This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json) Hash identifier: 3p8Oi1H4I4vTIUHYmtTsps4A2W7Y2iEtnMz8rCtOZU4= Subject key identifier: 79:6E:41:38:0D:67:A8:A6:E3:AB:ED:D8:BE:F9:FE:2A:BA:BE:E7:34 Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Certificate serial: 019B5ABF3E7A43CA4E510BA8A228A5FC8B9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft Manifest number: 037F Signing time: Fri 26 Dec 2025 13:00:41 +0000 Manifest this update: Fri 26 Dec 2025 13:00:41 +0000 Manifest next update: Sat 27 Dec 2025 13:00:41 +0000 Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: ReEqts8e0soZsbspzSAuFVO1O1zbgxz4XPrkYiGCA2Y=) 2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:3e:7a:43:ca:4e:51:0b:a8:a2:28:a5:fc:8b:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Validity Not Before: Dec 26 13:00:41 2025 GMT Not After : Dec 27 13:00:41 2025 GMT Subject: CN=796e41380d67a8a6e3abedd8bef9fe2ababee734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5e:24:40:f0:df:cf:9f:2b:74:db:c3:2a:96: d3:66:5a:54:0a:65:49:e8:fd:67:00:22:d4:31:60: d2:09:65:2e:e4:83:4e:33:f3:13:ad:c2:19:bc:a5: b0:09:e2:d9:af:fe:16:26:6c:64:ff:e3:25:8a:8b: c0:99:9e:7d:b2:85:01:e6:6b:9c:ab:50:ef:69:b4: 46:f1:63:60:01:7d:67:cb:66:8d:4d:e1:2f:79:bd: fa:34:81:ba:ea:12:63:54:22:16:af:9a:a4:b3:a3: 79:0e:04:ef:74:d3:b4:1a:ba:d1:a6:4a:0c:2c:6e: ac:bc:d5:f6:76:4f:54:06:18:a8:78:d2:99:00:09: 4a:ce:eb:19:67:9e:b8:13:97:76:78:2f:b5:53:a4: fc:df:4d:80:8e:cb:97:d0:53:11:f8:1b:4d:ae:33: c0:55:6d:6a:80:a4:a9:e3:13:ad:82:a3:cd:72:a6: 87:95:74:bc:89:09:db:53:a7:7b:3e:16:3e:d6:fc: 25:19:d5:a8:86:c4:33:05:be:56:d8:6a:78:e5:9f: 4e:89:50:6c:32:58:b4:0e:44:1b:1d:99:73:25:8d: 5f:61:75:9c:0f:c7:9c:2d:d0:db:95:9c:09:da:72: 6f:1b:b2:71:81:87:b6:0c:88:cb:18:3c:ed:4d:7c: e1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6E:41:38:0D:67:A8:A6:E3:AB:ED:D8:BE:F9:FE:2A:BA:BE:E7:34 X509v3 Authority Key Identifier: keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:85:0f:18:0c:e7:2d:6d:4b:52:85:1a:a0:87:9f:9d:ab:5d: 62:3c:bc:1a:97:f5:5d:b6:d2:fd:4e:0d:6d:ba:e4:1a:37:9d: 04:e3:4d:e5:7f:c7:60:ac:1e:bd:b2:e0:c1:08:79:3a:60:ad: 02:81:64:09:ce:95:a7:d8:fa:32:03:c8:39:bb:1f:69:ba:e1: 63:65:13:a6:39:bd:e3:63:38:a7:34:0e:b5:aa:62:94:08:5c: 28:ea:33:1e:80:ef:b4:fa:19:04:0b:04:0c:1e:86:1e:77:15: 7c:1a:0f:24:43:ac:31:40:e3:c0:4c:2c:92:c3:04:86:aa:c0: 7f:e3:c2:55:83:c4:b0:6c:44:68:55:0c:cd:49:74:7a:24:7f: f5:a4:f4:24:51:ae:4b:05:4b:28:06:bc:36:30:18:85:0a:79: 1b:f3:9c:d5:c4:15:72:db:50:b6:9e:ff:5b:df:6b:c8:79:e3: b7:47:8d:63:a1:d3:5a:f2:af:ff:6b:cd:94:81:92:85:97:ef: 99:a8:cf:cf:42:b3:f4:6b:0f:fb:0f:fa:ac:bc:25:63:f4:8d: 4e:96:fe:24:7b:3d:bc:06:b3:4e:dc:33:c1:ba:2b:69:fb:a3: b6:a8:d1:ce:6e:0c:dc:16:f8:22:3a:96:ab:67:16:9f:9f:79: 2b:9c:dd:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtavz56Q8pOUQuooiil/IudMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw MjVkMTgwHhcNMjUxMjI2MTMwMDQxWhcNMjUxMjI3MTMwMDQxWjAzMTEwLwYDVQQD Eyg3OTZlNDEzODBkNjdhOGE2ZTNhYmVkZDhiZWY5ZmUyYWJhYmVlNzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV4kQPDfz58rdNvDKpbTZlpUCmVJ 6P1nACLUMWDSCWUu5INOM/MTrcIZvKWwCeLZr/4WJmxk/+MliovAmZ59soUB5muc q1DvabRG8WNgAX1ny2aNTeEveb36NIG66hJjVCIWr5qks6N5DgTvdNO0GrrRpkoM LG6svNX2dk9UBhioeNKZAAlKzusZZ564E5d2eC+1U6T8302AjsuX0FMR+BtNrjPA VW1qgKSp4xOtgqPNcqaHlXS8iQnbU6d7PhY+1vwlGdWohsQzBb5W2Gp45Z9OiVBs Mli0DkQbHZlzJY1fYXWcD8ecLdDblZwJ2nJvG7JxgYe2DIjLGDztTXzhxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHluQTgNZ6im46vt2L75/iq6vuc0MB8GA1UdIwQY MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaYUPGAzn LW1LUoUaoIefnatdYjy8Gpf1XbbS/U4NbbrkGjedBONN5X/HYKwevbLgwQh5OmCt AoFkCc6Vp9j6MgPIObsfabrhY2UTpjm942M4pzQOtapilAhcKOozHoDvtPoZBAsE DB6GHncVfBoPJEOsMUDjwEwsksMEhqrAf+PCVYPEsGxEaFUMzUl0eiR/9aT0JFGu SwVLKAa8NjAYhQp5G/Oc1cQVcttQtp7/W99ryHnjt0eNY6HTWvKv/2vNlIGShZfv majPz0Kz9GsP+w/6rLwlY/SNTpb+JHs9vAazTtwzwborafujtqjRzm4M3Bb4IjqW q2cWn595K5zdRw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:34 2025 by rpki-client