This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft File: Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft (raw, json) Hash identifier: tjZ7BXR6FeZdjfixYAFOQiT9uy7hirhs5/xKbdKhRcs= Subject key identifier: A0:A0:FE:D9:6C:FA:FD:0F:17:B0:45:22:6D:06:A5:61:33:3F:F4:DF Authority key identifier: 1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E Certificate issuer: /CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e Certificate serial: 019AF68A90AB7CB714F9F47EC65A3F05D6B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft Manifest number: 024A Signing time: Sun 07 Dec 2025 02:01:07 +0000 Manifest this update: Sun 07 Dec 2025 02:01:07 +0000 Manifest next update: Mon 08 Dec 2025 02:01:07 +0000 Files and hashes: 1: Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl (hash: ybTMPqmuWoeEzn9DvWitPeXp7giguDTCO/L8qjiebqw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:90:ab:7c:b7:14:f9:f4:7e:c6:5a:3f:05:d6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e Validity Not Before: Dec 7 02:01:07 2025 GMT Not After : Dec 8 02:01:07 2025 GMT Subject: CN=a0a0fed96cfafd0f17b045226d06a561333ff4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ca:0c:be:54:f1:c6:d5:8c:68:c6:65:39:46: 87:a7:d5:ca:50:b5:9b:5b:df:c2:88:c9:ec:d8:94: 54:4d:b2:33:70:8f:ea:58:f1:04:72:de:fb:0a:de: 7b:2f:16:10:84:0f:08:06:56:dc:c0:57:37:df:22: 07:c1:58:3c:d8:d1:dd:9f:a2:77:70:e0:8d:eb:d6: 99:92:7f:e6:1d:4b:f7:98:e5:a3:39:8b:a5:4a:fb: 1f:c1:62:4f:95:39:d0:fb:b9:2c:cb:51:f7:f4:86: 0c:7c:45:c2:d8:d2:cd:ad:b9:0d:be:05:c2:d9:d6: 23:9f:a1:0b:21:28:fa:07:42:82:2b:0b:50:5b:18: 6b:6f:cd:64:ef:3e:bd:14:89:7e:b3:19:ba:c8:75: 05:1c:d5:69:4b:fd:ce:cd:44:3c:23:db:74:49:05: 6b:07:3e:4b:40:92:76:97:b4:4a:35:9a:04:90:b3: e3:dd:cc:cd:b6:37:14:f2:26:93:6a:11:3e:19:fa: 16:8b:fd:7d:ee:ba:ed:32:43:75:1f:a1:6b:12:27: 64:b4:05:f7:18:c8:33:2a:4a:ba:51:cd:89:58:e1: a0:41:c4:e1:89:9e:c9:96:ed:73:e1:72:a8:d6:3c: a4:05:3f:e9:6c:e0:d8:88:b0:fb:e4:06:88:6a:8e: 17:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A0:FE:D9:6C:FA:FD:0F:17:B0:45:22:6D:06:A5:61:33:3F:F4:DF X509v3 Authority Key Identifier: keyid:1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:97:74:0c:56:91:7b:75:97:9d:b2:db:9d:10:c8:aa:df:f8: 33:95:42:35:bd:f0:0f:dd:c0:eb:73:b2:43:33:48:9e:c6:47: fa:e0:f6:8e:b0:d8:a5:fc:c1:33:8b:0c:81:5d:bf:cc:90:a2: 17:73:ee:b5:54:de:d7:b6:62:ca:0f:64:09:7b:4d:36:4a:ac: 55:61:dc:8f:bd:e0:26:b1:90:39:b6:32:8b:d1:fd:d0:f5:48: ac:10:2e:82:d6:a4:72:49:5f:b1:ec:f4:ee:ca:98:45:ea:fd: 42:8c:bc:14:4a:23:eb:ed:b1:45:1d:dd:1a:25:31:c6:3e:60: cc:7d:4e:ef:aa:f7:7c:31:28:5b:84:4e:68:6a:28:8b:52:30: 03:8a:73:f2:17:c7:e0:c4:d0:c6:2d:bf:e9:e5:58:14:c3:fb: c3:0c:42:a8:88:2c:30:3d:a1:64:85:4e:dd:58:c5:09:bf:47: ed:87:e7:9c:46:09:00:53:de:2e:15:e0:b3:2c:2b:04:e2:ce: 38:5e:d2:90:56:29:1a:9f:2b:1f:c6:fe:f4:c7:1a:4d:31:11: 9a:6e:82:3b:8e:77:92:d7:e5:ca:a6:8d:88:22:ac:f6:d2:94: a7:95:63:14:d3:22:ea:0b:60:ac:b9:5a:b8:9b:d5:3f:a1:4b: 08:38:01:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2ipCrfLcU+fR+xlo/Bda5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhZjc5YmY4YWFiNmJlMDE0OWQ4ZGI1YzhhMGNlZGJjOTU3 MGYxNmUwHhcNMjUxMjA3MDIwMTA3WhcNMjUxMjA4MDIwMTA3WjAzMTEwLwYDVQQD EyhhMGEwZmVkOTZjZmFmZDBmMTdiMDQ1MjI2ZDA2YTU2MTMzM2ZmNGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MoMvlTxxtWMaMZlOUaHp9XKULWb W9/CiMns2JRUTbIzcI/qWPEEct77Ct57LxYQhA8IBlbcwFc33yIHwVg82NHdn6J3 cOCN69aZkn/mHUv3mOWjOYulSvsfwWJPlTnQ+7ksy1H39IYMfEXC2NLNrbkNvgXC 2dYjn6ELISj6B0KCKwtQWxhrb81k7z69FIl+sxm6yHUFHNVpS/3OzUQ8I9t0SQVr Bz5LQJJ2l7RKNZoEkLPj3czNtjcU8iaTahE+GfoWi/197rrtMkN1H6FrEidktAX3 GMgzKkq6Uc2JWOGgQcThiZ7Jlu1z4XKo1jykBT/pbODYiLD75AaIao4X6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKCg/tls+v0PF7BFIm0GpWEzP/TfMB8GA1UdIwQY MBaAFBr3m/iqtr4BSdjbXIoM7byVcPFuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3ZlYi1LcTJ2Z0ZKMk50Y2lnenR2SlZ3OFc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzI0NTMtZmVhMS00YTcwLWE1NGIt OTExZDM0ZjAxNGYzLzEvR3ZlYi1LcTJ2Z0ZKMk50Y2lnenR2SlZ3OFc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9hNzI0NTMtZmVhMS00YTcwLWE1NGItOTExZDM0ZjAxNGYz LzEvR3ZlYi1LcTJ2Z0ZKMk50Y2lnenR2SlZ3OFc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMpd0DFaR e3WXnbLbnRDIqt/4M5VCNb3wD93A63OyQzNInsZH+uD2jrDYpfzBM4sMgV2/zJCi F3PutVTe17Ziyg9kCXtNNkqsVWHcj73gJrGQObYyi9H90PVIrBAugtakcklfsez0 7sqYRer9Qoy8FEoj6+2xRR3dGiUxxj5gzH1O76r3fDEoW4ROaGooi1IwA4pz8hfH 4MTQxi2/6eVYFMP7wwxCqIgsMD2hZIVO3VjFCb9H7YfnnEYJAFPeLhXgsywrBOLO OF7SkFYpGp8rH8b+9McaTTERmm6CO453ktflyqaNiCKs9tKUp5VjFNMi6gtgrLla uJvVP6FLCDgBcg== -----END CERTIFICATE-----Generated at Sun Dec 7 05:17:27 2025 by rpki-client