This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft File: grLg0A3Xcank1gu_S-UhFOp32wM.mft (raw, json) Hash identifier: DJwY/S4S7oKPK/rU7ei9/qGhLFJNb7bqJ7iI6gOMpSk= Subject key identifier: 6A:3B:B1:AC:82:98:6D:D3:A7:E0:8A:23:78:4E:6A:57:15:94:B7:48 Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03 Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03 Certificate serial: 019B59AC7E397AA0D1598753CAFF76477CF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft Manifest number: 0D13 Signing time: Fri 26 Dec 2025 08:00:35 +0000 Manifest this update: Fri 26 Dec 2025 08:00:35 +0000 Manifest next update: Sat 27 Dec 2025 08:00:35 +0000 Files and hashes: 1: 5GAvl6a2LhO40IHXb3FEQRL43dI.roa (hash: /6XSNGfrUMapG8xHohOBC097pXOO/8yE7oieep3PnkA=) 2: UEpNb3wmOOdCK7UvN3lXTC2DcUk.roa (hash: pmS4hRe0q9ReL0MLHSlxbOJsASxbtpyjkGhM1kcVhvc=) 3: grLg0A3Xcank1gu_S-UhFOp32wM.crl (hash: bKOOLfk9h/L87wg1y3lUEdBP18sXzcd6ifStxBq0pJA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 08:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:7e:39:7a:a0:d1:59:87:53:ca:ff:76:47:7c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03 Validity Not Before: Dec 26 08:00:35 2025 GMT Not After : Dec 27 08:00:35 2025 GMT Subject: CN=6a3bb1ac82986dd3a7e08a23784e6a571594b748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:49:d4:3e:a3:bb:b5:16:c2:d2:56:57:b1:6b: 3d:76:8d:d1:d4:2e:c3:e9:3a:f8:d0:4d:6a:87:54: 77:8d:dd:fa:fb:49:59:0c:7f:62:ed:8c:75:e9:2c: 50:4e:ae:c0:90:13:3a:46:3b:ac:9e:65:d1:d3:fa: 66:4b:4e:30:ef:47:b2:28:b0:57:7b:04:2e:7d:e0: 51:dd:2c:d0:78:38:e0:f3:85:d1:12:a2:18:c3:4c: 1e:7b:39:e6:6b:4b:2a:5a:cb:c2:2c:e1:6a:c0:80: 23:63:21:57:e1:32:50:e9:17:9a:a4:24:9c:c8:32: 76:81:0a:86:34:02:76:9e:ec:97:31:d9:62:d7:41: f8:7c:79:32:a4:0f:f1:65:61:54:cb:56:8c:94:6b: ad:5f:3c:b1:33:6f:2a:83:fb:cb:bb:85:56:ef:57: eb:fb:bb:a2:d4:e4:61:a6:c5:e7:77:53:a9:db:5a: ba:a5:bb:d0:54:0d:20:d4:4e:10:7a:7c:68:ab:3b: ac:9b:fa:43:aa:fc:e7:da:8f:6c:2c:3d:46:4d:68: 50:c7:d9:ba:b5:0c:07:ed:42:20:d3:fa:c6:83:05: 3c:87:73:66:e2:d3:18:c7:2e:b0:4c:f4:79:a4:59: 3e:28:60:ef:3c:9b:d7:0d:8f:58:3f:f3:11:44:af: 23:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3B:B1:AC:82:98:6D:D3:A7:E0:8A:23:78:4E:6A:57:15:94:B7:48 X509v3 Authority Key Identifier: keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c6:b9:c7:3b:ad:20:ac:ca:41:18:02:ca:1a:f5:7a:bc:dd: 