This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft File: gwI7OXBbNFqG7_PxTvax5NtFk54.mft (raw, json) Hash identifier: Ym/VOpEhL8gXpEtN9FcCFjBikjsJ17GWcR0TD3EuQkI= Subject key identifier: 31:F0:EB:8F:34:2F:BD:5E:40:1D:1E:82:0C:EB:0D:7F:84:8E:49:C4 Authority key identifier: 83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E Certificate issuer: /CN=83023b39705b345a86eff3f14ef6b1e4db45939e Certificate serial: 019AF164325F0A13B409D62579BAB895956E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft Manifest number: 0FF8 Signing time: Sat 06 Dec 2025 02:01:06 +0000 Manifest this update: Sat 06 Dec 2025 02:01:06 +0000 Manifest next update: Sun 07 Dec 2025 02:01:06 +0000 Files and hashes: 1: 1-xAAXQxUbK7GDdH6uCkdwm9GcKQ.roa (hash: 4wGfnneRjqqcoqI8J1mtTnFBuWzrhvTfIpD3nl/XM2s=) 2: gwI7OXBbNFqG7_PxTvax5NtFk54.crl (hash: lLXcCxg+wjlMDYF+hijiuLM8eZpwuIdam/KhhvRWieo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:32:5f:0a:13:b4:09:d6:25:79:ba:b8:95:95:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83023b39705b345a86eff3f14ef6b1e4db45939e Validity Not Before: Dec 6 02:01:06 2025 GMT Not After : Dec 7 02:01:06 2025 GMT Subject: CN=31f0eb8f342fbd5e401d1e820ceb0d7f848e49c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c3:21:97:50:28:8a:c1:5a:5b:60:22:77:ae: 74:d3:5a:4b:65:92:40:1a:d3:b1:ae:b1:a0:f3:5e: f8:6c:82:0f:f7:1e:e7:8b:ef:b3:90:47:66:4f:e3: 68:7a:a6:6a:84:8e:1f:0a:2b:19:87:bc:cc:55:c9: 7f:8e:ac:74:39:96:95:4a:9d:d5:66:f6:8f:7e:4c: 06:5f:c9:13:25:79:ef:d8:7a:bd:b6:5a:7f:88:19: f1:76:72:4b:82:32:99:1e:c4:31:48:e1:c3:ed:34: 6f:fd:b9:d8:cf:d1:aa:d5:c5:14:df:a7:3f:65:d4: 8a:f0:02:84:c5:f1:1a:c9:df:38:6d:3e:48:05:09: 6f:85:90:62:9b:43:94:01:ea:3e:e7:d7:22:0e:fd: ab:d7:65:4b:0c:2e:eb:22:b0:3c:2b:a5:5d:7d:29: 01:44:e4:9b:9d:ea:0a:20:e3:ec:15:8b:7e:a3:dd: 01:a6:79:eb:2a:e2:6f:59:5c:7f:ab:f2:cd:eb:f2: a6:0f:a4:c0:c4:c7:ae:09:30:3d:29:a7:08:bc:2e: 41:c7:13:5e:0e:b3:89:b4:db:05:39:7f:ca:cc:11: f3:1f:e9:6b:13:97:ae:27:22:10:e0:6f:eb:4f:2d: 62:84:c2:8b:83:9c:da:c3:db:4e:52:c7:5a:9a:cf: 03:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:F0:EB:8F:34:2F:BD:5E:40:1D:1E:82:0C:EB:0D:7F:84:8E:49:C4 X509v3 Authority Key Identifier: keyid:83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:46:77:30:3d:e3:3e:d3:7e:37:aa:0d:82:b5:7b:93:93:81: 79:bb:7f:77:3c:59:e0:91:ec:85:2a:06:fa:f2:46:bd:0f:bc: 