/Qk4+XtSKp7rkX0/BOA3CSiahTHFuGwcP6FL179rbK++8S51SazY7Z /TEr51Gm/4A+jYcVDTk4VrbsyLLqK0yMkGSrw793Whkmr2vt7IeUFcOz7ghcmomJ 44D4tmXGcKO50Oy3FVQGFe+CE/0q8hk2cQC/ofUaV29jciC3YhO6YU6CW8D19A5a gCrpBGbwCJG3Nfe7M+cIq61QZyEUiXUNyGA3V1Sr0IAAD7Lzrk4K2xxOEtAoFXS0 f7IKoK2wO+skPg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:19 2025 by rpki-client