This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json) Hash identifier: n0A9Lbrtb5w7YR3Po1werOA5+lMn4oYejtipMCOmEho= Subject key identifier: 27:44:B3:82:B5:FE:63:0A:4D:CD:FE:D0:E0:AB:C7:24:42:D4:B8:F2 Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65 Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65 Certificate serial: 019B1ACE22515DC9E3D78F36F54E013770C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft Manifest number: 177D Signing time: Sun 14 Dec 2025 03:01:15 +0000 Manifest this update: Sun 14 Dec 2025 03:01:15 +0000 Manifest next update: Mon 15 Dec 2025 03:01:15 +0000 Files and hashes: 1: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: z1mhp5+R6oCT5AsNFgnTjiOajc7VCLqG6KFLZPljnag=) 2: Sl7vs7epJo1jh-smoHIDy3MLe90.roa (hash: +DnNPnPqq4n8ubPLxyevCl394y1niM+tRJ57hRES2xk=) 3: hER6wRwe_hUZJ0u9RImVrBTy1as.roa (hash: iyJ20Ahzbr3qZY7vMtDGjDttWYIPJenArxH2H2QEoYE=) 4: zSb8_4z_t4ghRM_Xlv4jNaBnlZo.roa (hash: lIQeqP7XnTmZINxSIi5omnfSVVcthpIv6JLsOviMBeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:ce:22:51:5d:c9:e3:d7:8f:36:f5:4e:01:37:70:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65 Validity Not Before: Dec 14 03:01:15 2025 GMT Not After : Dec 15 03:01:15 2025 GMT Subject: CN=2744b382b5fe630a4dcdfed0e0abc72442d4b8f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:80:8e:6b:9a:43:ea:e0:9e:5b:d0:48:c5:12: 5f:03:d6:b6:3c:f6:9e:bb:dc:38:70:d3:7d:5f:c0: dc:d3:a8:49:2a:cc:9f:ef:36:8c:6e:9d:84:22:36: bb:1e:7e:aa:04:b9:90:bb:d1:a1:c9:cb:11:ff:78: 26:1e:9b:5b:f5:e2:c9:d4:c4:bd:5d:67:d5:d1:9c: ac:12:99:e2:e9:f4:87:24:02:63:f0:2c:1b:b1:e1: c5:84:cd:15:db:2c:2c:13:89:0d:34:65:f3:28:82: ee:15:d1:93:1a:99:8f:bb:d5:6a:78:ca:4a:fc:e3: 8f:51:a4:c7:71:c2:73:37:11:f9:a6:00:4d:bd:ec: 38:c4:5e:35:73:b7:9c:50:f1:d4:db:b5:81:8c:3c: e3:2c:c8:f1:32:0a:6e:bd:3c:4d:7a:c2:84:00:74: cb:eb:38:d9:a7:b7:9e:c2:40:58:03:92:6e:24:1b: ec:08:9a:de:61:8a:05:fd:a3:a2:36:53:f9:9e:86: 6e:d4:06:f2:6f:ca:a7:be:57:08:39:e2:38:50:eb: bf:8b:53:ed:df:4f:4c:ca:5d:a5:d4:6b:a9:5d:c8: 1a:25:a7:7a:19:51:c4:d0:ea:ed:d2:12:e6:bd:18: f2:b5:fb:74:27:92:7b:31:2f:c3:15:d1:8b:62:67: 87:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:44:B3:82:B5:FE:63:0A:4D:CD:FE:D0:E0:AB:C7:24:42:D4:B8:F2 X509v3 Authority Key Identifier: keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:d2:f8:98:c0:21:5e:52:20:2e:43:7b:50:f9:34:73:f4:00: c9:14:d0:1f:5a:43:bf:bd:39:e6:8f:cd:e7:0c:68:03:70:4c: 49:48:e4:8b:7b:70:71:0c:f8:77:00:25:76:55:db:a1:ac:fb: 30:16:76:26:dd:3d:29:0b:1e:c0:a5:38:87:94:94:09:f2:10: b4:9c:71:48:1c:e0:61:a5:d8:ac:ec:c8:57:92:08:33:b8:73: 00:47:1d:3d:91:fc:0f:b0:2e:f8:86:c7:f7:61:a5:27:bd:0c: aa:d5:a0:b3:81:3d:2f:d1:30:05:70:10:52:1b:cb:44:de:e5: a9:9e:1e:ad:95:41:52:b5:11:f1:a3:be:a1:12:ff:9b:4f:ae: d2:4e:13:12:a8:55:4f:36:92:b7:5c:2e:b5:05:b1:d6:72:92: 35:bf:ba:22:0d:03:2f:82:9b:b3:80:8d:15:6a:a7:69:67:bb: 00:4d:43:7c:9d:21:cb:45:a5:0e:2f:6c:27:de:3d:d0:8b:00: 2f:3e:ad:0e:30:5c:0a:6f:a3:b2:65:f5:db:b3:64:49:6d:97: af:b6:14:ac:4a:4a:1f:b9:a1:0f:aa:30:e2:a4:47:b7:96:26: 21:68:33:fb:f7:e2:0e:da:f9:cb:d6:35:96:7d:5a:5a:ca:33: 8f:5f:4e:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaziJRXcnj14829U4BN3DIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNDFhNWEyYTE4MzM5NjI5Y2MxMzAzZTZkZWM4YmI2MDVk ZGNhNjUwHhcNMjUxMjE0MDMwMTE1WhcNMjUxMjE1MDMwMTE1WjAzMTEwLwYDVQQD EygyNzQ0YjM4MmI1ZmU2MzBhNGRjZGZlZDBlMGFiYzcyNDQyZDRiOGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuoCOa5pD6uCeW9BIxRJfA9a2PPae u9w4cNN9X8Dc06hJKsyf7zaMbp2EIja7Hn6qBLmQu9GhycsR/3gmHptb9eLJ1MS9 XWfV0ZysEpni6fSHJAJj8CwbseHFhM0V2ywsE4kNNGXzKILuFdGTGpmPu9VqeMpK /OOPUaTHccJzNxH5pgBNvew4xF41c7ecUPHU27WBjDzjLMjxMgpuvTxNesKEAHTL 6zjZp7eewkBYA5JuJBvsCJreYYoF/aOiNlP5noZu1Abyb8qnvlcIOeI4UOu/i1Pt 309Myl2l1GupXcgaJad6GVHE0Ort0hLmvRjytft0J5J7MS/DFdGLYmeHewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCdEs4K1/mMKTc3+0OCrxyRC1LjyMB8GA1UdIwQY MBaAFApBpaKhgzlinMEwPm3si7YF3cplMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjIt ODBmN2ZkNmVhOWM5LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjItODBmN2ZkNmVhOWM5 LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYNL4mMAh XlIgLkN7UPk0c/QAyRTQH1pDv7055o/N5wxoA3BMSUjki3twcQz4dwAldlXboaz7 MBZ2Jt09KQsewKU4h5SUCfIQtJxxSBzgYaXYrOzIV5IIM7hzAEcdPZH8D7Au+IbH 92GlJ70MqtWgs4E9L9EwBXAQUhvLRN7lqZ4erZVBUrUR8aO+oRL/m0+u0k4TEqhV TzaSt1wutQWx1nKSNb+6Ig0DL4Kbs4CNFWqnaWe7AE1DfJ0hy0WlDi9sJ9490IsA Lz6tDjBcCm+jsmX127NkSW2Xr7YUrEpKH7mhD6ow4qRHt5YmIWgz+/fiDtr5y9Y1 ln1aWsozj19Odg== -----END CERTIFICATE-----Generated at Sun Dec 14 07:46:12 2025 by rpki-client