This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json) Hash identifier: f9Fe2Ik64onnyRppeft5wkyBP6ez7zyhFr9izOdl194= Subject key identifier: 7C:50:D7:A7:4F:15:B8:A8:E0:EE:67:3F:35:6B:85:0F:A4:05:0E:34 Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Certificate serial: 019B1125B8C2E4B42E2E181946A11E8C3C21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft Manifest number: 0E20 Signing time: Fri 12 Dec 2025 06:00:43 +0000 Manifest this update: Fri 12 Dec 2025 06:00:43 +0000 Manifest next update: Sat 13 Dec 2025 06:00:43 +0000 Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: 8pUB7+fmAv82WYZEfBqypOaN1jO6bcuGtiIvm7ztIA0=) 2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=) 3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=) 4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=) 5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:25:b8:c2:e4:b4:2e:2e:18:19:46:a1:1e:8c:3c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Validity Not Before: Dec 12 06:00:43 2025 GMT Not After : Dec 13 06:00:43 2025 GMT Subject: CN=7c50d7a74f15b8a8e0ee673f356b850fa4050e34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:c4:2b:94:1f:81:74:7f:dc:6d:3c:53:d5:68: 42:2a:53:ef:0f:dc:e5:45:06:7b:3d:53:d6:a3:ff: f2:b2:44:23:e3:c8:fa:41:7c:90:0f:fd:29:34:6a: 1f:54:a3:3f:15:9b:05:e9:67:eb:cb:5c:fc:76:57: f1:f6:5a:4f:5e:17:9a:1d:d6:a9:cd:e7:a4:78:03: e4:bc:62:30:c7:b2:2d:2f:82:23:fc:22:45:1a:94: d4:ee:a1:7c:da:d5:6e:56:5f:5d:af:b2:d8:62:1b: 8e:ce:0a:c8:08:da:29:f0:11:c0:c8:f2:76:34:89: e9:f8:9d:94:43:95:03:4e:ec:6f:b7:61:ce:be:d5: 91:ff:79:b7:02:c5:6b:7b:8a:ea:42:15:b0:76:6c: 07:fc:35:fe:7b:91:a0:0f:63:4a:03:d8:80:1c:bc: ae:25:e1:e1:96:14:ce:92:b1:7f:30:b6:d7:6d:59: 0b:78:0e:48:fb:6b:d9:a8:bd:ab:da:a4:25:80:be: a8:01:52:6e:3f:42:f5:d2:68:de:4d:1f:75:77:df: 7f:66:da:fa:a4:72:15:57:20:01:3a:f6:f3:a0:04: a5:7f:6c:c1:55:11:c6:77:af:8d:76:b5:2d:fc:c0: 9f:34:41:65:ed:fd:c5:6d:4f:a5:fa:fc:6c:2e:22: 1f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:50:D7:A7:4F:15:B8:A8:E0:EE:67:3F:35:6B:85:0F:A4:05:0E:34 X509v3 Authority Key Identifier: keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:31:8a:a8:1c:09:a1:74:ce:07:9f:80:cd:24:53:46:e8:54: 71:36:2f:72:36:ec:ae:e6:79:f9:3d:60:24:7d:53:b6:ee:d5: d2:d5:64:21:72:78:39:d8:fc:aa:bf:81:68:ea:13:29:c1:5c: e7:64:84:2e:6a:7a:34:36:9b:6e:33:14:df:dd:7c:9a:9a:2a: f3:3c:7e:b5:a8:51:47:a5:16:c4:b3:14:fb:00:51:d9:3a:25: 9a:88:7d:80:d0:3f:b6:d1:09:9e:ae:b9:59:ba:be:f7:7a:56: 52:82:a1:b2:5f:e6:b7:f8:cd:0b:4f:25:35:d8:d2:cc:8a:7a: 24:6c:24:8f:89:50:50:b5:ed:53:52:eb:b0:91:c3:84:91:03: 09:3f:6a:ab:7a:1d:75:06:fa:8d:48:eb:05:7b:e0:85:7a:a5: e0:c5:45:70:cd:2f:7d:87:0e:96:12:50:0b:d8:58:b0:6f:eb: c8:ed:e3:b3:4e:5c:19:1e:08:11:d0:c3:ea:70:c3:c8:7c:c1: ad:c8:46:dc:5b:0d:a0:fe:92:9b:2d:7b:5d:6c:f8:20:e8:c1: 07:a3:44:df:7b:08:40:39:70:2f:86:44:4e:7c:d5:28:7e:fe: be:5a:b3:4c:96:ec:23:74:8e:b9:f2:c9:27:5a:d9:dd:4f:ae: e4:54:57:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRJbjC5LQuLhgZRqEejDwhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNjFhMjkyMjIzYWQ5YWViYzhhZDgyYzJhNTY0NzVmYmQ5 N2E4MzQwHhcNMjUxMjEyMDYwMDQzWhcNMjUxMjEzMDYwMDQzWjAzMTEwLwYDVQQD Eyg3YzUwZDdhNzRmMTViOGE4ZTBlZTY3M2YzNTZiODUwZmE0MDUwZTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg8QrlB+BdH/cbTxT1WhCKlPvD9zl RQZ7PVPWo//yskQj48j6QXyQD/0pNGofVKM/FZsF6Wfry1z8dlfx9lpPXheaHdap zeekeAPkvGIwx7ItL4Ij/CJFGpTU7qF82tVuVl9dr7LYYhuOzgrICNop8BHAyPJ2 NInp+J2UQ5UDTuxvt2HOvtWR/3m3AsVre4rqQhWwdmwH/DX+e5GgD2NKA9iAHLyu JeHhlhTOkrF/MLbXbVkLeA5I+2vZqL2r2qQlgL6oAVJuP0L10mjeTR91d99/Ztr6 pHIVVyABOvbzoASlf2zBVRHGd6+NdrUt/MCfNEFl7f3FbU+l+vxsLiIfLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxQ16dPFbio4O5nPzVrhQ+kBQ40MB8GA1UdIwQY MBaAFN9hopIiOtmuvIrYLCpWR1+9l6g0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYt NDE0ODdmNGQ0MTcxLzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYtNDE0ODdmNGQ0MTcx LzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUTGKqBwJ oXTOB5+AzSRTRuhUcTYvcjbsruZ5+T1gJH1Ttu7V0tVkIXJ4Odj8qr+BaOoTKcFc 52SELmp6NDabbjMU3918mpoq8zx+tahRR6UWxLMU+wBR2Tolmoh9gNA/ttEJnq65 Wbq+93pWUoKhsl/mt/jNC08lNdjSzIp6JGwkj4lQULXtU1LrsJHDhJEDCT9qq3od dQb6jUjrBXvghXql4MVFcM0vfYcOlhJQC9hYsG/ryO3js05cGR4IEdDD6nDDyHzB rchG3FsNoP6Smy17XWz4IOjBB6NE33sIQDlwL4ZETnzVKH7+vlqzTJbsI3SOufLJ J1rZ3U+u5FRXww== -----END CERTIFICATE-----Generated at Fri Dec 12 09:24:29 2025 by rpki-client