This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft File: rSRGM37TPO3jTe_1VxBdxxwDqRY.mft (raw, json) Hash identifier: j3HahHO42cWjnRMasU3QW7qsqcSixKJnEzvF/vRrUS4= Subject key identifier: 29:58:AF:54:06:2B:75:0F:39:04:55:3B:CE:09:63:4E:44:3F:C2:BE Authority key identifier: AD:24:46:33:7E:D3:3C:ED:E3:4D:EF:F5:57:10:5D:C7:1C:03:A9:16 Certificate issuer: /CN=ad2446337ed33cede34deff557105dc71c03a916 Certificate serial: 019AF509B06E0DE47259894258B18A9C4150 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft Manifest number: 06F4 Signing time: Sat 06 Dec 2025 19:00:43 +0000 Manifest this update: Sat 06 Dec 2025 19:00:43 +0000 Manifest next update: Sun 07 Dec 2025 19:00:43 +0000 Files and hashes: 1: rSRGM37TPO3jTe_1VxBdxxwDqRY.crl (hash: 28ft3HcKEYSFgPJu/fXM251ePcLdeDCfmzosKb/VZXQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.crl rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:b0:6e:0d:e4:72:59:89:42:58:b1:8a:9c:41:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad2446337ed33cede34deff557105dc71c03a916 Validity Not Before: Dec 6 19:00:43 2025 GMT Not After : Dec 7 19:00:43 2025 GMT Subject: CN=2958af54062b750f3904553bce09634e443fc2be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:76:8e:ee:b9:d5:18:b6:bc:fb:0c:3b:41: 49:0b:70:be:31:e9:be:af:08:a4:ce:31:20:d9:a5: 58:f1:67:60:74:3a:ed:a4:9c:f7:32:a5:31:97:ed: 39:e9:bb:e4:33:c5:63:d0:63:e6:92:ca:1d:79:ee: 01:7f:d8:b9:73:b1:9e:5e:db:54:6c:8e:34:e3:ba: e2:c3:84:09:20:64:99:6f:7f:be:90:23:82:ff:7d: c4:f1:fe:20:f5:9f:fa:99:62:7a:2d:68:45:08:dd: 9e:20:1e:f7:e8:00:9e:67:61:0d:ec:31:05:1b:92: 3d:b0:d1:3a:0e:35:1f:63:a7:27:19:b6:a6:4f:db: c3:d7:b0:3c:a2:a0:3d:13:04:d5:15:bf:82:b6:0c: 3f:3c:66:31:db:72:87:00:18:c4:7f:11:16:ea:b7: 1b:2b:e4:8d:3c:da:e0:a1:31:29:59:48:4f:bf:27: 6d:98:30:93:09:71:36:86:a4:ff:b9:86:1b:60:e9: 41:19:19:f6:e9:09:1a:90:32:87:f4:c8:fd:47:c1: 4b:b9:34:6e:6c:de:31:c6:36:31:8a:7c:46:19:3e: 8b:05:84:0a:f7:b8:31:65:81:e6:a0:01:bc:91:ed: 61:ea:10:fd:b3:f4:50:dd:fc:02:b7:4e:02:55:25: a2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:58:AF:54:06:2B:75:0F:39:04:55:3B:CE:09:63:4E:44:3F:C2:BE X509v3 Authority Key Identifier: keyid:AD:24:46:33:7E:D3:3C:ED:E3:4D:EF:F5:57:10:5D:C7:1C:03:A9:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSRGM37TPO3jTe_1VxBdxxwDqRY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cfa76c-05cc-43dc-98f1-e707dec7bd6c/1/rSRGM37TPO3jTe_1VxBdxxwDqRY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:c2:3f:71:a7:57:05:ef:0b:f6:ca:65:84:a0:0e:36:72:29: