This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft File: g1-7knspUGK30KcgR7a0qhsPmyk.mft (raw, json) Hash identifier: +262EI4tW08+Mt9+/Xm40XNcqCEkXqxhvEzc/B19+hc= Subject key identifier: 82:7D:28:FF:A7:EC:96:41:65:79:63:EC:33:3A:DC:BE:72:0B:3D:CC Authority key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29 Certificate issuer: /CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29 Certificate serial: 019AF19AD853128ED1D8124C5D4D9F02A4AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft Manifest number: 0C92 Signing time: Sat 06 Dec 2025 03:00:48 +0000 Manifest this update: Sat 06 Dec 2025 03:00:48 +0000 Manifest next update: Sun 07 Dec 2025 03:00:48 +0000 Files and hashes: 1: Xz1rL6dK4mQZieGCdBgSZgZHbZ4.roa (hash: gmK1QKVfo/W+VuZX9S2XVVxCk24nsYt3d8ghU+Ddwrs=) 2: g1-7knspUGK30KcgR7a0qhsPmyk.crl (hash: p9jJJ9h1Sb+LSYYUlelUWlK+6AbJ6zIREZXq9m1u24s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:d8:53:12:8e:d1:d8:12:4c:5d:4d:9f:02:a4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29 Validity Not Before: Dec 6 03:00:48 2025 GMT Not After : Dec 7 03:00:48 2025 GMT Subject: CN=827d28ffa7ec9641657963ec333adcbe720b3dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:37:f8:8c:81:aa:a5:ef:1b:8a:ab:74:38:77: 46:87:b7:a6:3c:85:02:e2:0f:5b:5d:ef:bd:ce:24: ce:56:07:d8:72:ef:07:d9:1e:e1:b2:6e:05:49:d7: ab:c4:36:43:be:04:ea:89:b7:c2:61:af:8f:93:b5: df:ca:9a:fc:19:d2:8c:ab:63:2f:5e:b6:8d:c3:72: 00:1f:36:7d:38:72:b2:22:cc:01:c1:12:df:f1:21: cb:aa:03:8a:07:dc:00:e0:34:ee:8f:36:ce:fb:fe: d0:14:e7:82:15:55:1b:11:11:8c:d6:53:f6:12:32: 8d:61:5e:ee:de:e9:1a:1b:23:b1:a3:40:2d:c8:87: 8c:04:23:ef:7c:41:ea:fa:93:ff:18:71:39:de:ff: 9f:9f:fd:cf:ab:33:a9:02:36:91:c3:c0:c4:17:84: 0d:64:90:e6:b6:ea:81:b8:80:02:c0:9b:3a:da:6b: 0a:30:74:e0:56:ce:f6:e2:9c:f9:86:07:82:fd:b2: a4:57:e4:98:91:9a:6f:dd:6e:06:79:cc:06:49:50: 72:b1:63:07:42:62:10:e5:9e:d9:1a:d4:33:9d:ad: d6:91:e5:ca:57:97:7b:36:88:c7:08:49:7b:34:5f: a1:69:8a:1a:63:0b:ba:c3:12:85:3d:8a:a6:05:bb: 54:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7D:28:FF:A7:EC:96:41:65:79:63:EC:33:3A:DC:BE:72:0B:3D:CC X509v3 Authority Key Identifier: keyid:83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:2d:f0:3c:19:25:01:c9:28:af:29:5c:db:a8:76:9b:73:75: 21:96:81:b6:de:72:c3:8a:06:70:f3:f2:69:b7:2d:29:0b:9f: