This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft File: gTpCg40uRe1drUEUYG2XKaZQHSM.mft (raw, json) Hash identifier: cm/lrtupegusbYYAP1ooYCSwhpSQmy6gm3jvHr63mUY= Subject key identifier: 00:A0:98:2C:B1:1E:E6:2B:6B:93:CE:D9:D4:82:43:FA:4E:9E:1F:08 Authority key identifier: 81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23 Certificate issuer: /CN=813a42838d2e45ed5dad4114606d9729a6501d23 Certificate serial: 019AF19BBED41B5B6FAFAFD0094F3DF54CCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft Manifest number: 0FC0 Signing time: Sat 06 Dec 2025 03:01:47 +0000 Manifest this update: Sat 06 Dec 2025 03:01:47 +0000 Manifest next update: Sun 07 Dec 2025 03:01:47 +0000 Files and hashes: 1: gTpCg40uRe1drUEUYG2XKaZQHSM.crl (hash: PMbhUTvsDa4IVvv36YxwrGu8nu5IijcB6tPj2rRG2UQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:be:d4:1b:5b:6f:af:af:d0:09:4f:3d:f5:4c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=813a42838d2e45ed5dad4114606d9729a6501d23 Validity Not Before: Dec 6 03:01:47 2025 GMT Not After : Dec 7 03:01:47 2025 GMT Subject: CN=00a0982cb11ee62b6b93ced9d48243fa4e9e1f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fd:57:61:89:89:9d:c2:69:b6:6e:1a:9f:27: 5b:54:b2:6b:f1:3c:00:19:71:49:d2:8a:4d:74:3b: f5:7a:d7:9e:6e:4b:30:92:0f:d9:2c:e5:62:44:da: ab:c9:54:e3:31:7f:53:7b:ed:48:03:b9:c4:03:a3: e0:02:a0:2f:95:13:69:f2:1b:7e:6c:2b:ed:ac:1c: a5:5e:03:66:fb:f2:42:14:45:64:01:77:c1:63:50: 09:94:cd:f6:7b:23:f2:78:1a:a9:7c:2b:d7:d3:45: 35:45:dc:0e:79:bd:e7:93:eb:5d:10:2f:75:cf:77: de:0b:0d:f3:9e:03:d0:04:71:07:e7:f7:9f:73:aa: ef:0c:82:0e:0d:7f:32:9f:6a:9e:53:02:de:c3:13: 4c:52:e8:a9:60:96:c4:56:a0:6b:cb:0d:a5:fa:5d: bf:9c:b3:7c:2a:fa:72:71:58:2e:26:65:76:eb:32: 81:e9:bd:af:ff:4d:9e:f5:75:dc:1d:06:be:59:b0: 7f:64:9a:00:45:9b:30:e9:03:27:dc:ec:ca:b9:07: d2:a4:e4:af:04:e4:80:f4:8f:9d:69:c1:03:82:9b: f8:c8:0b:f8:87:f2:3b:1d:25:fb:d2:f3:ba:97:fa: af:f9:61:03:fa:b8:fc:61:1d:42:33:c3:a6:80:74: cd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A0:98:2C:B1:1E:E6:2B:6B:93:CE:D9:D4:82:43:FA:4E:9E:1F:08 X509v3 Authority Key Identifier: keyid:81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:13:0f:7b:ed:83:92:77:9a:ab:06:7b:0f:50:32:54:01:92: 58:25:3e:9e:ff:ad:e5:36:d3:59:10:24:85:25:49:1c:c7:be: 31:7f:a9:7c:b3:70:6d:e3:ba:39:ad:5d:da:63:67:c0:61:70: e9:b5:cf:3a:c7:9e:74:cf:d7:67:88:0d:ac:94:6a:78:02:82: b2:40:41:7f:aa:9b:9e:94:72:3e:d9:ad:6c:c1:f0:f2:7a:5f: 06:eb:0f:af:8e:11:dd:56:92:10:8a:18:10:4e:6f:56:3d:d3: 06:32:e4:48:ac:86:2d:ed:33:ff:fe:c5:d0:1c:06:62:ff:ca: b0:90:f4:89:32:1f:70:bc:05:9d:28:4b:e2:10:5d:a7:36:76: 59:43:85:81:06:ac:12:b1:d0:14:e1:c9:b9:bb:fe:0d:9f:bc: 4d:82:23:b7:a6:70:2e:b3:e0:3a:7d:79:97:13:27:e1:ee:9b: a8:02:98:cf:d1:99:1a:8b:64:7c:97:27:f8:39:ac:a6:2e:02: 24:61:e3:47:eb:01:8c:34:1d:db:aa:0d:db:94:d8:ff:32:7c: 66:29:17:e0:5a:70:ed:d7:fa:38:9e:a0:ca:c1:e0:1d:05:b5: c7:e8:4f:e3:7e:81:e6:02:8f:21:f0:5d:ac:98:7e:b6:2f:0c: a1:f8:37:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm77UG1tvr6/QCU899UzLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxM2E0MjgzOGQyZTQ1ZWQ1ZGFkNDExNDYwNmQ5NzI5YTY1 MDFkMjMwHhcNMjUxMjA2MDMwMTQ3WhcNMjUxMjA3MDMwMTQ3WjAzMTEwLwYDVQQD EygwMGEwOTgyY2IxMWVlNjJiNmI5M2NlZDlkNDgyNDNmYTRlOWUxZjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/1XYYmJncJptm4anydbVLJr8TwA GXFJ0opNdDv1eteebkswkg/ZLOViRNqryVTjMX9Te+1IA7nEA6PgAqAvlRNp8ht+ bCvtrBylXgNm+/JCFEVkAXfBY1AJlM32eyPyeBqpfCvX00U1RdwOeb3nk+tdEC91 z3feCw3zngPQBHEH5/efc6rvDIIODX8yn2qeUwLewxNMUuipYJbEVqBryw2l+l2/ nLN8KvpycVguJmV26zKB6b2v/02e9XXcHQa+WbB/ZJoARZsw6QMn3OzKuQfSpOSv BOSA9I+dacEDgpv4yAv4h/I7HSX70vO6l/qv+WED+rj8YR1CM8OmgHTNuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFACgmCyxHuYra5PO2dSCQ/pOnh8IMB8GA1UdIwQY MBaAFIE6QoONLkXtXa1BFGBtlymmUB0jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84YzM4YTMtYzIwNC00ZGNmLTljNDct NTM0OGZlNzdiYTczLzEvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi84YzM4YTMtYzIwNC00ZGNmLTljNDctNTM0OGZlNzdiYTcz LzEvZ1RwQ2c0MHVSZTFkclVFVVlHMlhLYVpRSFNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeBMPe+2D kneaqwZ7D1AyVAGSWCU+nv+t5TbTWRAkhSVJHMe+MX+pfLNwbeO6Oa1d2mNnwGFw 6bXPOseedM/XZ4gNrJRqeAKCskBBf6qbnpRyPtmtbMHw8npfBusPr44R3VaSEIoY EE5vVj3TBjLkSKyGLe0z//7F0BwGYv/KsJD0iTIfcLwFnShL4hBdpzZ2WUOFgQas ErHQFOHJubv+DZ+8TYIjt6ZwLrPgOn15lxMn4e6bqAKYz9GZGotkfJcn+Dmspi4C JGHjR+sBjDQd26oN25TY/zJ8ZikX4Fpw7df6OJ6gysHgHQW1x+hP436B5gKPIfBd rJh+ti8Mofg3zg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:13:56 2025 by rpki-client