cb:ff:0b:96:2a:53:5d:35:c9:be:5a:8d:6e:80:50:0b:fa:1d: 3a:66:38:3a:1b:c1:6e:cb:b6:9b:6b:e6:71:51:cb:80:8d:29: 7d:22:96:7a:77:9e:79:45:cb:7c:6a:01:93:f3:f8:18:cd:99: 37:63:50:63:98:a9:5f:e4:eb:3f:e1:21:57:3a:4d:ae:38:de: 63:82:40:18:14:a1:4d:e8:de:a7:d1:70:49:de:fb:2d:56:ec: f3:65:85:6f:55:6d:58:3b:e8:4d:6a:a9:ff:0d:58:dc:80:f5: 7f:5e:5f:5f:c3:70:ff:97:56:8c:b0:61:b5:e4:aa:af:84:5b: 16:ce:4b:f9:bb:4e:a2:a3:35:02:7b:5e:a1:3e:50:e1:c3:f9: cd:7c:7c:65:dd:99:ee:1e:d8:2b:c9:17:9d:4c:0a:d6:1f:24: 90:e2:8b:44:d0:b0:7a:55:62:79:76:96:b2:8b:66:2f:df:bb: 63:36:9a:49:8a:a4:6b:f3:44:0a:1c:56:ca:41:7c:4b:df:40: ae:7c:90:22:94:1d:5b:7e:9f:71:6d:9f:99:b7:bf:66:11:ff: 62:85:25:d9:3e:3f:91:e9:7b:a3:7b:bd:be:ff:db:88:a8:5c: 7e:1f:8b:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CbBuDeRyWYlCWLGKnEFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMjQ0NjMzN2VkMzNjZWRlMzRkZWZmNTU3MTA1ZGM3MWMw M2E5MTYwHhcNMjUxMjA2MTkwMDQzWhcNMjUxMjA3MTkwMDQzWjAzMTEwLwYDVQQD EygyOTU4YWY1NDA2MmI3NTBmMzkwNDU1M2JjZTA5NjM0ZTQ0M2ZjMmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjN2ju651Ri2vPsMO0FJC3C+Mem+ rwikzjEg2aVY8WdgdDrtpJz3MqUxl+056bvkM8Vj0GPmksodee4Bf9i5c7GeXttU bI4047riw4QJIGSZb3++kCOC/33E8f4g9Z/6mWJ6LWhFCN2eIB736ACeZ2EN7DEF G5I9sNE6DjUfY6cnGbamT9vD17A8oqA9EwTVFb+Ctgw/PGYx23KHABjEfxEW6rcb K+SNPNrgoTEpWUhPvydtmDCTCXE2hqT/uYYbYOlBGRn26QkakDKH9Mj9R8FLuTRu bN4xxjYxinxGGT6LBYQK97gxZYHmoAG8ke1h6hD9s/RQ3fwCt04CVSWifQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFClYr1QGK3UPOQRVO84JY05EP8K+MB8GA1UdIwQY MBaAFK0kRjN+0zzt403v9VcQXcccA6kWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9jZmE3NmMtMDVjYy00M2RjLTk4ZjEt ZTcwN2RlYzdiZDZjLzEvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9jZmE3NmMtMDVjYy00M2RjLTk4ZjEtZTcwN2RlYzdiZDZj LzEvclNSR00zN1RQTzNqVGVfMVZ4QmR4eHdEcVJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd8I/cadX Be8L9splhKAONnIpy/8LlipTXTXJvlqNboBQC/odOmY4OhvBbsu2m2vmcVHLgI0p fSKWeneeeUXLfGoBk/P4GM2ZN2NQY5ipX+TrP+EhVzpNrjjeY4JAGBShTejep9Fw Sd77LVbs82WFb1VtWDvoTWqp/w1Y3ID1f15fX8Nw/5dWjLBhteSqr4RbFs5L+btO oqM1AnteoT5Q4cP5zXx8Zd2Z7h7YK8kXnUwK1h8kkOKLRNCwelVieXaWsotmL9+7 YzaaSYqka/NEChxWykF8S99ArnyQIpQdW36fcW2fmbe/ZhH/YoUl2T4/kel7o3u9 vv/biKhcfh+LtA== -----END CERTIFICATE-----Generated at Sun Dec 7 04:35:28 2025 by rpki-client