This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft File: gnMxRuPp1uEVRjF_dSGeogLF-S0.mft (raw, json) Hash identifier: XbeX8299/xl0wmn4u+gZbsSLJk/a9e5nXRSXIsFtzIY= Subject key identifier: CB:4A:E2:17:34:52:C7:06:D4:DD:F9:89:32:CF:22:9C:14:E8:33:11 Authority key identifier: 82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D Certificate issuer: /CN=82733146e3e9d6e11546317f75219ea202c5f92d Certificate serial: 019B4324A2BC33E531FE1D81277E175EABF5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft Manifest number: 0737 Signing time: Sun 21 Dec 2025 23:00:32 +0000 Manifest this update: Sun 21 Dec 2025 23:00:32 +0000 Manifest next update: Mon 22 Dec 2025 23:00:32 +0000 Files and hashes: 1: Ui37pni8yZO_R93Vyy6g6ty1CZs.roa (hash: KVFAYIQrtJyTceCsFbCiblO1P3leUs2Y5nLFzfChjkg=) 2: gnMxRuPp1uEVRjF_dSGeogLF-S0.crl (hash: dRhGiBtSoZQ7+TwkmC4pDhaz+flUujQty4v0fXiAsko=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:24:a2:bc:33:e5:31:fe:1d:81:27:7e:17:5e:ab:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82733146e3e9d6e11546317f75219ea202c5f92d Validity Not Before: Dec 21 23:00:32 2025 GMT Not After : Dec 22 23:00:32 2025 GMT Subject: CN=cb4ae2173452c706d4ddf98932cf229c14e83311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:72:b0:ac:52:26:76:bb:fa:b0:6f:43:69:25: 92:59:da:20:b1:48:15:93:64:9e:83:54:d3:56:37: cd:09:9d:a5:47:6f:79:6c:ed:fd:fb:64:fd:ed:5a: 72:7d:7a:1f:e0:a5:49:4c:41:ae:68:cc:7e:25:ac: 41:46:25:8f:39:ae:14:b6:96:88:31:d6:b4:9b:cf: 19:10:7a:fa:d1:b0:c6:a1:42:11:9e:5c:15:ac:cd: d9:67:de:a0:0c:81:29:71:57:88:3a:94:3e:38:6e: e5:26:fd:1f:b8:c9:be:a0:7b:96:44:03:b0:cd:5b: 5c:95:25:9f:da:13:01:06:47:df:73:eb:53:c5:3f: 4c:a3:32:6d:5b:b3:57:6f:40:7f:ff:4c:7e:b3:f8: 04:6f:4b:6c:6a:59:ae:0f:69:a3:1c:df:3e:b1:4c: 49:d4:4c:15:43:c3:99:36:0c:2d:40:6c:ae:72:bc: db:09:ab:12:a4:9b:28:12:63:2d:5f:cc:60:dd:a3: 79:52:96:d3:9a:2f:a5:b1:f9:7f:0a:70:c2:df:70: 6a:95:b7:26:ef:df:53:28:33:0d:5e:1d:0e:e8:bd: a2:b2:89:01:43:8e:99:65:19:f9:e9:f7:e7:4f:0e: a9:c4:34:1a:bf:fd:7a:19:c6:9c:eb:a9:d3:2b:33: 8f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4A:E2:17:34:52:C7:06:D4:DD:F9:89:32:CF:22:9C:14:E8:33:11 X509v3 Authority Key Identifier: keyid:82:73:31:46:E3:E9:D6:E1:15:46:31:7F:75:21:9E:A2:02:C5:F9:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMxRuPp1uEVRjF_dSGeogLF-S0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/4d5e16-5e65-4ed8-bbe3-bacb028538dc/1/gnMxRuPp1uEVRjF_dSGeogLF-S0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:81:e5:f4:88:ea:89:ef:c8:ba:95:9d:f3:aa:14:a1:7b:69: e3:b2:2e:74:01:27:51:47:4a:54:e0:fa:88:ab:0e:dd:d4:cd: 61:16:65:e7:cc:2d:94:c7:25:99:72:bf:af:4d:18:9f:06:3e: 28:c2:6b:e7:a9:d9:c4:19:48:a8:d8:6b:62:57:e1:ac:3a:2f: 53:ef:1c:27:b3:da:ef:bb:b6:08:fc:a5:fc:0d:de:44:90:24: b9:58:c3:ed:70:ca:73:f1:ab:52:49:f5:70:b5:82:7f:6f:b9: 50:aa:0a:ae:74:ce:3e:60:db:9c:0c:af:3d:17:8e:23:74:de: 43:5a:08:45:42:7a:e6:81:0b:82:45:2d:a4:f7:00:f0:19:6f: 73:46:5d:02:47:21:fe:28:4f:2c:20:10:cd:10:4b:ab:81:ef: 0e:b8:f7:4e:8a:c3:24:d1:22:8f:4a:30:ea:af:2b:02:b8:59: 1c:1c:2e:d6:fa:fd:b6:ee:be:21:f8:70:ca:6f:05:2d:8d:7a: bd:f5:3a:77:0c:04:03:74:e0:f5:c4:17:dc:d0:46:91:28:8b: 14:75:5e:1a:56:1b:e9:2a:61:bb:9d:d7:2f:7f:d5:2d:a5:dc: ac:33:ce:8c:ad:b0:57:0c:4c:83:8a:bf:62:11:aa:e9:74:b9: 96:82:c4:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDJKK8M+Ux/h2BJ34XXqv1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNzMzMTQ2ZTNlOWQ2ZTExNTQ2MzE3Zjc1MjE5ZWEyMDJj NWY5MmQwHhcNMjUxMjIxMjMwMDMyWhcNMjUxMjIyMjMwMDMyWjAzMTEwLwYDVQQD EyhjYjRhZTIxNzM0NTJjNzA2ZDRkZGY5ODkzMmNmMjI5YzE0ZTgzMzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23KwrFImdrv6sG9DaSWSWdogsUgV k2Seg1TTVjfNCZ2lR295bO39+2T97VpyfXof4KVJTEGuaMx+JaxBRiWPOa4UtpaI Mda0m88ZEHr60bDGoUIRnlwVrM3ZZ96gDIEpcVeIOpQ+OG7lJv0fuMm+oHuWRAOw zVtclSWf2hMBBkffc+tTxT9MozJtW7NXb0B//0x+s/gEb0tsalmuD2mjHN8+sUxJ 1EwVQ8OZNgwtQGyucrzbCasSpJsoEmMtX8xg3aN5UpbTmi+lsfl/CnDC33Bqlbcm 799TKDMNXh0O6L2isokBQ46ZZRn56ffnTw6pxDQav/16Gcac66nTKzOPuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMtK4hc0UscG1N35iTLPIpwU6DMRMB8GA1UdIwQY MBaAFIJzMUbj6dbhFUYxf3UhnqICxfktMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS80ZDVlMTYtNWU2NS00ZWQ4LWJiZTMt YmFjYjAyODUzOGRjLzEvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS80ZDVlMTYtNWU2NS00ZWQ4LWJiZTMtYmFjYjAyODUzOGRj LzEvZ25NeFJ1UHAxdUVWUmpGX2RTR2VvZ0xGLVMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOoHl9Ijq ie/IupWd86oUoXtp47IudAEnUUdKVOD6iKsO3dTNYRZl58wtlMclmXK/r00YnwY+ KMJr56nZxBlIqNhrYlfhrDovU+8cJ7Pa77u2CPyl/A3eRJAkuVjD7XDKc/GrUkn1 cLWCf2+5UKoKrnTOPmDbnAyvPReOI3TeQ1oIRUJ65oELgkUtpPcA8Blvc0ZdAkch /ihPLCAQzRBLq4HvDrj3TorDJNEij0ow6q8rArhZHBwu1vr9tu6+Ifhwym8FLY16 vfU6dwwEA3Tg9cQX3NBGkSiLFHVeGlYb6Sphu53XL3/VLaXcrDPOjK2wVwxMg4q/ YhGq6XS5loLECw== -----END CERTIFICATE-----Generated at Mon Dec 22 07:19:01 2025 by rpki-client