This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft File: geY5cEKnqWRfwS91nQJhldfL_Vg.mft (raw, json) Hash identifier: hYKf2s1akzwG+nsDFUU3PuKCPGuaU2mnIcG/b8DjsO0= Subject key identifier: EF:01:7D:A0:DA:F6:DB:03:34:73:2F:9D:D4:0A:3D:99:64:0A:2F:C7 Authority key identifier: 81:E6:39:70:42:A7:A9:64:5F:C1:2F:75:9D:02:61:95:D7:CB:FD:58 Certificate issuer: /CN=81e6397042a7a9645fc12f759d026195d7cbfd58 Certificate serial: 019AF38A17A9C06984CF66B4D9B82E9620CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft Manifest number: 0E6D Signing time: Sat 06 Dec 2025 12:01:44 +0000 Manifest this update: Sat 06 Dec 2025 12:01:44 +0000 Manifest next update: Sun 07 Dec 2025 12:01:44 +0000 Files and hashes: 1: geY5cEKnqWRfwS91nQJhldfL_Vg.crl (hash: EbyGJ66MszMWLHLoCUdqsBoOfCjzXe1+N2/jBAf/Dlo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.crl rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:17:a9:c0:69:84:cf:66:b4:d9:b8:2e:96:20:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81e6397042a7a9645fc12f759d026195d7cbfd58 Validity Not Before: Dec 6 12:01:44 2025 GMT Not After : Dec 7 12:01:44 2025 GMT Subject: CN=ef017da0daf6db0334732f9dd40a3d99640a2fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:bb:94:a3:0e:01:c4:0c:75:33:a4:ce:7f: 15:d6:8a:32:fa:3c:63:e6:93:3e:f9:e4:7f:29:b5: 2d:40:51:da:81:8f:e9:fd:07:b9:e7:aa:d5:03:32: 0b:28:2d:73:12:a8:cd:33:32:a0:c9:fe:12:59:1e: 9a:73:05:01:50:2d:36:f9:c4:d2:46:d1:dc:d6:e3: 5b:0d:bc:ff:d9:e1:ba:0b:07:56:1e:2c:3a:27:c6: a5:77:70:b6:7d:1a:e1:44:54:c3:01:c2:06:1f:1c: a2:4a:24:74:e5:93:63:45:03:2c:f0:49:07:4c:65: c7:9d:74:2c:57:99:84:7a:4d:e4:78:9d:88:d1:cf: d8:c2:e6:88:3a:96:3b:59:93:01:51:42:6e:0d:bb: b3:34:9e:a2:9e:88:3a:f2:a9:ad:f8:cd:54:ba:2e: 13:45:ec:af:0c:a4:54:5c:a1:5c:61:9d:35:79:83: a2:b8:87:da:1c:63:de:b5:3a:0f:b1:68:57:99:d2: d7:21:b9:91:71:f2:35:f9:aa:64:90:8b:4b:27:cf: 0a:cf:12:61:7d:cf:4b:b9:51:c6:de:0c:4c:1f:2a: d1:c7:96:c8:f4:48:fa:97:ad:32:d9:a4:72:36:19: 90:cf:73:b2:2d:77:30:c6:8f:d0:e2:60:52:b2:ed: 65:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:01:7D:A0:DA:F6:DB:03:34:73:2F:9D:D4:0A:3D:99:64:0A:2F:C7 X509v3 Authority Key Identifier: keyid:81:E6:39:70:42:A7:A9:64:5F:C1:2F:75:9D:02:61:95:D7:CB:FD:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geY5cEKnqWRfwS91nQJhldfL_Vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f8f1b-f3f1-4f1b-9ac4-5ca6a7ad05fa/1/geY5cEKnqWRfwS91nQJhldfL_Vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:73:df:b2:84:6d:68:e5:af:0a:62:89:e6:4c:6a:e9:7b:00: e3:c0:f7:ba:c7:bc:af:7c:02:99:52:05:88:aa:fc:08:9e:87: c1:28:f4:66:6e:7c:c3:07:81:b3:bb:43:f7:49:9c:73:0a:bb: 0a:04:96:8e:c5:d3:dd:58:42:44:ec:f9:04:ca:dd:49:8c:8b: 69:50:a7:0f:0c:4c:67:7c:6a:a3:7f:22:c7:fc:8a:75:f5:a1: 7c:b7:e4:fd:20:3c:50:26:49:06:87:02:7e:1e:32:39:77:c3: 0b:09:a2:99:4a:6c:c1:2d:89:0d:b3:06:81:94:75:71:cb:2b: a6:c9:2d:99:56:43:f9:70:67:ff:6c:7c:ea:bf:cf:d1:d6:bf: d1:72:65:0d:56:e6:bc:5d:d1:6d:ee:9d:50:ea:13:bb:06:9b: 7d:b5:68:71:94:e5:09:93:82:24:57:3a:1c:bd:bd:28:e0:42: cd:19:7c:6c:c0:a8:4c:98:8f:71:ab:f8:79:76:e2:3e:4f:a5: 6e:53:d6:72:99:fd:27:8d:98:3c:34:3d:6b:fa:2b:e4:56:01: 86:5f:5a:21:d4:da:70:d2:b2:b8:f2:15:b7:98:1a:b3:86:e1: 36:a7:99:27:48:db:85:e8:be:50:36:f3:b9:ac:58:e7:12:9e: f8:bc:3c:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzihepwGmEz2a02bguliDLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZTYzOTcwNDJhN2E5NjQ1ZmMxMmY3NTlkMDI2MTk1ZDdj YmZkNTgwHhcNMjUxMjA2MTIwMTQ0WhcNMjUxMjA3MTIwMTQ0WjAzMTEwLwYDVQQD EyhlZjAxN2RhMGRhZjZkYjAzMzQ3MzJmOWRkNDBhM2Q5OTY0MGEyZmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIm7lKMOAcQMdTOkzn8V1ooy+jxj 5pM++eR/KbUtQFHagY/p/Qe556rVAzILKC1zEqjNMzKgyf4SWR6acwUBUC02+cTS RtHc1uNbDbz/2eG6CwdWHiw6J8ald3C2fRrhRFTDAcIGHxyiSiR05ZNjRQMs8EkH TGXHnXQsV5mEek3keJ2I0c/YwuaIOpY7WZMBUUJuDbuzNJ6inog68qmt+M1Uui4T ReyvDKRUXKFcYZ01eYOiuIfaHGPetToPsWhXmdLXIbmRcfI1+apkkItLJ88KzxJh fc9LuVHG3gxMHyrRx5bI9Ej6l60y2aRyNhmQz3OyLXcwxo/Q4mBSsu1lCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO8BfaDa9tsDNHMvndQKPZlkCi/HMB8GA1UdIwQY MBaAFIHmOXBCp6lkX8EvdZ0CYZXXy/1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjhmMWItZjNmMS00ZjFiLTlhYzQt NWNhNmE3YWQwNWZhLzEvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS81ZjhmMWItZjNmMS00ZjFiLTlhYzQtNWNhNmE3YWQwNWZh LzEvZ2VZNWNFS25xV1Jmd1M5MW5RSmhsZGZMX1ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATnPfsoRt aOWvCmKJ5kxq6XsA48D3use8r3wCmVIFiKr8CJ6HwSj0Zm58wweBs7tD90mccwq7 CgSWjsXT3VhCROz5BMrdSYyLaVCnDwxMZ3xqo38ix/yKdfWhfLfk/SA8UCZJBocC fh4yOXfDCwmimUpswS2JDbMGgZR1ccsrpsktmVZD+XBn/2x86r/P0da/0XJlDVbm vF3Rbe6dUOoTuwabfbVocZTlCZOCJFc6HL29KOBCzRl8bMCoTJiPcav4eXbiPk+l blPWcpn9J42YPDQ9a/or5FYBhl9aIdTacNKyuPIVt5gas4bhNqeZJ0jbhei+UDbz uaxY5xKe+Lw83g== -----END CERTIFICATE-----Generated at Sat Dec 6 22:41:26 2025 by rpki-client