This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft File: gwn4FzfW8X58GtWISa_3HFAGTwQ.mft (raw, json) Hash identifier: 7qfVB/Iq/Zo0E2nbtAmLB2OY/3MLIEVYg/yeF79M4nI= Subject key identifier: 46:49:C0:74:E0:66:53:A0:2F:C1:9C:3C:92:34:1F:62:C2:18:45:6B Authority key identifier: 83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04 Certificate issuer: /CN=8309f81737d6f17e7c1ad58849aff71c50064f04 Certificate serial: 019AF31D45401A6A3A2404D85BD6F3CB54E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft Manifest number: 1549 Signing time: Sat 06 Dec 2025 10:02:52 +0000 Manifest this update: Sat 06 Dec 2025 10:02:52 +0000 Manifest next update: Sun 07 Dec 2025 10:02:52 +0000 Files and hashes: 1: C29j8BjW64hUTo90rvT2p7vncMk.roa (hash: z1gCCbWIlJIwgYs0Ud8cLUPoe3m6/PGlyP6Xd1WDnws=) 2: gwn4FzfW8X58GtWISa_3HFAGTwQ.crl (hash: fTrHk3JjBgqo75SOqIqKmXoodDXnpxy1u7+cYZFRlNE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:45:40:1a:6a:3a:24:04:d8:5b:d6:f3:cb:54:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8309f81737d6f17e7c1ad58849aff71c50064f04 Validity Not Before: Dec 6 10:02:52 2025 GMT Not After : Dec 7 10:02:52 2025 GMT Subject: CN=4649c074e06653a02fc19c3c92341f62c218456b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6a:bc:94:43:f7:74:9e:04:15:29:e1:c1:c2: ba:82:b4:64:4a:4b:16:3b:8e:30:6f:c6:15:9a:46: c8:25:e6:50:a0:da:2a:45:c9:bf:16:9b:fd:52:60: 49:03:ce:f2:ab:ab:f5:bd:f9:3a:c6:51:92:71:48: a7:6f:cd:69:25:e2:94:49:16:a2:84:7d:44:fb:bb: 08:26:23:8e:43:f9:fb:35:e2:f0:f4:05:84:be:0e: bc:48:d8:7e:14:e6:ad:42:8c:5d:10:8a:f0:bc:cf: 2b:fd:18:c2:7c:1e:a5:c3:e3:b2:23:97:c8:32:a6: 94:f3:47:bb:12:57:ba:b8:01:92:20:fb:9c:f2:ab: 9a:14:c7:09:18:62:7a:76:d4:4b:fe:5c:60:33:38: 1d:7f:97:bd:46:a1:68:14:9a:07:41:b9:5b:23:2a: 6f:bf:2d:22:7c:d9:b3:14:44:46:78:9b:c7:51:63: eb:fe:5e:4f:ad:58:99:04:50:d6:61:70:45:69:b4: e9:10:83:33:e4:a3:2a:79:e1:19:5d:32:37:f2:e5: dd:81:a2:19:5a:f2:3a:4e:df:5e:77:00:88:39:cd: 6d:cc:1a:20:34:5c:80:be:34:5b:0d:9c:80:d5:f1: 56:cf:95:d0:ae:36:87:7f:a4:7a:93:74:7c:b3:44: 00:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:49:C0:74:E0:66:53:A0:2F:C1:9C:3C:92:34:1F:62:C2:18:45:6B X509v3 Authority Key Identifier: keyid:83:09:F8:17:37:D6:F1:7E:7C:1A:D5:88:49:AF:F7:1C:50:06:4F:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwn4FzfW8X58GtWISa_3HFAGTwQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3a0026-2847-4276-96ba-1747378e6594/1/gwn4FzfW8X58GtWISa_3HFAGTwQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:70:9b:3b:8d:4a:bd:9a:ba:f0:25:a4:8d:53:38:95:ba:be: 