This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft File: gh8Shdd1qfWJJD6shErcWridl8k.mft (raw, json) Hash identifier: JPb/Uvhr1mFNH4gNJI0Yw9oKs4+ioeNmhjL8EUY2M4c= Subject key identifier: 0A:D6:66:0F:4F:69:A7:40:0C:7D:F1:BA:6E:12:2F:34:47:C1:D7:3D Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9 Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9 Certificate serial: 019AF209456D76BE1F3D51FF30975C102FB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft Manifest number: 0C06 Signing time: Sat 06 Dec 2025 05:01:25 +0000 Manifest this update: Sat 06 Dec 2025 05:01:25 +0000 Manifest next update: Sun 07 Dec 2025 05:01:25 +0000 Files and hashes: 1: 9ZpW1MFLfzhcDdO5wTaJpRND5LI.roa (hash: eD8scxSV/Ipj3PNHolMKD1Dy5Nq6O0rfumsVRuff780=) 2: gh8Shdd1qfWJJD6shErcWridl8k.crl (hash: DIxCQ2f923yu0TCtGnVQvI9q1JBn/fT0FwYH8G2aMEw=) 3: yGExv6aT2zwwq4E64R4PQ7ZXbjU.roa (hash: UK4ZT9heAIw8jcnXNcqfBznXiBKMuH0NwH/ajGH3z/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:45:6d:76:be:1f:3d:51:ff:30:97:5c:10:2f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9 Validity Not Before: Dec 6 05:01:25 2025 GMT Not After : Dec 7 05:01:25 2025 GMT Subject: CN=0ad6660f4f69a7400c7df1ba6e122f3447c1d73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:41:8b:db:fb:87:a0:b1:ee:54:d0:ad:86:87: 36:93:e7:ef:48:6f:cd:1e:c0:70:e1:d1:29:71:f7: 29:23:bc:16:e7:b1:db:68:69:27:93:3f:a8:be:b9: 97:59:55:97:46:04:c2:78:28:27:f9:24:9c:97:ea: a8:cf:0d:28:6b:33:73:40:74:1a:96:0e:4f:6f:1b: 2b:c2:87:11:c4:97:28:4a:af:2a:dc:43:9b:39:23: 5e:7d:e0:a4:d2:fc:ca:be:0c:8f:af:31:d3:e3:79: a3:d0:01:82:94:eb:b6:d9:cc:19:25:73:18:57:23: 27:2a:3e:87:5b:8e:dc:4b:a5:19:10:f7:9c:88:f1: 44:d4:39:71:2e:11:a6:ac:d5:e2:55:10:af:a1:03: 23:e5:c6:6d:a0:0a:92:5b:b7:14:f8:37:c5:a4:5d: a6:2a:91:0e:3c:ae:2e:4d:e6:94:ef:74:d3:3e:87: b0:e1:e9:79:a9:2d:23:5a:de:5e:5b:c8:b8:d4:c9: 81:0c:b1:05:94:45:ec:72:ee:97:6c:95:31:86:2d: 45:f9:18:e3:4c:0f:a3:3b:fc:58:98:51:80:e2:5a: e0:58:cc:96:28:ff:32:70:90:d1:39:08:0c:83:1e: 48:92:ff:63:0c:85:e9:df:0f:b7:87:61:e4:15:d0: 9b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D6:66:0F:4F:69:A7:40:0C:7D:F1:BA:6E:12:2F:34:47:C1:D7:3D X509v3 Authority Key Identifier: keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:89:fb:f6:41:1e:1b:a2:b3:d8:16:93:8f:3d:f3:a0:e7:25: