This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json) Hash identifier: 8PJPACYQauEDQBjpJ1UX5baSbQJwnJ266PgxQl4rms4= Subject key identifier: D0:CF:CC:EC:04:37:0C:36:2A:8D:3B:70:D3:D6:67:95:23:AF:C7:CC Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Certificate serial: 019B0E262867427E2A3368F5A94E77B34CAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft Manifest number: 054B Signing time: Thu 11 Dec 2025 16:02:20 +0000 Manifest this update: Thu 11 Dec 2025 16:02:20 +0000 Manifest next update: Fri 12 Dec 2025 16:02:20 +0000 Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: gHzJnNdjyraPPBXQ2Y/SSnF2khLX48whtz7T/CYKC/M=) 2: xVzCoBRTedY1vT9C7xN3NLO-WeY.roa (hash: ystLlP8JPbF13VOw8QCBVAQ5cldgA4v4fXVvBu8BWIc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:26:28:67:42:7e:2a:33:68:f5:a9:4e:77:b3:4c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Validity Not Before: Dec 11 16:02:20 2025 GMT Not After : Dec 12 16:02:20 2025 GMT Subject: CN=d0cfccec04370c362a8d3b70d3d6679523afc7cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:46:55:ce:ab:09:74:c6:47:7d:79:6c:5d:17: f2:82:af:73:b5:bf:b1:a3:13:ff:30:e7:90:43:7f: c7:e4:c2:48:7e:21:85:b6:44:c2:50:db:b6:f4:22: 35:e7:64:95:fb:ab:60:04:16:17:cc:ee:9d:f4:55: 64:92:1a:86:5f:fa:c9:42:c4:ef:78:71:d8:20:64: 5b:e0:5f:08:fc:18:2b:96:16:01:ab:27:9e:b9:91: 3c:4b:18:98:2a:e9:e9:a5:07:bf:b4:90:40:44:75: a5:95:98:9b:31:37:4a:de:36:a5:39:96:6e:e0:17: 62:76:32:b6:a1:50:85:34:11:83:95:f1:77:3d:8a: 60:fe:02:7e:21:09:22:7a:40:60:af:7a:a2:b4:0e: 2e:76:00:63:17:71:2b:84:28:27:7b:0a:fe:fa:66: 22:c4:05:9e:aa:10:22:97:cf:24:ea:44:11:be:c8: 89:3c:6d:0c:98:66:04:f1:96:6e:9e:0f:3e:90:16: a2:95:d8:10:39:94:c4:a2:23:c7:15:e6:20:77:73: 1e:e4:0a:fa:f4:5d:48:9c:ff:1e:61:f4:2e:7d:80: 89:55:ca:18:ff:0c:34:cd:d0:62:ac:2e:7d:47:d5: e5:e6:c1:da:7d:4e:84:60:d8:02:f7:9e:2a:0d:9f: 38:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CF:CC:EC:04:37:0C:36:2A:8D:3B:70:D3:D6:67:95:23:AF:C7:CC X509v3 Authority Key Identifier: keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5d:bb:19:06:70:e1:09:97:cf:38:ac:f2:0e:a0:92:91:94: 64:bf:a4:b3:8d:95:97:38:69:fd:e1:f1:49:ca:90:2c:c8:36: 5c:14:00:a3:80:67:87:a6:fd:ab:0d:a8:3c:23:b0:85:e8:d2: 2e:2e:25:a4:c6:48:79:e2:7f:9e:93:e7:b9:84:5e:23:b5:78: 8a:61:8f:58:48:79:e0:59:9b:63:49:f7:54:cc:8f:cd:55:dd: cb:58:fa:4e:27:dc:08:e1:4c:9a:b5:24:5a:cd:cd:b5:13:95: ec:6b:cd:10:bc:2f:13:7b:9f:03:40:b0:2f:ed:0b:33:de:1e: 89:c5:d9:90:16:00:a8:c4:c6:2c:e7:e7:d3:b3:70:f3:ab:10: c6:9a:1d:4d:c0:3b:03:d7:13:92:5a:f5:c8:2e:a5:12:f0:98: 20:ac:a7:7a:8f:f1:c4:4a:a4:59:b8:fa:4f:f4:ab:b4:83:3d: f4:ee:ad:49:aa:91:1a:02:65:d2:3c:3c:01:e8:59:cc:d9:b0: 8d:70:bb:0d:a9:06:98:5f:7a:5a:f4:b5:2e:d2:b3:b9:0c:c3: ba:d8:c2:49:d9:a5:af:8b:0f:71:76:b8:fe:13:7d:ed:f1:a3: 3a:ff:b1:9a:c9:fe:69:21:ca:7b:59:89:d0:9a:a8:da:b3:25: 95:de:c1:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJihnQn4qM2j1qU53s0yqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwYzdiM2RlOTZiOTFlZGM2ZTljODVkOWQ1YTY2ODQxOTIw M2I1ZjUwHhcNMjUxMjExMTYwMjIwWhcNMjUxMjEyMTYwMjIwWjAzMTEwLwYDVQQD EyhkMGNmY2NlYzA0MzcwYzM2MmE4ZDNiNzBkM2Q2Njc5NTIzYWZjN2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkZVzqsJdMZHfXlsXRfygq9ztb+x oxP/MOeQQ3/H5MJIfiGFtkTCUNu29CI152SV+6tgBBYXzO6d9FVkkhqGX/rJQsTv eHHYIGRb4F8I/BgrlhYBqyeeuZE8SxiYKunppQe/tJBARHWllZibMTdK3jalOZZu 4BdidjK2oVCFNBGDlfF3PYpg/gJ+IQkiekBgr3qitA4udgBjF3ErhCgnewr++mYi xAWeqhAil88k6kQRvsiJPG0MmGYE8ZZung8+kBaildgQOZTEoiPHFeYgd3Me5Ar6 9F1InP8eYfQufYCJVcoY/ww0zdBirC59R9Xl5sHafU6EYNgC954qDZ84lQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDPzOwENww2Ko07cNPWZ5Ujr8fMMB8GA1UdIwQY MBaAFIDHs96WuR7cbpyF2dWmaEGSA7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDct YTdmY2ZiNTI5ZGM3LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDctYTdmY2ZiNTI5ZGM3 LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXF27GQZw 4QmXzzis8g6gkpGUZL+ks42Vlzhp/eHxScqQLMg2XBQAo4Bnh6b9qw2oPCOwhejS Li4lpMZIeeJ/npPnuYReI7V4imGPWEh54FmbY0n3VMyPzVXdy1j6TifcCOFMmrUk Ws3NtROV7GvNELwvE3ufA0CwL+0LM94eicXZkBYAqMTGLOfn07Nw86sQxpodTcA7 A9cTklr1yC6lEvCYIKyneo/xxEqkWbj6T/SrtIM99O6tSaqRGgJl0jw8AehZzNmw jXC7DakGmF96WvS1LtKzuQzDutjCSdmlr4sPcXa4/hN97fGjOv+xmsn+aSHKe1mJ 0Jqo2rMlld7Bng== -----END CERTIFICATE-----Generated at Thu Dec 11 19:02:11 2025 by rpki-client