This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft File: CkGloqGDOWKcwTA-beyLtgXdymU.mft (raw, json) Hash identifier: Jb0CSugX/Qqe0JRj8q8YrWQjPfaSRg6K+mQzUvz+V1s= Subject key identifier: 22:67:B8:4B:CF:B2:B2:D1:46:54:1F:B1:A1:1F:66:B5:86:EB:9E:36 Authority key identifier: 0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65 Certificate issuer: /CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65 Certificate serial: 019B058FA8665E2B77C99BC34133B29072C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft Manifest number: 1772 Signing time: Wed 10 Dec 2025 00:00:59 +0000 Manifest this update: Wed 10 Dec 2025 00:00:59 +0000 Manifest next update: Thu 11 Dec 2025 00:00:59 +0000 Files and hashes: 1: CkGloqGDOWKcwTA-beyLtgXdymU.crl (hash: m2EFpMjCQYoz046eQdYBbDO+FmZYu0JYuUssoQgPyyU=) 2: Sl7vs7epJo1jh-smoHIDy3MLe90.roa (hash: +DnNPnPqq4n8ubPLxyevCl394y1niM+tRJ57hRES2xk=) 3: hER6wRwe_hUZJ0u9RImVrBTy1as.roa (hash: iyJ20Ahzbr3qZY7vMtDGjDttWYIPJenArxH2H2QEoYE=) 4: zSb8_4z_t4ghRM_Xlv4jNaBnlZo.roa (hash: lIQeqP7XnTmZINxSIi5omnfSVVcthpIv6JLsOviMBeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:8f:a8:66:5e:2b:77:c9:9b:c3:41:33:b2:90:72:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a41a5a2a18339629cc1303e6dec8bb605ddca65 Validity Not Before: Dec 10 00:00:59 2025 GMT Not After : Dec 11 00:00:59 2025 GMT Subject: CN=2267b84bcfb2b2d146541fb1a11f66b586eb9e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9e:a9:34:b3:f4:2f:9e:cc:49:ee:74:f6:dd: 4b:45:d4:f9:d3:59:8c:35:d0:e2:cc:d6:0e:e6:1d: 83:68:9f:09:a3:04:37:b0:c8:4c:70:84:54:2b:1f: 7c:67:02:19:11:91:8f:71:5c:7c:56:27:dc:65:28: 29:5f:42:20:03:b3:af:80:6c:e3:b5:6c:ac:b3:3f: fe:7f:2c:a8:90:64:d6:b9:d2:6c:a3:a2:6e:8c:b1: 8e:2f:85:39:4b:0b:c8:5a:e2:d5:a2:55:3a:81:a7: 34:24:02:fc:93:7f:8a:cb:f5:41:23:76:54:de:85: bb:bf:e0:41:bc:ce:bc:a6:e2:98:5f:f8:37:4d:a8: 15:04:65:25:7c:fc:7e:60:cd:ec:85:0c:32:ec:44: eb:21:04:d7:f9:44:df:9e:40:9a:f9:2c:8b:2f:38: c2:21:17:a4:fb:19:08:8b:b1:8f:7a:63:55:74:71: 69:10:68:8d:fa:24:4d:90:f5:bb:34:58:ed:20:90: 7f:93:58:93:52:c5:9f:8d:6e:bf:87:f4:7d:df:be: 23:10:71:6d:6c:a8:33:1d:1a:29:0d:fd:d4:df:e6: 3e:65:e8:4f:8f:1b:74:0b:c5:ed:33:91:30:4f:8f: f6:7b:21:17:cd:28:8d:31:e4:72:78:40:e8:3b:ac: d3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:67:B8:4B:CF:B2:B2:D1:46:54:1F:B1:A1:1F:66:B5:86:EB:9E:36 X509v3 Authority Key Identifier: keyid:0A:41:A5:A2:A1:83:39:62:9C:C1:30:3E:6D:EC:8B:B6:05:DD:CA:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkGloqGDOWKcwTA-beyLtgXdymU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d43c2c-74e9-47d4-bf62-80f7fd6ea9c9/1/CkGloqGDOWKcwTA-beyLtgXdymU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:bd:8d:0a:7b:17:05:69:4e:ee:a6:2a:86:29:36:99:0f:3f: f4:e5:ab:3d:83:bc:5b:5f:19:dd:22:cb:ba:a5:11:24:ce:8e: 42:6b:91:1d:c9:bb:b8:cb:dc:f5:26:ad:88:12:5d:bc:9d:38: 28:8b:78:e3:a9:c2:fd:e0:7c:5b:38:ab:8b:ac:08:7c:7f:fc: 49:ea:05:78:fa:a2:6f:3d:e9:ae:05:02:c3:cc:9c:3f:95:1f: 58:a4:c8:9e:9d:f6:5c:38:cf:d0:84:4a:bd:9c:3b:c5:53:aa: 74:37:0c:9d:11:9e:66:c8:ec:3b:4c:4d:df:23:f4:f5:31:a6: 79:76:c8:da:a4:17:0f:17:45:70:b7:c3:05:ac:d9:6c:77:45: b4:32:dc:cb:f4:9b:92:5a:8c:71:ac:82:a5:c0:f5:90:f3:76: b0:72:3c:12:81:ed:97:d7:65:fb:41:cf:d6:8c:9d:9b:ec:31: 2c:91:d6:75:62:14:71:14:27:da:dc:dd:08:61:55:0f:53:77: 88:12:5c:9e:60:cc:74:e8:13:38:cc:1d:61:3f:d0:8f:3f:b7: 27:15:d7:80:42:d4:29:10:62:a6:01:64:d2:88:0a:26:56:7d: c3:06:ba:67:91:09:61:83:c9:ab:33:6b:40:ba:6d:ae:49:76: cf:d3:cb:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsFj6hmXit3yZvDQTOykHLFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNDFhNWEyYTE4MzM5NjI5Y2MxMzAzZTZkZWM4YmI2MDVk ZGNhNjUwHhcNMjUxMjEwMDAwMDU5WhcNMjUxMjExMDAwMDU5WjAzMTEwLwYDVQQD EygyMjY3Yjg0YmNmYjJiMmQxNDY1NDFmYjFhMTFmNjZiNTg2ZWI5ZTM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZ6pNLP0L57MSe509t1LRdT501mM NdDizNYO5h2DaJ8JowQ3sMhMcIRUKx98ZwIZEZGPcVx8VifcZSgpX0IgA7OvgGzj tWyssz/+fyyokGTWudJso6JujLGOL4U5SwvIWuLVolU6gac0JAL8k3+Ky/VBI3ZU 3oW7v+BBvM68puKYX/g3TagVBGUlfPx+YM3shQwy7ETrIQTX+UTfnkCa+SyLLzjC IRek+xkIi7GPemNVdHFpEGiN+iRNkPW7NFjtIJB/k1iTUsWfjW6/h/R9374jEHFt bKgzHRopDf3U3+Y+ZehPjxt0C8XtM5EwT4/2eyEXzSiNMeRyeEDoO6zTEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJnuEvPsrLRRlQfsaEfZrWG6542MB8GA1UdIwQY MBaAFApBpaKhgzlinMEwPm3si7YF3cplMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjIt ODBmN2ZkNmVhOWM5LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9kNDNjMmMtNzRlOS00N2Q0LWJmNjItODBmN2ZkNmVhOWM5 LzEvQ2tHbG9xR0RPV0tjd1RBLWJleUx0Z1hkeW1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV72NCnsX BWlO7qYqhik2mQ8/9OWrPYO8W18Z3SLLuqURJM6OQmuRHcm7uMvc9SatiBJdvJ04 KIt446nC/eB8Wziri6wIfH/8SeoFePqibz3prgUCw8ycP5UfWKTInp32XDjP0IRK vZw7xVOqdDcMnRGeZsjsO0xN3yP09TGmeXbI2qQXDxdFcLfDBazZbHdFtDLcy/Sb klqMcayCpcD1kPN2sHI8EoHtl9dl+0HP1oydm+wxLJHWdWIUcRQn2tzdCGFVD1N3 iBJcnmDMdOgTOMwdYT/Qjz+3JxXXgELUKRBipgFk0ogKJlZ9wwa6Z5EJYYPJqzNr QLptrkl2z9PLVw== -----END CERTIFICATE-----Generated at Wed Dec 10 05:24:35 2025 by rpki-client