This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json) Hash identifier: 6Wu2b7O8NX4ysvcL2+molAPvGC9r054nGoaXWn7awFs= Subject key identifier: 3B:78:23:E0:1E:59:97:B6:8C:6A:C8:79:43:44:4F:C7:D8:8B:E6:32 Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af Certificate serial: 019AF42DEC6876CE3F8E43F0143CAC42B3E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 15:00:41 +0000 Manifest this update: Sat 06 Dec 2025 15:00:41 +0000 Manifest next update: Sun 07 Dec 2025 15:00:41 +0000 Files and hashes: 1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=) 2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: L8VYupWyGcHwZHEB8ddeEPZX2L0M5/WFYcmZBNq8wto=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2d:ec:68:76:ce:3f:8e:43:f0:14:3c:ac:42:b3:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af Validity Not Before: Dec 6 15:00:41 2025 GMT Not After : Dec 7 15:00:41 2025 GMT Subject: CN=3b7823e01e5997b68c6ac87943444fc7d88be632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9a:08:ae:d8:1d:08:d2:6b:27:ad:f7:5e:f8: 04:02:c9:d8:5d:45:ec:05:e1:8f:00:50:1a:e9:48: 16:4b:c9:16:59:62:f9:0c:12:c7:50:3f:9d:ad:25: 70:fb:cc:cf:44:e2:da:db:e0:f3:a3:16:73:3f:de: 99:a9:f6:51:0e:bd:cb:14:e2:dd:54:5b:f0:3b:90: 75:3d:65:fd:14:36:f5:7d:b8:57:21:10:24:a3:94: d6:75:83:92:20:a7:65:62:c0:58:3e:c1:db:d1:f0: bf:29:77:14:89:91:d1:00:06:cc:dd:55:14:55:2a: 16:c7:fd:53:a8:62:02:ff:a7:84:99:9a:d8:eb:a6: 46:c3:a5:5b:82:cc:f9:97:de:68:f1:28:c4:bd:67: 4f:9e:5d:25:eb:b1:d6:82:29:59:8f:c6:d8:e0:3c: 62:0a:57:01:ad:2e:58:f5:6f:15:31:a0:d8:5e:b7: f1:9a:bf:f5:ef:4e:05:b2:8a:7f:ef:ac:c0:68:e0: 4f:40:51:4e:cf:05:68:5a:7e:c8:12:ab:61:0a:b0: a3:6d:e8:08:4b:1b:a8:73:df:c3:b5:d3:fc:3a:00: 90:83:81:d5:3d:e6:a9:32:1b:45:ae:8d:2d:46:70: 37:80:e3:1d:da:c5:0b:9e:e9:99:55:f8:36:ff:63: b8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:78:23:E0:1E:59:97:B6:8C:6A:C8:79:43:44:4F:C7:D8:8B:E6:32 X509v3 Authority Key Identifier: keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:84:c4:5c:cd:8d:f7:52:3d:8b:10:ba:e2:be:8b:c8:d9:ae: e7:59:95:0e:47:30:ad:0e:22:26:75:87:66:e5:7a:46:a8:41: 14:9c:72:08:b4:ec:19:c6:87:24:7d:6c:24:4c:2c:cf:24:5f: 99:b4:79:80:39:fe:1c:80:22:c2:da:fb:ba:d1:c1:83:f6:bc: 5a:05:82:f2:2c:21:94:f1:1b:fa:99:8c:a7:a9:24:87:8a:76: a1:f3:ae:99:d0:84:1f:9e:cd:ec:1c:57:cd:ad:b8:83:26:83: e3:52:9f:ae:3f:d9:24:66:8d:d8:0a:c7:7e:48:bc:6d:98:41: 0c:ea:0c:0c:39:1e:87:24:08:0c:79:ac:16:82:78:97:6c:37: d9:5c:74:e0:a4:a2:df:9f:80:9b:16:5d:65:b6:58:69:8a:25: 55:f7:49:73:9c:3b:3e:59:08:6b:47:d5:49:06:d5:52:f3:cf: da:ef:fa:33:d5:18:d0:1c:e9:b3:cf:b5:cf:d5:4a:ad:b7:82: 98:4f:a3:a5:3d:98:c4:b9:76:c6:42:02:8f:1c:2e:8b:31:61: 47:e7:3a:7d:21:5d:c1:e4:5a:ec:c7:a3:7b:9e:13:19:2f:1d: eb:80:ab:55:7e:4d:2f:08:09:97:77:f7:a2:af:eb:54:48:9f: 79:27:66:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0Lexods4/jkPwFDysQrPmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2NhZmRlMzEzNWEyNmJkZDQxNzkwMjllZWJmNzQxNGU5 NjQzYWYwHhcNMjUxMjA2MTUwMDQxWhcNMjUxMjA3MTUwMDQxWjAzMTEwLwYDVQQD EygzYjc4MjNlMDFlNTk5N2I2OGM2YWM4Nzk0MzQ0NGZjN2Q4OGJlNjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5oIrtgdCNJrJ633XvgEAsnYXUXs BeGPAFAa6UgWS8kWWWL5DBLHUD+drSVw+8zPROLa2+DzoxZzP96ZqfZRDr3LFOLd VFvwO5B1PWX9FDb1fbhXIRAko5TWdYOSIKdlYsBYPsHb0fC/KXcUiZHRAAbM3VUU VSoWx/1TqGIC/6eEmZrY66ZGw6Vbgsz5l95o8SjEvWdPnl0l67HWgilZj8bY4Dxi ClcBrS5Y9W8VMaDYXrfxmr/1704Fsop/76zAaOBPQFFOzwVoWn7IEqthCrCjbegI Sxuoc9/DtdP8OgCQg4HVPeapMhtFro0tRnA3gOMd2sULnumZVfg2/2O4TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDt4I+AeWZe2jGrIeUNET8fYi+YyMB8GA1UdIwQY MBaAFBp8r94xNaJr3UF5Ap7r90FOlkOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMt MWM1MTA3Y2FiMzUzLzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMtMWM1MTA3Y2FiMzUz LzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHYTEXM2N 91I9ixC64r6LyNmu51mVDkcwrQ4iJnWHZuV6RqhBFJxyCLTsGcaHJH1sJEwszyRf mbR5gDn+HIAiwtr7utHBg/a8WgWC8iwhlPEb+pmMp6kkh4p2ofOumdCEH57N7BxX za24gyaD41Kfrj/ZJGaN2ArHfki8bZhBDOoMDDkehyQIDHmsFoJ4l2w32Vx04KSi 35+AmxZdZbZYaYolVfdJc5w7PlkIa0fVSQbVUvPP2u/6M9UY0Bzps8+1z9VKrbeC mE+jpT2YxLl2xkICjxwuizFhR+c6fSFdweRa7Meje54TGS8d64CrVX5NLwgJl3f3 oq/rVEifeSdmmA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:45:17 2025 by rpki-client