This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json) Hash identifier: EQrZSchNO46P56IXCpenyezBVHx6JlStnhVY4yGtpUE= Subject key identifier: 0E:B4:19:71:E4:D3:AB:B7:BC:12:8C:62:8D:41:D5:AB:13:32:D2:79 Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13 Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13 Certificate serial: 019AF3896071DBFA052C66E09BE71CD21F63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 12:00:57 +0000 Manifest this update: Sat 06 Dec 2025 12:00:57 +0000 Manifest next update: Sun 07 Dec 2025 12:00:57 +0000 Files and hashes: 1: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (hash: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=) 2: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: OD2SVjcqKVJj00tdipkj4fElDG/g/px45zK1UlfFyo8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:60:71:db:fa:05:2c:66:e0:9b:e7:1c:d2:1f:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13 Validity Not Before: Dec 6 12:00:57 2025 GMT Not After : Dec 7 12:00:57 2025 GMT Subject: CN=0eb41971e4d3abb7bc128c628d41d5ab1332d279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ce:52:57:c4:7a:fc:da:d9:75:c2:1b:97:ca: d1:73:50:1c:1f:81:4b:7e:23:95:30:0f:2d:5d:a0: d9:64:e0:aa:8a:ae:44:ac:98:ee:3e:64:ac:db:b5: ef:6a:d5:a9:89:d0:48:fc:32:bb:df:eb:b9:1d:08: 5d:3a:31:91:32:3c:63:72:02:5d:4b:f9:34:46:e0: 35:98:2f:4d:e4:4e:e0:14:c4:28:5e:bc:36:58:7f: 64:bc:3c:ee:72:7a:7d:7e:37:91:11:8c:e0:f3:05: 33:5d:fe:9a:92:78:34:89:d1:5e:85:cf:e3:5d:e6: bc:4a:95:56:f9:bf:67:8a:70:f0:94:f3:77:06:d8: 2b:2b:15:e7:e3:bf:1c:c2:cf:9b:7f:37:18:2a:6c: 40:dc:63:fd:ca:e1:10:a7:63:75:ff:24:d3:b0:e5: 43:ec:c7:d7:43:e1:70:25:35:80:15:43:6d:67:6b: 7b:42:3f:77:30:84:7c:83:be:85:ae:af:e0:3e:26: 4d:53:ef:69:79:d7:cd:d5:92:cc:e8:0a:3f:19:1b: 65:2c:ad:47:6d:e5:dc:75:3d:e4:16:b6:34:f9:11: ff:45:a0:71:23:1f:71:5d:0d:8c:47:ec:92:ee:62: 25:c5:4a:86:d9:47:79:58:e7:ef:00:16:61:8b:35: 70:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B4:19:71:E4:D3:AB:B7:BC:12:8C:62:8D:41:D5:AB:13:32:D2:79 X509v3 Authority Key Identifier: keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c0:7d:1c:8d:8b:af:5b:40:95:24:ad:5c:35:91:8e:ec:84: 99:c5:cc:b9:3c:ee:8b:2e:59:11:ff:df:70:84:9f:7b:87:f0: 88:70:89:3f:11:06:b5:43:08:1f:84:62:42:65:76:78:c3:59: f4:77:69:7b:18:5d:f8:03:cf:01:3c:3d:1f:85:54:b3:44:7b: c2:36:0a:58:5d:21:3d:b3:85:5f:57:f5:44:e9:8f:25:fa:ba: 21:35:73:ba:bc:dc:3e:0c:c9:cf:30:80:a1:17:3a:fb:e7:4b: a1:c3:7a:20:95:dc:f2:9a:29:96:ab:b6:0b:82:1e:d3:77:10: 0d:9e:75:78:cd:d0:3b:8f:ac:02:99:33:13:de:60:75:eb:78: 05:48:43:7d:45:fd:78:80:fb:39:c0:3c:7d:fd:8b:fc:e7:a7: 07:ad:95:c5:1c:cc:15:a0:f1:3f:7a:bd:a7:b6:8b:9f:62:11: db:81:d5:ce:c3:56:6a:3a:8b:90:c5:25:a3:c4:56:14:35:ad: db:e7:2d:c5:b2:9e:4c:a7:f9:85:03:b8:be:f4:2f:7f:f6:15: fb:8c:8b:c8:9e:09:3c:1c:0a:48:6e:e6:d8:9d:cb:e4:5c:a1: 8e:8e:0b:ad:59:3f:4e:3c:90:06:4d:cd:95:83:bd:96:cb:9f: 81:3d:1c:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziWBx2/oFLGbgm+cc0h9jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZTRlNjA3NTk3OGVhOTQ3NmI2NDFjZTAwOGM3ODdhYjI4 ZTVkMTMwHhcNMjUxMjA2MTIwMDU3WhcNMjUxMjA3MTIwMDU3WjAzMTEwLwYDVQQD EygwZWI0MTk3MWU0ZDNhYmI3YmMxMjhjNjI4ZDQxZDVhYjEzMzJkMjc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3M5SV8R6/NrZdcIbl8rRc1AcH4FL fiOVMA8tXaDZZOCqiq5ErJjuPmSs27XvatWpidBI/DK73+u5HQhdOjGRMjxjcgJd S/k0RuA1mC9N5E7gFMQoXrw2WH9kvDzucnp9fjeREYzg8wUzXf6akng0idFehc/j Xea8SpVW+b9ninDwlPN3BtgrKxXn478cws+bfzcYKmxA3GP9yuEQp2N1/yTTsOVD 7MfXQ+FwJTWAFUNtZ2t7Qj93MIR8g76Frq/gPiZNU+9pedfN1ZLM6Ao/GRtlLK1H beXcdT3kFrY0+RH/RaBxIx9xXQ2MR+yS7mIlxUqG2Ud5WOfvABZhizVw+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA60GXHk06u3vBKMYo1B1asTMtJ5MB8GA1UdIwQY MBaAFIHk5gdZeOqUdrZBzgCMeHqyjl0TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC83OTM3MDktZWU1OC00Zjc2LWIzMDgt ODYyYjg2YjZlNjQyLzEvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC83OTM3MDktZWU1OC00Zjc2LWIzMDgtODYyYjg2YjZlNjQy LzEvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHMB9HI2L r1tAlSStXDWRjuyEmcXMuTzuiy5ZEf/fcISfe4fwiHCJPxEGtUMIH4RiQmV2eMNZ 9Hdpexhd+APPATw9H4VUs0R7wjYKWF0hPbOFX1f1ROmPJfq6ITVzurzcPgzJzzCA oRc6++dLocN6IJXc8poplqu2C4Ie03cQDZ51eM3QO4+sApkzE95gdet4BUhDfUX9 eID7OcA8ff2L/OenB62VxRzMFaDxP3q9p7aLn2IR24HVzsNWajqLkMUlo8RWFDWt 2+ctxbKeTKf5hQO4vvQvf/YV+4yLyJ4JPBwKSG7m2J3L5Fyhjo4LrVk/TjyQBk3N lYO9lsufgT0cyA== -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:13 2025 by rpki-client