40:b1:21:6d:46:c3:25:da:36:d0:f6:58:a6:29:b1:37:81:48: be:aa:14:bd:58:53:b3:ea:99:94:00:cf:06:eb:07:10:6c:24: b6:a2:f4:57:4d:0d:7a:0f:5c:81:54:83:b9:84:d4:dc:05:2c: e0:ac:fa:80:8b:0c:23:cb:de:cf:2e:0e:cf:ea:b9:cc:d8:ca: 5a:39:eb:7d:89:28:66:ec:bf:93:15:5c:ea:fc:16:5c:4b:0e: 59:f5:51:b0:3a:29:f1:e1:ad:40:a2:be:14:6c:13:ab:77:e0: 6f:c7:6a:07:7c:b4:20:d2:fa:9e:24:c2:e5:3c:40:8c:d7:dc: 9b:5d:cc:7b:93:67:77:f0:fe:f3:0d:1b:a6:6c:f4:3a:e1:8c: ab:2f:8e:8d:87:ea:b5:0a:00:f7:53:43:1c:e3:5b:e6:a7:3a: c1:97:ba:45:43:83:bb:43:8d:87:fa:bd:a0:9b:fe:ac:d7:01: 42:c4:c1:99:f9:73:81:cb:3b:77:25:73:57:51:07:82:d8:06: 78:56:83:8e:8a:9e:bf:ed:18:b8:bd:21:4f:6c:6f:8d:71:68: 50:75:0c:d3:6e:3a:73:09:e6:43:60:33:eb:2c:e0:d1:ec:63: 57:9f:bc:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHUVAGmo6JATYW9bzy1TkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzMDlmODE3MzdkNmYxN2U3YzFhZDU4ODQ5YWZmNzFjNTAw NjRmMDQwHhcNMjUxMjA2MTAwMjUyWhcNMjUxMjA3MTAwMjUyWjAzMTEwLwYDVQQD Eyg0NjQ5YzA3NGUwNjY1M2EwMmZjMTljM2M5MjM0MWY2MmMyMTg0NTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmq8lEP3dJ4EFSnhwcK6grRkSksW O44wb8YVmkbIJeZQoNoqRcm/Fpv9UmBJA87yq6v1vfk6xlGScUinb81pJeKUSRai hH1E+7sIJiOOQ/n7NeLw9AWEvg68SNh+FOatQoxdEIrwvM8r/RjCfB6lw+OyI5fI MqaU80e7Ele6uAGSIPuc8quaFMcJGGJ6dtRL/lxgMzgdf5e9RqFoFJoHQblbIypv vy0ifNmzFERGeJvHUWPr/l5PrViZBFDWYXBFabTpEIMz5KMqeeEZXTI38uXdgaIZ WvI6Tt9edwCIOc1tzBogNFyAvjRbDZyA1fFWz5XQrjaHf6R6k3R8s0QASQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEZJwHTgZlOgL8GcPJI0H2LCGEVrMB8GA1UdIwQY MBaAFIMJ+Bc31vF+fBrViEmv9xxQBk8EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEt MTc0NzM3OGU2NTk0LzEvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8zYTAwMjYtMjg0Ny00Mjc2LTk2YmEtMTc0NzM3OGU2NTk0 LzEvZ3duNEZ6Zlc4WDU4R3RXSVNhXzNIRkFHVHdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl3CbO41K vZq68CWkjVM4lbq+QLEhbUbDJdo20PZYpimxN4FIvqoUvVhTs+qZlADPBusHEGwk tqL0V00Neg9cgVSDuYTU3AUs4Kz6gIsMI8vezy4Oz+q5zNjKWjnrfYkoZuy/kxVc 6vwWXEsOWfVRsDop8eGtQKK+FGwTq3fgb8dqB3y0INL6niTC5TxAjNfcm13Me5Nn d/D+8w0bpmz0OuGMqy+OjYfqtQoA91NDHONb5qc6wZe6RUODu0ONh/q9oJv+rNcB QsTBmflzgcs7dyVzV1EHgtgGeFaDjoqev+0YuL0hT2xvjXFoUHUM0246cwnmQ2Az 6yzg0exjV5+86A== -----END CERTIFICATE-----Generated at Sat Dec 6 19:11:14 2025 by rpki-client