This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft File: gU3w5sDcpazuCDqMcwTUXz0z1W0.mft (raw, json) Hash identifier: 60ClMYXEjDmCZ7U8nugO/U0HPuWnib5SMd45Ffz/FuM= Subject key identifier: D8:79:CB:06:0F:41:33:30:DF:01:2E:E4:5B:89:32:61:4A:15:DD:6C Authority key identifier: 81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D Certificate issuer: /CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d Certificate serial: 019B2EF9BB7EE1402496DCBF9F16529A7E72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft Manifest number: 0E61 Signing time: Thu 18 Dec 2025 01:01:16 +0000 Manifest this update: Thu 18 Dec 2025 01:01:16 +0000 Manifest next update: Fri 19 Dec 2025 01:01:16 +0000 Files and hashes: 1: gU3w5sDcpazuCDqMcwTUXz0z1W0.crl (hash: eIdn2WB4I03wBtarBfWPIouhGWacTf6jtWyAQ22943g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:bb:7e:e1:40:24:96:dc:bf:9f:16:52:9a:7e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=814df0e6c0dca5acee083a8c7304d45f3d33d56d Validity Not Before: Dec 18 01:01:16 2025 GMT Not After : Dec 19 01:01:16 2025 GMT Subject: CN=d879cb060f413330df012ee45b8932614a15dd6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ce:b3:ce:54:a6:31:5c:d8:66:0c:a1:49:7e: c6:d4:b3:8c:e6:b1:d9:26:7c:c6:22:10:72:24:f5: c0:82:73:22:ed:c8:2d:ca:94:52:ea:16:38:29:76: 1f:21:4e:29:62:f1:b1:51:37:90:9e:dd:67:1c:ae: f2:2d:e4:fd:05:92:24:39:07:99:bc:5c:91:f8:b0: bf:87:f6:19:cf:dd:56:06:7c:fa:c5:8e:25:f2:1a: 9a:cc:0e:38:8a:c8:ae:67:a3:69:0f:5f:9d:4d:7f: 67:30:f9:72:ff:f2:25:19:45:e1:26:ac:e1:a9:c8: 36:c1:fb:03:28:4f:b9:da:c6:be:bb:03:ca:b0:1a: fd:f0:cd:a2:38:69:7d:09:2a:a6:57:43:09:11:61: c1:81:c2:16:a7:64:4e:c7:44:9f:68:fc:e4:09:3d: 13:05:ca:7d:c9:f2:3c:18:09:c3:38:da:22:e6:90: 93:97:1c:59:12:a3:9f:6b:b7:51:12:91:75:9f:09: 42:7b:6d:b6:f4:d5:ff:25:1d:07:31:87:a3:dc:3d: 0f:69:61:b2:7e:a7:f0:e6:e4:54:4b:84:5c:44:f8: 29:0f:3f:ce:4a:02:27:8a:78:74:e6:aa:11:bf:9a: e0:89:da:67:aa:b1:96:40:75:2d:ad:9b:f2:10:3e: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:79:CB:06:0F:41:33:30:DF:01:2E:E4:5B:89:32:61:4A:15:DD:6C X509v3 Authority Key Identifier: keyid:81:4D:F0:E6:C0:DC:A5:AC:EE:08:3A:8C:73:04:D4:5F:3D:33:D5:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gU3w5sDcpazuCDqMcwTUXz0z1W0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5140ee-6fef-46ac-be32-d0d2f2ca8cbc/1/gU3w5sDcpazuCDqMcwTUXz0z1W0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:dc:55:69:56:ef:de:b7:c0:04:ad:b4:a4:9a:bf:ba:fa:49: df:95:60:c8:92:32:dd:e4:7b:5a:ae:26:9d:93:1d:6e:c1:90: c4:06:17:ec:3f:d8:3f:2b:33:bc:8f:12:e2:7b:4a:c9:14:98: c2:78:71:21:aa:c4:97:15:36:bd:69:f3:93:97:cd:6c:ea:c0: 2a:65:82:1c:d8:57:a8:b4:25:26:06:1a:15:42:5d:dd:56:82: 84:a1:1d:52:b0:a0:ea:22:eb:b7:62:92:77:c7:c2:76:a7:fd: 94:11:a7:7d:eb:c6:4a:f9:34:b1:0a:9d:dd:94:35:2f:fc:f0: 69:ba:35:b4:ab:07:0e:9e:1e:a4:ca:b6:f8:eb:95:d6:16:21: 5c:6f:c6:01:24:f6:dc:c9:70:6c:7f:3b:4e:53:0b:d9:cd:44: 3d:a9:3d:51:6e:22:14:55:e7:02:1d:bc:5f:24:d6:0d:14:43: eb:61:0a:ef:ef:95:c1:a0:01:19:ce:ea:2a:1a:dd:fa:7b:0a: c6:a2:ba:92:19:7f:93:fb:cf:2f:b5:c0:49:77:8d:12:83:97: 4e:66:61:7c:c7:dd:cb:60:b4:6a:a2:d6:c9:4d:4d:ec:d4:c8: 25:31:47:e4:43:8a:dd:30:33:df:20:98:6b:8b:c2:11:73:76: c2:1a:d9:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+bt+4UAklty/nxZSmn5yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxNGRmMGU2YzBkY2E1YWNlZTA4M2E4YzczMDRkNDVmM2Qz M2Q1NmQwHhcNMjUxMjE4MDEwMTE2WhcNMjUxMjE5MDEwMTE2WjAzMTEwLwYDVQQD EyhkODc5Y2IwNjBmNDEzMzMwZGYwMTJlZTQ1Yjg5MzI2MTRhMTVkZDZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqM6zzlSmMVzYZgyhSX7G1LOM5rHZ JnzGIhByJPXAgnMi7cgtypRS6hY4KXYfIU4pYvGxUTeQnt1nHK7yLeT9BZIkOQeZ vFyR+LC/h/YZz91WBnz6xY4l8hqazA44isiuZ6NpD1+dTX9nMPly//IlGUXhJqzh qcg2wfsDKE+52sa+uwPKsBr98M2iOGl9CSqmV0MJEWHBgcIWp2ROx0SfaPzkCT0T Bcp9yfI8GAnDONoi5pCTlxxZEqOfa7dREpF1nwlCe2229NX/JR0HMYej3D0PaWGy fqfw5uRUS4RcRPgpDz/OSgIninh05qoRv5rgidpnqrGWQHUtrZvyED5nFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNh5ywYPQTMw3wEu5FuJMmFKFd1sMB8GA1UdIwQY MBaAFIFN8ObA3KWs7gg6jHME1F89M9VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi81MTQwZWUtNmZlZi00NmFjLWJlMzIt ZDBkMmYyY2E4Y2JjLzEvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi81MTQwZWUtNmZlZi00NmFjLWJlMzItZDBkMmYyY2E4Y2Jj LzEvZ1UzdzVzRGNwYXp1Q0RxTWN3VFVYejB6MVcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZtxVaVbv 3rfABK20pJq/uvpJ35VgyJIy3eR7Wq4mnZMdbsGQxAYX7D/YPyszvI8S4ntKyRSY wnhxIarElxU2vWnzk5fNbOrAKmWCHNhXqLQlJgYaFUJd3VaChKEdUrCg6iLrt2KS d8fCdqf9lBGnfevGSvk0sQqd3ZQ1L/zwabo1tKsHDp4epMq2+OuV1hYhXG/GAST2 3MlwbH87TlML2c1EPak9UW4iFFXnAh28XyTWDRRD62EK7++VwaABGc7qKhrd+nsK xqK6khl/k/vPL7XASXeNEoOXTmZhfMfdy2C0aqLWyU1N7NTIJTFH5EOK3TAz3yCY a4vCEXN2whrZ6w== -----END CERTIFICATE-----Generated at Thu Dec 18 08:04:02 2025 by rpki-client