This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json) Hash identifier: OZUk49uNJkuQnYtVspJtJvzx784uGyBR3Ag3z+p0GtY= Subject key identifier: 6E:F6:13:4E:EC:90:BD:09:54:BA:4E:1A:6E:1E:75:00:5C:A6:98:A7 Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Certificate serial: 019B2174DEBF33AD05200B08BFD4BA1ED92A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft Manifest number: 0555 Signing time: Mon 15 Dec 2025 10:01:05 +0000 Manifest this update: Mon 15 Dec 2025 10:01:05 +0000 Manifest next update: Tue 16 Dec 2025 10:01:05 +0000 Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: DE1DAKBus/CV8jmrsVQ+JZNGjaRahI050CqILL8uqUo=) 2: xVzCoBRTedY1vT9C7xN3NLO-WeY.roa (hash: ystLlP8JPbF13VOw8QCBVAQ5cldgA4v4fXVvBu8BWIc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:74:de:bf:33:ad:05:20:0b:08:bf:d4:ba:1e:d9:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5 Validity Not Before: Dec 15 10:01:05 2025 GMT Not After : Dec 16 10:01:05 2025 GMT Subject: CN=6ef6134eec90bd0954ba4e1a6e1e75005ca698a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:12:20:d4:0b:c0:16:75:df:f3:6e:84:dd:1c: d7:0b:39:56:db:18:2d:75:65:b0:58:61:09:e9:3a: 77:07:be:a0:aa:5e:b3:e9:d7:03:42:52:ff:08:ce: ff:cf:cc:b5:bc:4b:f8:f9:76:a5:4b:f8:54:60:9e: ad:76:81:c3:e5:11:50:d2:88:3e:b9:15:39:e2:9e: 64:3f:0d:97:77:34:46:c6:9a:b7:7d:08:a4:24:10: 9e:67:0d:74:11:af:51:ae:40:44:12:04:50:57:ec: 43:d0:e4:74:fa:a6:9d:67:b9:43:9f:26:84:98:09: 24:64:82:c5:f6:eb:11:46:b2:b2:b6:49:39:a3:72: 72:42:64:32:1c:f1:f7:63:fc:7a:60:8f:b8:2c:d5: a3:10:60:18:9d:98:6c:31:df:83:f7:a3:64:c5:98: 98:52:5e:56:e3:d9:35:70:bd:6b:0e:17:cf:7b:a0: 75:fa:82:6c:03:70:ee:ec:3d:4e:b7:f1:ce:7c:2c: 49:8e:db:8e:ab:90:57:1b:b8:af:15:f7:4f:3c:41: d2:ce:c6:6b:07:ed:a0:98:b7:64:59:a9:6f:6d:15: 96:f8:a3:63:41:c6:28:37:ce:ca:41:a5:ba:38:2d: a1:bb:b4:b7:6c:7e:e9:20:f2:b6:66:fb:3b:2d:db: 53:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F6:13:4E:EC:90:BD:09:54:BA:4E:1A:6E:1E:75:00:5C:A6:98:A7 X509v3 Authority Key Identifier: keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a0:37:cd:78:f0:d6:25:0e:62:83:1c:80:24:79:c3:35:32: 18:f4:6f:b9:3a:1c:a5:04:d5:5a:a4:f1:c0:27:ef:41:15:59: 3f:09:4b:b3:d1:0c:a2:1d:2c:2b:a7:68:c9:5f:ba:54:4f:09: bc:cc:c4:c8:dc:db:82:6d:e9:b7:16:8c:9c:5a:b1:59:3f:2e: 9a:8c:f4:24:49:9e:d8:22:64:d9:56:96:75:ed:e9:1f:a8:0d: c8:27:c9:ce:e1:53:5a:11:a3:b4:fa:a0:9f:47:15:d7:7b:2d: 2a:63:52:7f:e9:7b:f4:1e:75:29:43:c2:dc:e0:ae:6c:4d:44: 7f:25:4d:b2:12:a5:bd:4d:2b:7c:68:d0:39:37:3c:4b:40:40: f0:9a:93:90:72:47:4b:ba:15:6c:bd:aa:f6:e2:36:38:57:91: 03:6a:82:39:a5:c1:21:46:8d:55:d7:82:c5:ab:99:c6:60:9f: 03:43:cf:c8:5f:c5:b1:55:cd:43:f9:6f:95:b1:b0:f4:62:df: a6:a7:7d:cf:b2:6b:88:ae:d7:69:83:24:aa:a9:12:1a:6b:e4: a3:ff:98:6f:4a:4f:49:42:4b:b8:1b:fc:18:8d:49:cc:f0:22: a0:6c:9d:53:08:65:d6:d3:dd:e3:37:eb:12:8b:f0:a4:16:23: 91:ca:90:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshdN6/M60FIAsIv9S6HtkqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwYzdiM2RlOTZiOTFlZGM2ZTljODVkOWQ1YTY2ODQxOTIw M2I1ZjUwHhcNMjUxMjE1MTAwMTA1WhcNMjUxMjE2MTAwMTA1WjAzMTEwLwYDVQQD Eyg2ZWY2MTM0ZWVjOTBiZDA5NTRiYTRlMWE2ZTFlNzUwMDVjYTY5OGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohIg1AvAFnXf826E3RzXCzlW2xgt dWWwWGEJ6Tp3B76gql6z6dcDQlL/CM7/z8y1vEv4+XalS/hUYJ6tdoHD5RFQ0og+ uRU54p5kPw2XdzRGxpq3fQikJBCeZw10Ea9RrkBEEgRQV+xD0OR0+qadZ7lDnyaE mAkkZILF9usRRrKytkk5o3JyQmQyHPH3Y/x6YI+4LNWjEGAYnZhsMd+D96NkxZiY Ul5W49k1cL1rDhfPe6B1+oJsA3Du7D1Ot/HOfCxJjtuOq5BXG7ivFfdPPEHSzsZr B+2gmLdkWalvbRWW+KNjQcYoN87KQaW6OC2hu7S3bH7pIPK2Zvs7LdtT/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG72E07skL0JVLpOGm4edQBcppinMB8GA1UdIwQY MBaAFIDHs96WuR7cbpyF2dWmaEGSA7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDct YTdmY2ZiNTI5ZGM3LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDctYTdmY2ZiNTI5ZGM3 LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHqA3zXjw 1iUOYoMcgCR5wzUyGPRvuTocpQTVWqTxwCfvQRVZPwlLs9EMoh0sK6doyV+6VE8J vMzEyNzbgm3ptxaMnFqxWT8umoz0JEme2CJk2VaWde3pH6gNyCfJzuFTWhGjtPqg n0cV13stKmNSf+l79B51KUPC3OCubE1EfyVNshKlvU0rfGjQOTc8S0BA8JqTkHJH S7oVbL2q9uI2OFeRA2qCOaXBIUaNVdeCxauZxmCfA0PPyF/FsVXNQ/lvlbGw9GLf pqd9z7JriK7XaYMkqqkSGmvko/+Yb0pPSUJLuBv8GI1JzPAioGydUwhl1tPd4zfr EovwpBYjkcqQyA== -----END CERTIFICATE-----Generated at Mon Dec 15 16:52:40 2025 by rpki-client