94:db:c4:51:03:42:f0:b8:a0:fc:07:c5:c4:f2:7c:8e:b4:fc: 78:2f:1f:da:46:98:36:fe:9d:e0:dc:ac:5b:35:01:bf:97:aa: c1:0a:6e:b7:e9:e5:bd:5e:b7:06:7d:57:bd:f9:90:ce:b3:3a: 79:90:12:87:b8:fa:de:d6:df:7b:8b:0e:79:90:f0:4b:57:40: 15:75:8f:0a:97:6b:55:06:13:61:81:56:36:aa:c7:e6:6e:58: 9d:16:eb:12:b2:a4:2d:c4:e6:4d:b6:94:0c:8f:a4:f5:b7:56: 14:00:66:38:76:ce:06:bf:e3:0f:fb:f4:76:23:68:21:1c:53: 37:6b:71:0b:8d:85:fe:16:bc:4b:49:01:b1:1e:24:72:29:a3: 89:f1:50:b7:80:80:24:3e:10:df:50:05:35:7a:4e:75:7e:72: fe:04:1f:af:cc:f3:5b:0c:f8:f9:7e:ac:5f:a2:fc:c1:69:90: 7d:a0:10:4d:d7:3c:ed:08:53:f1:f1:05:a3:a2:2f:33:36:85: 45:b2:18:5a:f8:b7:4c:c8:83:00:a9:23:35:16:96:d1:a3:7e: 40:64:58:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZDJfChO0CdYlebq4lZVuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMDIzYjM5NzA1YjM0NWE4NmVmZjNmMTRlZjZiMWU0ZGI0 NTkzOWUwHhcNMjUxMjA2MDIwMTA2WhcNMjUxMjA3MDIwMTA2WjAzMTEwLwYDVQQD EygzMWYwZWI4ZjM0MmZiZDVlNDAxZDFlODIwY2ViMGQ3Zjg0OGU0OWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsMhl1AoisFaW2Aid65001pLZZJA GtOxrrGg8174bIIP9x7ni++zkEdmT+NoeqZqhI4fCisZh7zMVcl/jqx0OZaVSp3V ZvaPfkwGX8kTJXnv2Hq9tlp/iBnxdnJLgjKZHsQxSOHD7TRv/bnYz9Gq1cUU36c/ ZdSK8AKExfEayd84bT5IBQlvhZBim0OUAeo+59ciDv2r12VLDC7rIrA8K6VdfSkB ROSbneoKIOPsFYt+o90BpnnrKuJvWVx/q/LN6/KmD6TAxMeuCTA9KacIvC5BxxNe DrOJtNsFOX/KzBHzH+lrE5euJyIQ4G/rTy1ihMKLg5zaw9tOUsdams8DJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDHw6480L71eQB0eggzrDX+EjknEMB8GA1UdIwQY MBaAFIMCOzlwWzRahu/z8U72seTbRZOeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3dJN09YQmJORnFHN19QeFR2YXg1TnRGazU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hZTMwNDItY2E5OC00ZGRhLTk1YTYt M2I4ZmJmZmY1MzQyLzEvZ3dJN09YQmJORnFHN19QeFR2YXg1TnRGazU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hZTMwNDItY2E5OC00ZGRhLTk1YTYtM2I4ZmJmZmY1MzQy LzEvZ3dJN09YQmJORnFHN19QeFR2YXg1TnRGazU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsEZ3MD3j PtN+N6oNgrV7k5OBebt/dzxZ4JHshSoG+vJGvQ+8lNvEUQNC8Lig/AfFxPJ8jrT8 eC8f2kaYNv6d4NysWzUBv5eqwQput+nlvV63Bn1XvfmQzrM6eZASh7j63tbfe4sO eZDwS1dAFXWPCpdrVQYTYYFWNqrH5m5YnRbrErKkLcTmTbaUDI+k9bdWFABmOHbO Br/jD/v0diNoIRxTN2txC42F/ha8S0kBsR4kcimjifFQt4CAJD4Q31AFNXpOdX5y /gQfr8zzWwz4+X6sX6L8wWmQfaAQTdc87QhT8fEFo6IvMzaFRbIYWvi3TMiDAKkj NRaW0aN+QGRYDg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:23:29 2025 by rpki-client