This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft File: g2pzvtdapO-ld-2QrTVi4hlR0bI.mft (raw, json) Hash identifier: NHD5ytmnJpFVoDMAMlVucbBou9zeiKf7HfF2s66HhDw= Subject key identifier: 85:7C:7A:5D:95:40:D8:EA:EF:23:3A:7D:A5:91:AF:B1:54:E6:5D:5E Authority key identifier: 83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2 Certificate issuer: /CN=836a73bed75aa4efa577ed90ad3562e21951d1b2 Certificate serial: 019AF2AD618F89859300B97702FCF5151E64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft Manifest number: 1568 Signing time: Sat 06 Dec 2025 08:00:40 +0000 Manifest this update: Sat 06 Dec 2025 08:00:40 +0000 Manifest next update: Sun 07 Dec 2025 08:00:40 +0000 Files and hashes: 1: g2pzvtdapO-ld-2QrTVi4hlR0bI.crl (hash: p3Y0oUk9/oA5vS6vYaWDoCaVQCHp6lnCnJDX4qyPYbY=) 2: pCExSDuPpylceZEh-3ghVJcWtXU.roa (hash: EmDT0awECjqFFQZyEcdl/Y2PrhZj4pSyXOCLhHqwv2c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:61:8f:89:85:93:00:b9:77:02:fc:f5:15:1e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=836a73bed75aa4efa577ed90ad3562e21951d1b2 Validity Not Before: Dec 6 08:00:40 2025 GMT Not After : Dec 7 08:00:40 2025 GMT Subject: CN=857c7a5d9540d8eaef233a7da591afb154e65d5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:78:16:e4:d8:f1:11:19:ec:55:c0:dd:b6:5a: a9:56:94:48:bc:ef:24:f3:27:37:1a:e3:f7:c2:78: ae:0e:73:ca:f7:f3:5e:4b:d3:47:ec:43:c6:31:a6: 56:18:1e:62:ac:da:5f:cc:a1:b3:51:55:38:24:69: 3f:cb:97:3b:8e:4e:fc:0f:28:d2:c7:41:61:6f:bc: 8a:42:18:8a:c0:d2:17:97:f4:3f:92:d4:8f:93:c1: 24:f1:cc:85:13:15:90:db:23:38:5a:54:b9:71:a4: 7c:55:79:a2:cc:5e:c6:c8:79:4d:18:ff:f7:f0:9d: 03:51:72:18:b9:c3:9d:5b:08:3d:89:f1:98:bf:4d: 16:f3:2e:46:03:0e:a6:d3:53:49:c8:45:2c:9e:7f: 08:65:c6:61:b3:a8:46:11:f8:a2:07:1b:69:fe:ab: 63:c5:99:d8:5e:51:68:31:40:c5:f8:ee:e9:3c:71: f2:e6:df:6c:67:17:79:cb:82:0e:89:0d:c2:ac:61: f9:9f:ba:61:01:ec:40:79:0c:2d:9b:71:c7:ff:1d: 2e:79:51:86:c2:0a:a3:63:11:4c:bb:f0:2f:6f:37: 97:07:6c:10:9a:8c:b0:bd:db:5d:62:4e:a2:2d:55: 09:55:e0:9a:17:fa:40:5b:ac:0e:88:5e:29:14:ef: fd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7C:7A:5D:95:40:D8:EA:EF:23:3A:7D:A5:91:AF:B1:54:E6:5D:5E X509v3 Authority Key Identifier: keyid:83:6A:73:BE:D7:5A:A4:EF:A5:77:ED:90:AD:35:62:E2:19:51:D1:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2pzvtdapO-ld-2QrTVi4hlR0bI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/ab34ad-9e9a-4289-8727-b1acd75018c3/1/g2pzvtdapO-ld-2QrTVi4hlR0bI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:ae:59:83:f6:51:1b:a1:95:ff:af:c5:22:8c:ed:e0:b5:a7: dd:0d:63:5b:8b:0c:40:2a:ba:b9:80:e1:a4:cc:ee:2f:6a:83: ec:58:b9:dc:5f:6f:ff:ac:5e:7b:2b:23:49:72:d5:3a:d9:94: b9:14:71:98:98:e5:5a:1d:b8:a1:f0:4a:92:6c:b9:07:b8:aa: b1:5a:27:93:7f:a1:05:eb:46:07:e7:f9:ad:75:ad:d3:fa:0d: 66:d0:f3:e7:6b:f6:a9:08:ba:30:b8:d0:e0:c2:53:10:12:9a: e6:7d:1d:7e:34:e6:ad:b8:37:0c:58:4a:46:05:a8:6c:47:29: 57:16:aa:c4:61:48:21:fb:be:18:91:5c:27:26:37:d3:1d:7d: 40:99:a0:52:1e:20:d7:e5:4c:b2:68:ae:b5:c2:19:c4:1e:59: 06:fb:cd:f2:a0:1a:c1:16:8d:48:eb:fa:0b:61:8d:f5:6d:3b: f6:84:16:47:5e:d3:c7:9a:de:2e:0c:ce:43:59:90:f0:1a:ea: 91:51:4d:89:6f:a9:48:e7:50:98:b2:1d:90:c6:97:a7:c2:2b: c6:74:21:53:65:de:fe:94:98:c2:11:0e:77:d3:99:ab:92:d9: 96:2c:00:30:94:e6:c7:d4:d5:ab:81:80:a5:3f:c1:18:71:09: c8:58:50:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWGPiYWTALl3Avz1FR5kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNmE3M2JlZDc1YWE0ZWZhNTc3ZWQ5MGFkMzU2MmUyMTk1 MWQxYjIwHhcNMjUxMjA2MDgwMDQwWhcNMjUxMjA3MDgwMDQwWjAzMTEwLwYDVQQD Eyg4NTdjN2E1ZDk1NDBkOGVhZWYyMzNhN2RhNTkxYWZiMTU0ZTY1ZDVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHgW5NjxERnsVcDdtlqpVpRIvO8k 8yc3GuP3wniuDnPK9/NeS9NH7EPGMaZWGB5irNpfzKGzUVU4JGk/y5c7jk78DyjS x0Fhb7yKQhiKwNIXl/Q/ktSPk8Ek8cyFExWQ2yM4WlS5caR8VXmizF7GyHlNGP/3 8J0DUXIYucOdWwg9ifGYv00W8y5GAw6m01NJyEUsnn8IZcZhs6hGEfiiBxtp/qtj xZnYXlFoMUDF+O7pPHHy5t9sZxd5y4IOiQ3CrGH5n7phAexAeQwtm3HH/x0ueVGG wgqjYxFMu/AvbzeXB2wQmoywvdtdYk6iLVUJVeCaF/pAW6wOiF4pFO/9+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIV8el2VQNjq7yM6faWRr7FU5l1eMB8GA1UdIwQY MBaAFINqc77XWqTvpXftkK01YuIZUdGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzJwenZ0ZGFwTy1sZC0yUXJUVmk0aGxSMGJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9hYjM0YWQtOWU5YS00Mjg5LTg3Mjct YjFhY2Q3NTAxOGMzLzEvZzJwenZ0ZGFwTy1sZC0yUXJUVmk0aGxSMGJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC9hYjM0YWQtOWU5YS00Mjg5LTg3MjctYjFhY2Q3NTAxOGMz LzEvZzJwenZ0ZGFwTy1sZC0yUXJUVmk0aGxSMGJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE65Zg/ZR G6GV/6/FIozt4LWn3Q1jW4sMQCq6uYDhpMzuL2qD7Fi53F9v/6xeeysjSXLVOtmU uRRxmJjlWh24ofBKkmy5B7iqsVonk3+hBetGB+f5rXWt0/oNZtDz52v2qQi6MLjQ 4MJTEBKa5n0dfjTmrbg3DFhKRgWobEcpVxaqxGFIIfu+GJFcJyY30x19QJmgUh4g 1+VMsmiutcIZxB5ZBvvN8qAawRaNSOv6C2GN9W079oQWR17Tx5reLgzOQ1mQ8Brq kVFNiW+pSOdQmLIdkMaXp8IrxnQhU2Xe/pSYwhEOd9OZq5LZliwAMJTmx9TVq4GA pT/BGHEJyFhQYQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:11:01 2025 by rpki-client