This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft File: Cga2XLuXZnq9_5uGGiL50B0dRss.mft (raw, json) Hash identifier: IaKG3v267Uhw8jpUdKGVa+P5zFb5DES7umDRLfrWX2U= Subject key identifier: 25:89:F2:6F:FD:97:50:D1:8E:2D:23:9A:A8:56:89:69:EA:CA:A9:83 Authority key identifier: 0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB Certificate issuer: /CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb Certificate serial: 019AF2096C16FF66461AA5BBD119DD387827 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:34 +0000 Manifest this update: Sat 06 Dec 2025 05:01:34 +0000 Manifest next update: Sun 07 Dec 2025 05:01:34 +0000 Files and hashes: 1: Cga2XLuXZnq9_5uGGiL50B0dRss.crl (hash: 1m8mx59YClP9VTi845KxcGS74NelrPOfgYtprP1oCXg=) 2: xnuUEnVXaSzz9cF5USCrsyD97so.roa (hash: j10VBwI4MUaDD8l8nXJ3vdwJpNrClSEXJCQ84BCSTro=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:6c:16:ff:66:46:1a:a5:bb:d1:19:dd:38:78:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a06b65cbb97667abdff9b861a22f9d01d1d46cb Validity Not Before: Dec 6 05:01:34 2025 GMT Not After : Dec 7 05:01:34 2025 GMT Subject: CN=2589f26ffd9750d18e2d239aa8568969eacaa983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:12:bd:a6:eb:23:0a:31:b7:7c:cc:12:43:2e: 48:60:33:f7:46:39:cb:ca:e6:8c:6d:f8:61:69:e7: bb:c9:61:97:3f:f3:ec:90:ea:00:bd:d8:60:66:7b: 68:d5:1a:ff:01:c7:03:9a:0d:20:7a:4d:93:72:3f: 4d:87:3f:02:3a:95:a3:f3:d9:ba:58:c3:43:5f:27: 37:21:91:48:d1:45:24:e9:b7:87:71:40:d5:44:33: 39:ae:70:ab:c4:a1:7c:c0:96:08:e5:0d:f2:65:a4: 54:90:ef:3b:15:e0:9d:42:aa:4c:be:84:f2:91:39: 10:d7:ec:ab:f9:38:4b:7a:f3:32:73:4b:58:57:c0: 2a:90:b7:70:08:b7:af:ef:d0:25:62:9d:5a:9c:35: b5:2b:a7:1d:a0:47:63:d0:89:75:9a:e4:a9:be:ff: ad:6b:2e:17:94:1f:dc:bf:d2:b2:9c:65:1a:f0:22: 31:de:63:e4:cf:d5:7b:8c:f8:cd:f2:8e:27:77:07: b0:d5:52:47:9b:20:c0:29:8a:b4:40:f3:af:ff:13: 56:35:21:48:95:7c:6e:ce:70:c0:e1:00:9b:a3:c3: 67:ab:59:3a:50:21:1b:3a:0b:66:fb:ea:55:82:fb: d3:45:02:fb:5c:e4:3a:20:94:53:49:6f:25:94:97: 20:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:89:F2:6F:FD:97:50:D1:8E:2D:23:9A:A8:56:89:69:EA:CA:A9:83 X509v3 Authority Key Identifier: keyid:0A:06:B6:5C:BB:97:66:7A:BD:FF:9B:86:1A:22:F9:D0:1D:1D:46:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cga2XLuXZnq9_5uGGiL50B0dRss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/2e18f7-09c7-45b1-bcb7-9f6686e42800/1/Cga2XLuXZnq9_5uGGiL50B0dRss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:a0:a5:4c:94:a7:c8:45:a1:29:2d:38:78:7b:94:6e:e6:2f: e9:f1:e3:46:e9:5f:36:ea:1f:16:34:4f:e3:d8:b4:4a:13:49: 4d:b2:db:a7:05:95:61:81:21:76:38:88:f4:af:2e:d0:62:b9: cb:d4:dd:28:c6:9c:ee:f3:46:ef:bc:d8:c3:f0:c3:31:51:31: f9:da:e7:91:52:76:c9:1c:be:dd:62:29:35:df:0d:df:46:6b: 03:de:d5:04:01:78:df:dc:5d:62:e4:cc:72:4d:fc:74:fb:b6: fc:97:86:14:da:0c:27:e0:14:5c:2f:3d:22:c7:24:91:6e:8b: 5d:99:dc:55:c7:71:28:58:3b:a2:51:ed:d6:be:c7:55:23:96: 19:72:38:ce:13:27:e1:9b:8a:1e:2e:aa:ae:ba:a1:fc:aa:c2: 77:78:e5:fa:a9:ae:08:13:8c:b7:7b:5a:63:5f:eb:3b:46:aa: 65:60:cc:e0:01:34:09:b1:af:4f:3d:83:8f:9f:45:81:fd:38: 73:1b:4f:40:5e:96:9e:3e:21:ea:3f:e4:2a:40:0e:fa:08:d2: 6f:0a:cc:3d:06:7c:9b:0e:83:57:8b:77:8a:c3:51:8f:21:cd: 2e:8f:8a:04:80:01:22:d5:b3:e3:12:89:dd:f9:04:cc:7c:5e: 08:f2:10:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCWwW/2ZGGqW70RndOHgnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhMDZiNjVjYmI5NzY2N2FiZGZmOWI4NjFhMjJmOWQwMWQx ZDQ2Y2IwHhcNMjUxMjA2MDUwMTM0WhcNMjUxMjA3MDUwMTM0WjAzMTEwLwYDVQQD EygyNTg5ZjI2ZmZkOTc1MGQxOGUyZDIzOWFhODU2ODk2OWVhY2FhOTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxK9pusjCjG3fMwSQy5IYDP3RjnL yuaMbfhhaee7yWGXP/PskOoAvdhgZnto1Rr/AccDmg0gek2Tcj9Nhz8COpWj89m6 WMNDXyc3IZFI0UUk6beHcUDVRDM5rnCrxKF8wJYI5Q3yZaRUkO87FeCdQqpMvoTy kTkQ1+yr+ThLevMyc0tYV8AqkLdwCLev79AlYp1anDW1K6cdoEdj0Il1muSpvv+t ay4XlB/cv9KynGUa8CIx3mPkz9V7jPjN8o4ndwew1VJHmyDAKYq0QPOv/xNWNSFI lXxuznDA4QCbo8Nnq1k6UCEbOgtm++pVgvvTRQL7XOQ6IJRTSW8llJcgjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWJ8m/9l1DRji0jmqhWiWnqyqmDMB8GA1UdIwQY MBaAFAoGtly7l2Z6vf+bhhoi+dAdHUbLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8yZTE4ZjctMDljNy00NWIxLWJjYjct OWY2Njg2ZTQyODAwLzEvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8yZTE4ZjctMDljNy00NWIxLWJjYjctOWY2Njg2ZTQyODAw LzEvQ2dhMlhMdVhabnE5XzV1R0dpTDUwQjBkUnNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlaClTJSn yEWhKS04eHuUbuYv6fHjRulfNuofFjRP49i0ShNJTbLbpwWVYYEhdjiI9K8u0GK5 y9TdKMac7vNG77zYw/DDMVEx+drnkVJ2yRy+3WIpNd8N30ZrA97VBAF439xdYuTM ck38dPu2/JeGFNoMJ+AUXC89IsckkW6LXZncVcdxKFg7olHt1r7HVSOWGXI4zhMn 4ZuKHi6qrrqh/KrCd3jl+qmuCBOMt3taY1/rO0aqZWDM4AE0CbGvTz2Dj59Fgf04 cxtPQF6Wnj4h6j/kKkAO+gjSbwrMPQZ8mw6DV4t3isNRjyHNLo+KBIABItWz4xKJ 3fkEzHxeCPIQQA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:37:16 2025 by rpki-client