This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft File: gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft (raw, json) Hash identifier: ybsWO/F76wvdSHfYrddPLJn51nx2gFOw0lBTjvfwFaw= Subject key identifier: E6:3F:54:E4:BC:68:6E:D7:67:8E:71:27:AD:0F:1C:65:DA:69:42:E3 Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15 Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315 Certificate serial: 019B1BAB27202678D5D7A8CC41152CFFE3D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft Manifest number: 0E88 Signing time: Sun 14 Dec 2025 07:02:40 +0000 Manifest this update: Sun 14 Dec 2025 07:02:40 +0000 Manifest next update: Mon 15 Dec 2025 07:02:40 +0000 Files and hashes: 1: gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl (hash: d+60zH0cKEA8LdbGvXnaZNTmMkIdHcUsuokAouiy51E=) 2: kT72_rs6FeeCr3dDSGrEzG7Qc-Y.roa (hash: aU4YilQ/j5WNVY1Q5u9ZzL1FCZbvOH4ANv0D/Jw9+To=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:ab:27:20:26:78:d5:d7:a8:cc:41:15:2c:ff:e3:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315 Validity Not Before: Dec 14 07:02:40 2025 GMT Not After : Dec 15 07:02:40 2025 GMT Subject: CN=e63f54e4bc686ed7678e7127ad0f1c65da6942e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e9:66:88:73:55:4b:7a:a6:f7:fe:ba:52:f9: a3:b8:a2:d3:3b:fc:d1:70:7a:07:4a:20:1d:22:22: fb:a7:84:19:dd:5f:50:62:a6:93:1d:9c:de:48:33: 5d:83:7e:7b:f3:bd:9e:d6:f4:25:db:47:89:ca:2d: ce:98:7c:7c:7e:7a:c9:4a:86:2a:30:38:83:e3:bd: b5:ca:f9:4e:07:0b:a3:f9:67:8d:84:dd:11:38:aa: 16:f3:2a:5b:9b:51:e5:d2:27:de:6c:ed:30:75:53: 5b:8b:16:e6:73:3b:fa:93:90:e0:1c:64:af:62:5b: f3:41:32:d2:c9:37:94:5f:21:ee:eb:2d:7d:0a:ff: ec:11:0e:a8:7d:8f:61:76:53:04:bb:74:69:35:5d: f0:ab:75:99:9e:54:c8:d1:50:b2:6f:fc:8c:61:40: 0d:f6:4c:e8:26:33:72:0c:c5:a7:b8:36:57:eb:b4: d1:d1:62:ee:29:7e:1f:06:4f:35:fe:1b:b8:16:f6: 86:49:ed:16:3e:31:a4:bc:6e:12:41:a5:dc:86:b5: 71:48:53:7a:8a:78:34:ab:62:bc:92:3b:66:14:22: 43:87:f8:45:57:8a:15:45:44:bb:dc:b7:05:40:f0: 8a:8e:4c:cc:da:60:bd:c9:69:ea:3a:6b:66:9c:b7: 7d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3F:54:E4:BC:68:6E:D7:67:8E:71:27:AD:0F:1C:65:DA:69:42:E3 X509v3 Authority Key Identifier: keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:02:e4:79:61:bd:ed:b6:d7:18:90:d5:54:30:5d:1c:a2:2a: 18:00:3a:00:17:f7:48:8c:7f:12:a1:c1:5c:99:ab:59:48:0f: b4:d7:b4:1b:d5:cc:9e:3e:d7:ee:75:ab:07:32:03:2f:ff:e5: 70:dd:ba:1d:b4:e3:32:6e:27:28:96:09:e7:80:53:78:ae:27: 64:e9:09:57:0c:89:46:85:8b:61:98:88:0b:47:7c:b2:66:93: 1a:fc:56:6a:af:28:1b:e0:53:33:58:2b:66:c6:09:b4:86:0c: 35:cd:9e:47:0e:2a:8f:4a:7a:29:da:d8:50:90:09:87:4f:88: c7:e2:c3:19:cb:2a:be:86:e4:20:26:3e:fb:3a:5d:42:09:79: 49:74:62:8b:48:9d:ea:97:41:08:9c:bd:21:3b:af:d1:f6:9d: f0:5d:64:9d:6b:ae:b5:07:38:14:6d:2f:db:6d:11:47:fa:b8: 2a:a8:ef:f8:e9:7d:52:f6:b9:c0:03:31:15:b3:63:95:8c:0a: aa:7b:94:7b:77:ac:a2:d2:fe:2d:b1:2b:38:14:ca:aa:da:71: f9:28:07:e2:ed:26:30:63:c5:1f:4f:6f:7d:0e:ce:5d:55:91: 4f:b9:95:81:74:3e:1d:78:37:e8:c6:62:c8:61:5d:3b:3c:d3: 17:63:c2:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqycgJnjV16jMQRUs/+PVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwYzAyOGFkMGU2MGQ3ZWE4OTE0YjEzYzNhNTNkOGYwODkx NjAzMTUwHhcNMjUxMjE0MDcwMjQwWhcNMjUxMjE1MDcwMjQwWjAzMTEwLwYDVQQD EyhlNjNmNTRlNGJjNjg2ZWQ3Njc4ZTcxMjdhZDBmMWM2NWRhNjk0MmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+lmiHNVS3qm9/66UvmjuKLTO/zR cHoHSiAdIiL7p4QZ3V9QYqaTHZzeSDNdg357872e1vQl20eJyi3OmHx8fnrJSoYq MDiD4721yvlOBwuj+WeNhN0ROKoW8ypbm1Hl0ifebO0wdVNbixbmczv6k5DgHGSv YlvzQTLSyTeUXyHu6y19Cv/sEQ6ofY9hdlMEu3RpNV3wq3WZnlTI0VCyb/yMYUAN 9kzoJjNyDMWnuDZX67TR0WLuKX4fBk81/hu4FvaGSe0WPjGkvG4SQaXchrVxSFN6 ing0q2K8kjtmFCJDh/hFV4oVRUS73LcFQPCKjkzM2mC9yWnqOmtmnLd9PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOY/VOS8aG7XZ45xJ60PHGXaaULjMB8GA1UdIwQY MBaAFIDAKK0OYNfqiRSxPDpT2PCJFgMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ01Bb3JRNWcxLXFKRkxFOE9sUFk4SWtXQXhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iNWZmNjYtODA3ZC00YmYxLWFiZTkt YTNiNGM5MDAyNDFmLzEvZ01Bb3JRNWcxLXFKRkxFOE9sUFk4SWtXQXhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS9iNWZmNjYtODA3ZC00YmYxLWFiZTktYTNiNGM5MDAyNDFm LzEvZ01Bb3JRNWcxLXFKRkxFOE9sUFk4SWtXQXhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOgLkeWG9 7bbXGJDVVDBdHKIqGAA6ABf3SIx/EqHBXJmrWUgPtNe0G9XMnj7X7nWrBzIDL//l cN26HbTjMm4nKJYJ54BTeK4nZOkJVwyJRoWLYZiIC0d8smaTGvxWaq8oG+BTM1gr ZsYJtIYMNc2eRw4qj0p6KdrYUJAJh0+Ix+LDGcsqvobkICY++zpdQgl5SXRii0id 6pdBCJy9ITuv0fad8F1knWuutQc4FG0v220RR/q4Kqjv+Ol9Uva5wAMxFbNjlYwK qnuUe3esotL+LbErOBTKqtpx+SgH4u0mMGPFH09vfQ7OXVWRT7mVgXQ+HXg36MZi yGFdOzzTF2PCOQ== -----END CERTIFICATE-----Generated at Sun Dec 14 09:35:59 2025 by rpki-client