This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft File: G2uUO5o9_2loAVFr6EcbxFiFZug.mft (raw, json) Hash identifier: yUUsvpkQjhMbmSFQEEA02p7OskW1B7ItgEUgWrOHzSw= Subject key identifier: AB:8C:5B:5E:DF:32:56:EC:DF:FE:4A:56:47:BF:C0:3E:C0:83:95:B5 Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8 Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8 Certificate serial: 019AF1D23990FC842F04B0C1FE20464C01F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft Manifest number: 1406 Signing time: Sat 06 Dec 2025 04:01:17 +0000 Manifest this update: Sat 06 Dec 2025 04:01:17 +0000 Manifest next update: Sun 07 Dec 2025 04:01:17 +0000 Files and hashes: 1: 1ISrUMvXtY8idtkbmSmcNCBmXOs.roa (hash: JdzcjRC1qPASLJAyKXCJZ2jvTuTxM21yeidKZ9A5IsQ=) 2: G2uUO5o9_2loAVFr6EcbxFiFZug.crl (hash: 19cIaI6TrMSzp6Nsbb3DYmNthGbGPpvlCyhBP6F84aY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:39:90:fc:84:2f:04:b0:c1:fe:20:46:4c:01:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8 Validity Not Before: Dec 6 04:01:17 2025 GMT Not After : Dec 7 04:01:17 2025 GMT Subject: CN=ab8c5b5edf3256ecdffe4a5647bfc03ec08395b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e0:1a:3a:f8:81:0b:dc:80:7e:dc:70:f7:ff: 11:9f:8c:8c:58:40:5b:3e:da:46:5f:9c:cc:2b:c2: fb:9f:b3:10:45:8f:21:71:46:2b:c6:88:9b:df:69: f0:7c:cf:9d:8c:43:18:61:c3:5c:26:da:b8:1e:2e: 5a:07:b4:7d:42:2e:35:bf:a8:21:47:d5:5f:0f:53: ad:17:3c:f4:72:be:1a:af:6c:9a:e2:79:eb:8f:7f: 7b:9f:58:de:34:d7:31:0a:38:ec:91:ba:80:77:5e: 80:5e:8c:b1:8e:96:47:4d:b5:00:0f:48:65:f0:9f: 77:c4:8e:c5:05:02:5a:1a:6b:9b:83:22:8f:77:09: c2:bf:fe:b5:56:0f:b5:d6:bd:f5:d7:24:12:e1:9f: 96:29:02:57:01:2a:0b:fe:24:27:74:81:db:bf:97: 85:9c:23:80:f6:65:f7:10:8b:40:8d:69:a5:e5:44: 2a:85:20:2d:3a:18:83:c4:6f:fe:fb:f0:9e:c7:a0: ca:45:97:bc:4f:1c:1c:5f:b9:e2:ba:59:89:84:44: 1c:67:85:47:3e:b7:82:d5:ca:e7:e4:16:a1:10:86: 44:4d:e8:b0:a5:71:46:90:9a:1c:c8:07:48:63:cd: 2f:da:8a:e7:a2:9e:8d:75:c2:f5:29:73:c1:1c:dc: 4d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8C:5B:5E:DF:32:56:EC:DF:FE:4A:56:47:BF:C0:3E:C0:83:95:B5 X509v3 Authority Key Identifier: keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:aa:9b:8e:72:6e:dd:de:93:36:5b:a7:15:93:92:88:26:19: 3f:37:7d:d2:49:37:57:df:e5:94:eb:43:32:07:e1:1c:04:52: 3a:6c:9c:09:0e:55:0b:01:42:26:58:9e:15:a8:d7:4a:af:9b: 