ae:13:46:6c:04:74:6f:9e:56:b0:44:1d:8b:60:ab:ec:6d:c4: ae:32:19:b3:2c:9b:92:48:d4:0f:65:07:71:47:4c:f5:7e:4c: ba:e6:37:2c:e1:14:7f:22:9b:27:c4:14:ef:dd:ee:4a:6f:57: ff:a5:5e:2e:89:bf:90:71:ac:38:05:3a:04:45:ca:e7:fb:0d: dd:d2:80:7f:e0:c4:21:a5:f0:8c:95:1c:79:7a:dd:9f:5b:05: c2:99:ce:04:b0:c9:fe:2d:1e:11:0e:e5:d5:c2:a4:af:de:b5: 5b:1f:d8:10:0e:d5:fe:0b:60:a4:f0:69:eb:28:7a:f6:ad:11: ef:27:26:c4:02:86:70:95:17:85:f0:f4:b9:eb:bd:14:4b:af: 63:cc:a1:e3:78:db:1a:2f:88:04:75:28:aa:aa:ee:f4:e0:a2: 64:bd:0f:4b:4f:ce:cc:63:bd:54:f6:4d:3b:bb:23:af:f1:6c: ff:a2:e5:e8:20:c2:09:1d:0e:45:1e:c1:0f:9c:cc:66:2e:63: c3:9f:45:4d:f6:69:cb:11:eb:35:be:08:62:5c:32:60:3d:3b: 4f:28:c3:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmthTEo7R2BJMXU2fAqSuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWZiYjkyN2IyOTUwNjJiN2QwYTcyMDQ3YjZiNGFhMWIw ZjliMjkwHhcNMjUxMjA2MDMwMDQ4WhcNMjUxMjA3MDMwMDQ4WjAzMTEwLwYDVQQD Eyg4MjdkMjhmZmE3ZWM5NjQxNjU3OTYzZWMzMzNhZGNiZTcyMGIzZGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzf4jIGqpe8biqt0OHdGh7emPIUC 4g9bXe+9ziTOVgfYcu8H2R7hsm4FSderxDZDvgTqibfCYa+Pk7Xfypr8GdKMq2Mv XraNw3IAHzZ9OHKyIswBwRLf8SHLqgOKB9wA4DTujzbO+/7QFOeCFVUbERGM1lP2 EjKNYV7u3ukaGyOxo0AtyIeMBCPvfEHq+pP/GHE53v+fn/3PqzOpAjaRw8DEF4QN ZJDmtuqBuIACwJs62msKMHTgVs724pz5hgeC/bKkV+SYkZpv3W4GecwGSVBysWMH QmIQ5Z7ZGtQzna3WkeXKV5d7NojHCEl7NF+haYoaYwu6wxKFPYqmBbtUUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJ9KP+n7JZBZXlj7DM63L5yCz3MMB8GA1UdIwQY MBaAFINfu5J7KVBit9CnIEe2tKobD5spMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzEtN2tuc3BVR0szMEtjZ1I3YTBxaHNQbXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9jNjRiZjQtYzYwNS00NjFhLWJiNzQt YjE4ZjhmN2Q5MGU4LzEvZzEtN2tuc3BVR0szMEtjZ1I3YTBxaHNQbXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9jNjRiZjQtYzYwNS00NjFhLWJiNzQtYjE4ZjhmN2Q5MGU4 LzEvZzEtN2tuc3BVR0szMEtjZ1I3YTBxaHNQbXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYC3wPBkl Ackorylc26h2m3N1IZaBtt5yw4oGcPPyabctKQufrhNGbAR0b55WsEQdi2Cr7G3E rjIZsyybkkjUD2UHcUdM9X5MuuY3LOEUfyKbJ8QU793uSm9X/6VeLom/kHGsOAU6 BEXK5/sN3dKAf+DEIaXwjJUceXrdn1sFwpnOBLDJ/i0eEQ7l1cKkr961Wx/YEA7V /gtgpPBp6yh69q0R7ycmxAKGcJUXhfD0ueu9FEuvY8yh43jbGi+IBHUoqqru9OCi ZL0PS0/OzGO9VPZNO7sjr/Fs/6Ll6CDCCR0ORR7BD5zMZi5jw59FTfZpyxHrNb4I YlwyYD07TyjDyg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:25:03 2025 by rpki-client