This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json) Hash identifier: TrILaLi68iFtXuB9Gghcwf9n3qTmlENFTwqWcYWtBDc= Subject key identifier: DD:FD:09:7D:A0:39:3D:DE:80:5A:E8:18:25:BA:C8:D4:8F:E9:03:C1 Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f Certificate serial: 019B4A70FE2CC56B73B9AB3D5612511948D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft Manifest number: 05D0 Signing time: Tue 23 Dec 2025 09:01:17 +0000 Manifest this update: Tue 23 Dec 2025 09:01:17 +0000 Manifest next update: Wed 24 Dec 2025 09:01:17 +0000 Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: Dwza+WsKJzQ8DfBTNv6mb5ozH6z8eANb5eaf0Va8oMc=) 2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:70:fe:2c:c5:6b:73:b9:ab:3d:56:12:51:19:48:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f Validity Not Before: Dec 23 09:01:17 2025 GMT Not After : Dec 24 09:01:17 2025 GMT Subject: CN=ddfd097da0393dde805ae81825bac8d48fe903c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:df:4c:2c:00:1f:42:68:15:9a:b7:40:f6:c0: e4:a6:56:9e:68:2a:6b:3d:19:c8:33:43:ad:c2:fd: 17:e9:f9:7e:27:e8:49:5c:99:89:fc:fa:0a:45:92: d0:4d:b0:4a:0e:9b:bd:e9:ae:5d:fe:f7:de:9d:1b: 7f:0a:33:ea:9c:25:28:a0:ee:df:8e:f1:53:8e:29: 7e:94:91:b9:34:bf:51:8c:f5:9e:73:92:d5:b0:a1: e5:dd:1b:66:1a:59:6a:c7:7d:0b:b2:02:31:4c:81: b8:b0:a4:7e:a8:f7:1d:49:83:e1:b9:58:dd:a6:46: 6b:36:92:f6:d0:7f:6e:81:7d:47:a5:54:6c:9d:20: ba:99:a9:7b:33:af:0a:f0:6c:bf:2d:bb:ed:5b:d9: 2f:79:ff:84:37:2e:14:99:af:e4:d9:dc:fc:ab:0b: db:00:aa:dc:57:59:9c:52:a9:19:13:b6:3f:76:b1: 4e:c2:40:cd:33:5e:82:16:72:9d:8e:9e:b5:26:3f: cf:d8:92:67:b7:94:a2:4d:6b:91:6f:3f:31:c2:1d: b6:03:ec:c4:3f:a1:60:75:5f:ae:fd:a0:9b:6c:35: 6a:ab:1e:c3:df:30:a5:8b:16:a7:a1:f6:61:5f:ae: b8:80:09:22:a8:b3:26:39:03:23:44:75:03:04:5c: b2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FD:09:7D:A0:39:3D:DE:80:5A:E8:18:25:BA:C8:D4:8F:E9:03:C1 X509v3 Authority Key Identifier: keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:61:ab:10:43:22:83:b5:f6:3f:17:fb:62:f1:a8:6e:32:00: 7f:2a:a6:6b:58:e9:48:ee:21:5c:af:d6:47:0a:09:47:ae:42: 39:76:88:d5:08:fd:a1:c4:c7:a0:55:4a:36:ad:06:48:44:42: 6b:5a:35:26:fe:96:a9:70:fe:cd:cb:65:a0:77:73:c6:d6:2d: 11:72:f0:c4:72:e7:97:43:2a:c2:3a:68:04:dc:79:43:99:ce: 5c:bd:ce:6a:22:4f:97:e2:4a:16:34:c3:91:ed:95:88:3c:54: 6c:2d:f5:6a:d2:4d:8e:05:cd:fd:d2:e7:8e:d9:3b:8f:e8:71: da:6d:91:d0:78:a4:05:cd:72:e5:a3:2c:f0:0a:68:ef:d7:2f: 01:08:b1:9e:53:95:55:e2:b6:be:c5:5b:e7:ea:ca:75:7f:3c: 15:33:6b:ae:cb:a8:02:6f:d1:31:da:b2:e3:71:eb:8f:49:b9: 8c:66:a2:6d:a2:74:d7:88:f3:99:3d:1f:55:bd:ea:05:7a:73: d7:5a:c6:45:e0:dd:b1:55:a0:3f:28:51:5a:0f:72:bf:d0:c9: 05:40:c4:98:f5:45:2e:f5:49:02:f9:68:c6:ec:f5:e4:6b:ed: e2:25:be:d7:2c:a0:81:1e:03:a8:09:c9:9c:d9:84:4b:a5:52: 34:f2:e5:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcP4sxWtzuas9VhJRGUjWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwNGFlNzZiMTk3NWZiNGE4Y2JhYjIyMDcxODllZWQyMDIz MmZmNWYwHhcNMjUxMjIzMDkwMTE3WhcNMjUxMjI0MDkwMTE3WjAzMTEwLwYDVQQD EyhkZGZkMDk3ZGEwMzkzZGRlODA1YWU4MTgyNWJhYzhkNDhmZTkwM2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkN9MLAAfQmgVmrdA9sDkplaeaCpr PRnIM0Otwv0X6fl+J+hJXJmJ/PoKRZLQTbBKDpu96a5d/vfenRt/CjPqnCUooO7f jvFTjil+lJG5NL9RjPWec5LVsKHl3RtmGllqx30LsgIxTIG4sKR+qPcdSYPhuVjd pkZrNpL20H9ugX1HpVRsnSC6mal7M68K8Gy/LbvtW9kvef+ENy4Uma/k2dz8qwvb AKrcV1mcUqkZE7Y/drFOwkDNM16CFnKdjp61Jj/P2JJnt5SiTWuRbz8xwh22A+zE P6FgdV+u/aCbbDVqqx7D3zClixanofZhX664gAkiqLMmOQMjRHUDBFyylwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN39CX2gOT3egFroGCW6yNSP6QPBMB8GA1UdIwQY MBaAFIBK52sZdftKjLqyIHGJ7tICMv9fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDkt OTQyMjcyOTNjODhlLzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDktOTQyMjcyOTNjODhl LzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEGGrEEMi g7X2Pxf7YvGobjIAfyqma1jpSO4hXK/WRwoJR65COXaI1Qj9ocTHoFVKNq0GSERC a1o1Jv6WqXD+zctloHdzxtYtEXLwxHLnl0MqwjpoBNx5Q5nOXL3OaiJPl+JKFjTD ke2ViDxUbC31atJNjgXN/dLnjtk7j+hx2m2R0HikBc1y5aMs8Apo79cvAQixnlOV VeK2vsVb5+rKdX88FTNrrsuoAm/RMdqy43Hrj0m5jGaibaJ014jzmT0fVb3qBXpz 11rGReDdsVWgPyhRWg9yv9DJBUDEmPVFLvVJAvloxuz15Gvt4iW+1yyggR4DqAnJ nNmES6VSNPLlrQ== -----END CERTIFICATE-----Generated at Tue Dec 23 16:30:22 2025 by rpki-client