73:de:c3:41:0d:49:92:76:08:8f:91:21:20:dc:91:f3:de:86: d4:8e:d4:e2:6e:e8:92:e0:87:4b:96:71:16:e3:37:bd:b1:cf: a2:d6:0d:bd:82:f2:62:de:f1:64:88:c4:ee:c2:a9:22:61:c0: aa:00:8f:eb:3b:d6:88:68:0c:ee:72:29:fa:14:82:f9:ab:f8: f0:97:b8:24:03:75:82:88:5d:42:e8:47:07:70:e7:9f:d1:30: 04:a2:3c:cd:eb:f6:7d:6b:38:16:e7:78:32:28:8e:23:aa:31: 15:be:ca:6b:84:8a:6d:7f:aa:ed:d9:cd:08:91:a2:59:d4:56: 0d:5b:36:4a:36:d0:1f:7c:40:85:6e:3b:cc:43:26:6d:14:df: d6:d0:ce:fa:73:ab:be:8e:13:54:ef:ce:31:b3:b5:93:7e:38: 70:e4:05:9e:a9:a7:00:7b:60:9d:8a:bc:ee:21:2e:cb:70:84: 9e:9b:87:b7:07:46:e6:f9:35:7f:27:cd:00:49:7b:dd:33:c0: 4d:51:bd:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0jmQ/IQvBLDB/iBGTAH1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiNmI5NDNiOWEzZGZmNjk2ODAxNTE2YmU4NDcxYmM0NTg4 NTY2ZTgwHhcNMjUxMjA2MDQwMTE3WhcNMjUxMjA3MDQwMTE3WjAzMTEwLwYDVQQD EyhhYjhjNWI1ZWRmMzI1NmVjZGZmZTRhNTY0N2JmYzAzZWMwODM5NWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7uAaOviBC9yAftxw9/8Rn4yMWEBb PtpGX5zMK8L7n7MQRY8hcUYrxoib32nwfM+djEMYYcNcJtq4Hi5aB7R9Qi41v6gh R9VfD1OtFzz0cr4ar2ya4nnrj397n1jeNNcxCjjskbqAd16AXoyxjpZHTbUAD0hl 8J93xI7FBQJaGmubgyKPdwnCv/61Vg+11r311yQS4Z+WKQJXASoL/iQndIHbv5eF nCOA9mX3EItAjWml5UQqhSAtOhiDxG/++/Cex6DKRZe8TxwcX7niulmJhEQcZ4VH PreC1crn5BahEIZETeiwpXFGkJocyAdIY80v2ornop6NdcL1KXPBHNxNpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKuMW17fMlbs3/5KVke/wD7Ag5W1MB8GA1UdIwQY MBaAFBtrlDuaPf9paAFRa+hHG8RYhWboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzJ1VU81bzlfMmxvQVZGcjZFY2J4RmlGWnVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zZDYxMDctNWJjZS00NzgwLWFlMTAt MjJkMzcxZDZjZGVlLzEvRzJ1VU81bzlfMmxvQVZGcjZFY2J4RmlGWnVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8zZDYxMDctNWJjZS00NzgwLWFlMTAtMjJkMzcxZDZjZGVl LzEvRzJ1VU81bzlfMmxvQVZGcjZFY2J4RmlGWnVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkKqbjnJu 3d6TNlunFZOSiCYZPzd90kk3V9/llOtDMgfhHARSOmycCQ5VCwFCJlieFajXSq+b c97DQQ1JknYIj5EhINyR896G1I7U4m7okuCHS5ZxFuM3vbHPotYNvYLyYt7xZIjE 7sKpImHAqgCP6zvWiGgM7nIp+hSC+av48Je4JAN1gohdQuhHB3Dnn9EwBKI8zev2 fWs4Fud4MiiOI6oxFb7Ka4SKbX+q7dnNCJGiWdRWDVs2SjbQH3xAhW47zEMmbRTf 1tDO+nOrvo4TVO/OMbO1k344cOQFnqmnAHtgnYq87iEuy3CEnpuHtwdG5vk1fyfN AEl73TPATVG9aQ== -----END CERTIFICATE-----Generated at Sat Dec 6 14:49:03 2025 by rpki-client