91:b8:6c:75:a6:90:46:6f:ba:be:d0:df:ea:81:10:39:6c:d7: 1f:0c:f5:4a:25:27:a4:5a:96:da:81:5e:f5:12:3c:e5:2e:a7: fa:38:d0:3a:4c:39:d5:dd:50:6c:3c:82:bb:e8:58:8a:13:a0: 94:88:66:35:13:45:7c:be:7b:3f:59:bf:8a:60:77:ad:fe:58: bf:24:ab:df:fb:1c:50:87:31:fb:15:28:5f:06:d0:11:13:71: 3e:a1:6f:f6:4d:70:e2:ee:b5:49:49:7c:4b:48:a6:a1:d0:92: 62:d9:0d:4f:aa:3a:92:40:e7:f4:a2:a3:73:0d:d3:29:c0:2b: 05:8e:75:22:d4:d0:f1:16:88:31:7d:ff:e2:d1:fc:5a:67:9c: 15:d5:7b:3f:3e:cb:ac:6e:2b:33:63:95:6a:a5:93:48:e5:fa: 73:6b:fb:4e:52:0c:c7:fe:2b:92:1c:a3:c6:e1:dd:de:e1:69: d8:e8:7a:38:9e:3a:2d:3b:61:5f:09:7a:04:ea:82:04:f1:11: a2:79:79:bf:c6:88:e7:f8:04:8e:a0:9e:59:47:ae:3b:d8:20: 02:bc:e3:70:ef:d1:17:e4:d5:fb:e2:b2:63:e4:13:35:ce:1a: a2:29:55:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrH45eqDRWYdTyv92R3z2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYjJlMGQwMGRkNzcxYTllNGQ2MGJiZjRiZTUyMTE0ZWE3 N2RiMDMwHhcNMjUxMjI2MDgwMDM1WhcNMjUxMjI3MDgwMDM1WjAzMTEwLwYDVQQD Eyg2YTNiYjFhYzgyOTg2ZGQzYTdlMDhhMjM3ODRlNmE1NzE1OTRiNzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0nUPqO7tRbC0lZXsWs9do3R1C7D 6Tr40E1qh1R3jd36+0lZDH9i7Yx16SxQTq7AkBM6RjusnmXR0/pmS04w70eyKLBX ewQufeBR3SzQeDjg84XREqIYw0weeznma0sqWsvCLOFqwIAjYyFX4TJQ6ReapCSc yDJ2gQqGNAJ2nuyXMdli10H4fHkypA/xZWFUy1aMlGutXzyxM28qg/vLu4VW71fr +7ui1ORhpsXnd1Op21q6pbvQVA0g1E4Qenxoqzusm/pDqvzn2o9sLD1GTWhQx9m6 tQwH7UIg0/rGgwU8h3Nm4tMYxy6wTPR5pFk+KGDvPJvXDY9YP/MRRK8jEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGo7sayCmG3Tp+CKI3hOalcVlLdIMB8GA1UdIwQY MBaAFIKy4NAN13Gp5NYLv0vlIRTqd9sDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3JMZzBBM1hjYW5rMWd1X1MtVWhGT3AzMndNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8zNzk0YjEtY2E3Zi00YTU3LThiN2It MDZkM2M0ZTYzYzIwLzEvZ3JMZzBBM1hjYW5rMWd1X1MtVWhGT3AzMndNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8zNzk0YjEtY2E3Zi00YTU3LThiN2ItMDZkM2M0ZTYzYzIw LzEvZ3JMZzBBM1hjYW5rMWd1X1MtVWhGT3AzMndNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjMa5xzut IKzKQRgCyhr1erzdkbhsdaaQRm+6vtDf6oEQOWzXHwz1SiUnpFqW2oFe9RI85S6n +jjQOkw51d1QbDyCu+hYihOglIhmNRNFfL57P1m/imB3rf5YvySr3/scUIcx+xUo XwbQERNxPqFv9k1w4u61SUl8S0imodCSYtkNT6o6kkDn9KKjcw3TKcArBY51ItTQ 8RaIMX3/4tH8WmecFdV7Pz7LrG4rM2OVaqWTSOX6c2v7TlIMx/4rkhyjxuHd3uFp 2Oh6OJ46LTthXwl6BOqCBPERonl5v8aI5/gEjqCeWUeuO9ggArzjcO/RF+TV++Ky Y+QTNc4aoilVlA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:56 2025 by rpki-client