This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json) Hash identifier: Di8UmXYGn1l9L4o5+s9mbzGlWMVFUA6EICiByR1wBNc= Subject key identifier: 85:10:FD:F8:B1:64:2D:8F:41:1F:94:CC:34:4B:69:63:05:1B:A8:62 Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4 Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4 Certificate serial: 019AF2774439028278FF206034E6B6AB6B48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft Manifest number: 11E9 Signing time: Sat 06 Dec 2025 07:01:33 +0000 Manifest this update: Sat 06 Dec 2025 07:01:33 +0000 Manifest next update: Sun 07 Dec 2025 07:01:33 +0000 Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: uUXalj/1sKafh6B1ZtQV6LC+dLCqcfwJK1mnDqm7GNo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:44:39:02:82:78:ff:20:60:34:e6:b6:ab:6b:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4 Validity Not Before: Dec 6 07:01:33 2025 GMT Not After : Dec 7 07:01:33 2025 GMT Subject: CN=8510fdf8b1642d8f411f94cc344b6963051ba862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:55:33:bc:b2:5e:c4:12:44:74:aa:37:9c: d6:4f:8d:3f:9e:65:33:9b:b0:89:69:29:4d:f8:d4: 55:c9:ed:64:85:af:46:5e:c4:28:d8:fe:bb:36:d9: 2e:c0:6c:b0:bf:e7:7f:aa:d1:94:4a:fc:1a:14:ca: fd:bc:29:b2:1f:07:db:4c:2f:a3:c4:6d:15:00:47: b9:a2:9a:79:0c:91:15:51:69:ce:3c:e6:18:28:d2: f6:43:49:8f:2b:bc:0d:9e:ff:cd:e7:ee:8e:09:5e: 81:fc:57:10:62:af:28:84:77:5c:1c:b9:e3:1d:31: d4:63:04:8e:b9:e7:12:64:af:1f:9e:7b:f8:1e:9b: 20:55:67:1e:72:16:cd:bb:41:6a:8b:42:e1:db:4d: e3:54:c6:bd:8e:92:f5:66:12:ee:4b:95:59:15:7b: ed:cf:ca:78:06:ca:b0:05:48:66:47:6a:a8:8b:ea: 96:fd:4c:80:81:9c:7b:bc:9d:70:e8:25:72:af:7e: 37:8e:db:61:21:12:71:98:c9:10:5c:f8:54:48:5d: 9f:14:31:fc:08:c0:da:05:28:e8:ae:bf:31:b8:32: f8:f5:f5:77:8d:4e:03:6b:1d:f2:5b:d5:8e:6f:2f: 53:e5:30:05:c3:af:88:2e:39:28:3e:5b:15:d6:41: 3a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:10:FD:F8:B1:64:2D:8F:41:1F:94:CC:34:4B:69:63:05:1B:A8:62 X509v3 Authority Key Identifier: keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:06:bb:02:01:56:85:68:8e:fc:ce:a0:ea:a5:c3:a2:9d:02: 6e:7e:e8:57:e0:dd:1e:e7:65:35:71:1d:6b:96:b7:21:ad:0b: 43:a7:94:d3:a8:1e:99:6f:b5:9b:96:fb:a6:d4:cd:ee:56:f8: ed:a2:ae:d4:be:00:f4:20:0c:66:6b:dd:fa:81:11:5c:99:9d: 37:b7:5a:07:2b:cb:1a:3e:ad:7d:f2:c9:10:c6:1e:3a:72:31: f8:d4:13:bd:2f:4a:8b:67:b8:d6:63:bd:85:a3:00:9a:8b:63: 8e:c2:84:6d:da:d9:8d:4f:04:a5:fa:5b:c4:ed:34:2b:1d:db: 5d:59:a9:de:8a:f7:1e:52:05:38:8f:09:4e:74:4e:fc:f5:3e: 8f:a7:51:90:18:4c:5f:7d:5d:78:6c:34:41:73:79:d2:36:32: 2b:1b:96:c9:ce:22:44:5c:4b:f7:42:de:fb:3e:bd:90:22:4b: 64:82:d3:7a:77:b8:17:8e:8d:ee:e3:68:b3:a0:f5:63:13:01: a3:7c:30:0f:6a:49:c4:0d:1e:d8:f0:d5:42:4c:2b:2a:42:6b: fc:fb:e8:f4:fe:cc:0b:9e:80:fe:de:e1:bf:fa:d7:f5:e8:b3: ff:a4:62:05:b8:21:75:bf:03:97:be:c3:22:24:9e:e5:c6:f9: df:65:93:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryd0Q5AoJ4/yBgNOa2q2tIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNDhjNzUzZDQ2Y2RjOWU5ODAwOWVlNGRiODEwNzIzMmMw MmVhZjQwHhcNMjUxMjA2MDcwMTMzWhcNMjUxMjA3MDcwMTMzWjAzMTEwLwYDVQQD Eyg4NTEwZmRmOGIxNjQyZDhmNDExZjk0Y2MzNDRiNjk2MzA1MWJhODYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+VVM7yyXsQSRHSqN5zWT40/nmUz m7CJaSlN+NRVye1kha9GXsQo2P67NtkuwGywv+d/qtGUSvwaFMr9vCmyHwfbTC+j xG0VAEe5opp5DJEVUWnOPOYYKNL2Q0mPK7wNnv/N5+6OCV6B/FcQYq8ohHdcHLnj HTHUYwSOuecSZK8fnnv4HpsgVWcechbNu0Fqi0Lh203jVMa9jpL1ZhLuS5VZFXvt z8p4BsqwBUhmR2qoi+qW/UyAgZx7vJ1w6CVyr343jtthIRJxmMkQXPhUSF2fFDH8 CMDaBSjorr8xuDL49fV3jU4Dax3yW9WOby9T5TAFw6+ILjkoPlsV1kE6SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIUQ/fixZC2PQR+UzDRLaWMFG6hiMB8GA1UdIwQY MBaAFIJIx1PUbNyemACe5NuBByMsAur0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8xZmE0MjYtNDBkNi00ZWVhLWJiYWMt OTEzMzIyNWM5NDI1LzEvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8xZmE0MjYtNDBkNi00ZWVhLWJiYWMtOTEzMzIyNWM5NDI1 LzEvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAga7AgFW hWiO/M6g6qXDop0Cbn7oV+DdHudlNXEda5a3Ia0LQ6eU06gemW+1m5b7ptTN7lb4 7aKu1L4A9CAMZmvd+oERXJmdN7daByvLGj6tffLJEMYeOnIx+NQTvS9Ki2e41mO9 haMAmotjjsKEbdrZjU8EpfpbxO00Kx3bXVmp3or3HlIFOI8JTnRO/PU+j6dRkBhM X31deGw0QXN50jYyKxuWyc4iRFxL90Le+z69kCJLZILTene4F46N7uNos6D1YxMB o3wwD2pJxA0e2PDVQkwrKkJr/Pvo9P7MC56A/t7hv/rX9eiz/6RiBbghdb8Dl77D IiSe5cb532WT/Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:45 2025 by rpki-client