This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft File: G_A9uL9mABk75I-xDm4xa4tfiOM.mft (raw, json) Hash identifier: mlO3src16FJN+a+dozefppLuCrFJyn9y336mAucEuBs= Subject key identifier: F8:D9:48:36:84:03:E1:BD:9C:58:5F:E2:24:1D:36:2F:D0:98:1F:4B Authority key identifier: 1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3 Certificate issuer: /CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3 Certificate serial: 019AF08845A804F49627211F13FCEF81457F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft Manifest number: 06A8 Signing time: Fri 05 Dec 2025 22:00:53 +0000 Manifest this update: Fri 05 Dec 2025 22:00:53 +0000 Manifest next update: Sat 06 Dec 2025 22:00:53 +0000 Files and hashes: 1: G_A9uL9mABk75I-xDm4xa4tfiOM.crl (hash: GleNDspRZ/XzsUWdF5f134f3ApxGAQsUFwaoHCI1fIk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:45:a8:04:f4:96:27:21:1f:13:fc:ef:81:45:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3 Validity Not Before: Dec 5 22:00:53 2025 GMT Not After : Dec 6 22:00:53 2025 GMT Subject: CN=f8d948368403e1bd9c585fe2241d362fd0981f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:7a:16:d3:00:ca:5d:15:55:ed:f9:a8:37:7b: 99:5c:93:62:95:06:63:c7:f9:db:de:c2:7d:2d:e4: a2:8e:92:d4:37:68:95:15:83:a9:97:0a:d0:d4:09: d7:0c:23:8c:ee:71:86:e4:68:61:8f:00:dd:01:8f: 41:1b:b5:d2:f9:08:dd:0f:6a:f4:5c:9c:fb:58:f8: 16:31:65:1f:d6:de:13:5c:05:cd:f8:a8:e5:81:39: 88:76:75:57:08:2a:cf:6b:9c:d6:53:79:f4:69:37: 83:2c:91:a6:47:17:b2:65:84:24:6e:8d:92:dc:6e: 7f:c5:86:dc:cd:b1:4a:8b:a8:23:e1:17:4b:28:01: 5f:db:7e:84:11:77:49:b0:d3:dc:fd:77:82:e0:c0: 1a:a0:e0:48:1c:41:2b:39:a1:1f:ca:89:0d:79:49: 0e:13:28:66:c0:9b:13:d5:85:9d:c2:7b:b1:cd:d8: cc:1d:ad:ca:fd:cd:4c:03:26:5e:66:76:3a:46:01: 70:2a:d0:31:bd:54:74:d0:3e:39:a1:02:4b:c5:89: 0b:6f:08:15:f1:f5:d8:ce:6f:85:f0:20:e1:b4:91: 1a:a9:79:7c:d3:69:f4:cf:71:97:ee:09:c5:b5:db: a9:74:92:8b:2a:98:09:19:59:f6:6a:63:54:7c:d3: 1e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D9:48:36:84:03:E1:BD:9C:58:5F:E2:24:1D:36:2F:D0:98:1F:4B X509v3 Authority Key Identifier: keyid:1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:3c:00:6b:07:fa:40:3e:9b:43:f2:c8:2d:9c:8f:b5:a1:38: a0:80:62:c7:b2:de:68:0a:5f:7a:1b:7c:18:57:c7:1e:e8:44: 49:61:34:87:91:13:34:ea:bc:b3:bc:52:a1:b1:ab:fb:9d:68: 33:91:8c:cb:c6:9c:e4:7b:1d:6c:2a:a3:11:4c:f6:e8:da:81: b9:ae:8c:92:52:c4:ca:e6:10:d0:c6:68:40:80:4d:54:56:5f: 18:23:aa:d2:ea:6b:67:da:11:fa:9d:0d:85:c0:c4:38:34:ef: 95:48:c0:52:8f:0a:77:83:4a:36:cd:45:7a:63:fa:07:07:0b: 93:4f:dc:16:06:e9:f6:97:54:18:63:3c:ab:46:30:bb:80:65: b1:42:e0:a9:89:32:89:0c:9f:60:1e:9f:52:b9:38:0f:12:c1: e5:80:59:6d:c9:a6:72:64:b6:53:40:1f:48:9e:08:6d:43:72: 0e:a9:4c:d4:ae:76:6f:4c:81:85:e8:53:a6:e7:03:e2:2f:55: 17:ab:94:c9:0d:c8:a7:f5:64:5b:50:29:8e:d9:62:41:f5:5f: b0:ce:8c:37:f4:cc:c0:8f:eb:ab:bf:2d:e3:8c:3f:34:99:d5: c0:63:35:e0:94:a9:b4:fb:d7:ec:19:48:f7:66:8a:21:10:da: 65:d4:03:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiEWoBPSWJyEfE/zvgUV/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiZjAzZGI4YmY2NjAwMTkzYmU0OGZiMTBlNmUzMTZiOGI1 Zjg4ZTMwHhcNMjUxMjA1MjIwMDUzWhcNMjUxMjA2MjIwMDUzWjAzMTEwLwYDVQQD EyhmOGQ5NDgzNjg0MDNlMWJkOWM1ODVmZTIyNDFkMzYyZmQwOTgxZjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3oW0wDKXRVV7fmoN3uZXJNilQZj x/nb3sJ9LeSijpLUN2iVFYOplwrQ1AnXDCOM7nGG5GhhjwDdAY9BG7XS+QjdD2r0 XJz7WPgWMWUf1t4TXAXN+KjlgTmIdnVXCCrPa5zWU3n0aTeDLJGmRxeyZYQkbo2S 3G5/xYbczbFKi6gj4RdLKAFf236EEXdJsNPc/XeC4MAaoOBIHEErOaEfyokNeUkO EyhmwJsT1YWdwnuxzdjMHa3K/c1MAyZeZnY6RgFwKtAxvVR00D45oQJLxYkLbwgV 8fXYzm+F8CDhtJEaqXl802n0z3GX7gnFtdupdJKLKpgJGVn2amNUfNMeRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjZSDaEA+G9nFhf4iQdNi/QmB9LMB8GA1UdIwQY MBaAFBvwPbi/ZgAZO+SPsQ5uMWuLX4jjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR19BOXVMOW1BQms3NUkteERtNHhhNHRmaU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9kNjA3NTItY2E3ZS00YWNmLThjZDEt ZWU1OTg4ZTg3M2UxLzEvR19BOXVMOW1BQms3NUkteERtNHhhNHRmaU9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9kNjA3NTItY2E3ZS00YWNmLThjZDEtZWU1OTg4ZTg3M2Ux LzEvR19BOXVMOW1BQms3NUkteERtNHhhNHRmaU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3jwAawf6 QD6bQ/LILZyPtaE4oIBix7LeaApfeht8GFfHHuhESWE0h5ETNOq8s7xSobGr+51o M5GMy8ac5HsdbCqjEUz26NqBua6MklLEyuYQ0MZoQIBNVFZfGCOq0uprZ9oR+p0N hcDEODTvlUjAUo8Kd4NKNs1FemP6BwcLk0/cFgbp9pdUGGM8q0Ywu4BlsULgqYky iQyfYB6fUrk4DxLB5YBZbcmmcmS2U0AfSJ4IbUNyDqlM1K52b0yBhehTpucD4i9V F6uUyQ3Ip/VkW1ApjtliQfVfsM6MN/TMwI/rq78t44w/NJnVwGM14JSptPvX7BlI 92aKIRDaZdQDng== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:11 2025 by rpki-client