e0:e1:68:7b:86:50:36:1d:46:c6:7b:b2:c8:23:35:bb:87:54: 3c:fc:a3:af:a6:6f:d5:6b:ba:07:a2:1e:2e:d3:df:43:64:2c: b6:16:ef:1e:9d:cb:be:23:07:c0:02:68:a2:4f:2b:79:f9:8a: a0:6d:3e:43:e0:3d:93:fa:d9:86:a6:87:7e:b8:c6:39:ba:19: 4e:07:26:7c:e3:7e:b6:45:ba:a6:9f:43:63:57:a4:10:57:f4: 3e:44:14:ea:6d:bc:f1:05:41:6f:e4:98:3c:b0:66:82:ca:36: ac:1e:ee:3c:c5:4d:5a:54:14:db:94:96:1d:93:3e:d8:f9:21: 4a:25:5f:4e:0b:71:d8:6a:e7:d8:6c:16:80:a5:9a:e2:7d:ff: 00:2d:3f:4a:98:fa:3a:12:55:40:ce:e9:15:ed:df:75:b2:a4: aa:bc:24:ec:da:3c:bc:1b:40:49:34:f6:9b:d3:66:87:23:12: 8a:1a:e2:24:25:c6:7e:81:ef:02:fa:e6:b7:20:cc:4f:a0:b6: 52:07:58:e1:96:b4:9a:b4:25:57:65:d0:97:b5:42:6e:59:6c: 84:4b:23:11:97:0e:6a:1d:15:be:9b:7d:f7:fd:f7:47:ef:ea: d0:4e:48:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUVtdr4fPVH/MJdcEC+2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWYxMjg1ZDc3NWE5ZjU4OTI0M2VhYzg0NGFkYzVhYjg5 ZDk3YzkwHhcNMjUxMjA2MDUwMTI1WhcNMjUxMjA3MDUwMTI1WjAzMTEwLwYDVQQD EygwYWQ2NjYwZjRmNjlhNzQwMGM3ZGYxYmE2ZTEyMmYzNDQ3YzFkNzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0GL2/uHoLHuVNCthoc2k+fvSG/N HsBw4dEpcfcpI7wW57HbaGknkz+ovrmXWVWXRgTCeCgn+SScl+qozw0oazNzQHQa lg5PbxsrwocRxJcoSq8q3EObOSNefeCk0vzKvgyPrzHT43mj0AGClOu22cwZJXMY VyMnKj6HW47cS6UZEPeciPFE1DlxLhGmrNXiVRCvoQMj5cZtoAqSW7cU+DfFpF2m KpEOPK4uTeaU73TTPoew4el5qS0jWt5eW8i41MmBDLEFlEXscu6XbJUxhi1F+Rjj TA+jO/xYmFGA4lrgWMyWKP8ycJDROQgMgx5Ikv9jDIXp3w+3h2HkFdCbZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFArWZg9PaadADH3xum4SLzRHwdc9MB8GA1UdIwQY MBaAFIIfEoXXdan1iSQ+rIRK3Fq4nZfJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xN2Q4MWQtMTczZC00NDg2LTk1NWQt NDhlZWE4ZDVmZWYxLzEvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8xN2Q4MWQtMTczZC00NDg2LTk1NWQtNDhlZWE4ZDVmZWYx LzEvZ2g4U2hkZDFxZldKSkQ2c2hFcmNXcmlkbDhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVIn79kEe G6Kz2BaTjz3zoOcl4OFoe4ZQNh1GxnuyyCM1u4dUPPyjr6Zv1Wu6B6IeLtPfQ2Qs thbvHp3LviMHwAJook8refmKoG0+Q+A9k/rZhqaHfrjGOboZTgcmfON+tkW6pp9D Y1ekEFf0PkQU6m288QVBb+SYPLBmgso2rB7uPMVNWlQU25SWHZM+2PkhSiVfTgtx 2Grn2GwWgKWa4n3/AC0/Spj6OhJVQM7pFe3fdbKkqrwk7No8vBtASTT2m9NmhyMS ihriJCXGfoHvAvrmtyDMT6C2UgdY4Za0mrQlV2XQl7VCbllshEsjEZcOah0Vvpt9 9/33R+/q0E5I0g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:26 2025 by rpki-client