This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.mft File: GhgxUqZBpAN71soKarQcukbaV9s.mft (raw, json) Hash identifier: xpbzjgQPsvolSS7qlRHzjmMYo2iOctyfGUG9za2T/Cw= Subject key identifier: 57:59:C2:E7:85:0F:63:4F:BE:46:51:56:04:FB:2A:9C:7F:83:D5:D0 Authority key identifier: 1A:18:31:52:A6:41:A4:03:7B:D6:CA:0A:6A:B4:1C:BA:46:DA:57:DB Certificate issuer: /CN=1a183152a641a4037bd6ca0a6ab41cba46da57db Certificate serial: 019AF31BFE791CE62831727E9D15EC0766CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhgxUqZBpAN71soKarQcukbaV9s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.mft Manifest number: 1084 Signing time: Sat 06 Dec 2025 10:01:29 +0000 Manifest this update: Sat 06 Dec 2025 10:01:29 +0000 Manifest next update: Sun 07 Dec 2025 10:01:29 +0000 Files and hashes: 1: GhgxUqZBpAN71soKarQcukbaV9s.crl (hash: 73u2Y9vS03qfarcvxib1kOaZw8nsK6tJZoCOulzsezA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.crl rsync://rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.mft rsync://rpki.ripe.net/repository/DEFAULT/GhgxUqZBpAN71soKarQcukbaV9s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:fe:79:1c:e6:28:31:72:7e:9d:15:ec:07:66:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a183152a641a4037bd6ca0a6ab41cba46da57db Validity Not Before: Dec 6 10:01:29 2025 GMT Not After : Dec 7 10:01:29 2025 GMT Subject: CN=5759c2e7850f634fbe46515604fb2a9c7f83d5d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2d:8c:d8:02:54:49:d9:57:9e:26:30:e3:0b: 96:c0:d1:bc:13:74:7f:b1:1b:79:df:47:a3:62:5f: a6:0e:b1:e5:3b:8e:b1:68:c7:fc:cb:c3:29:3e:c9: da:86:b0:09:d9:8a:e8:b5:0d:ec:e2:57:49:b8:9d: d5:db:2f:86:ab:0a:7c:9a:6a:7a:af:93:ce:4e:78: f1:e0:90:e2:c7:1f:a8:6e:1c:47:a1:be:e3:06:f4: 90:0f:92:10:d6:a4:47:52:2b:11:02:37:a2:1a:7a: ae:07:e9:ef:bb:b0:58:52:9d:bc:60:f3:7a:5a:d8: a4:dd:2b:04:80:f2:55:82:fe:c3:9a:dd:6d:ed:bd: b5:dd:40:32:05:d8:5e:eb:15:50:a1:3f:4c:f7:69: 45:51:1a:bc:9f:d4:2a:3d:1e:6b:21:43:49:cb:1f: 27:13:48:6f:17:20:8b:d0:24:68:67:84:28:d0:a1: 92:10:5e:d9:d1:ef:d8:bb:39:5c:1c:84:92:58:28: 02:6e:9f:67:0b:83:16:6d:7c:de:d2:7a:f7:b4:16: 8a:c1:cc:c5:30:6e:0e:8b:1b:e8:3a:23:ed:a5:12: ab:b0:71:f5:99:bf:b3:d9:ae:0b:ee:b9:73:9d:19: 5c:6f:5a:00:f0:9f:2f:68:7a:18:e2:43:8e:d6:e0: 22:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:59:C2:E7:85:0F:63:4F:BE:46:51:56:04:FB:2A:9C:7F:83:D5:D0 X509v3 Authority Key Identifier: keyid:1A:18:31:52:A6:41:A4:03:7B:D6:CA:0A:6A:B4:1C:BA:46:DA:57:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhgxUqZBpAN71soKarQcukbaV9s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/c3e03d-a4db-4050-906c-56294c708faf/1/GhgxUqZBpAN71soKarQcukbaV9s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:b2:1d:81:b1:56:48:ee:1e:52:42:df:87:1d:94:1c:50:0e: a4:2c:63:2f:7f:d9:a5:fb:1f:01:a9:e6:0b:79:e1:d9:78:09: c0:d7:1f:44:10:e2:a0:3c:28:63:a8:29:bc:5b:5e:6b:37:79: 54:09:cc:55:ae:5a:23:15:07:d4:91:c7:ff:3e:0b:3c:32:15: 15:8b:4b:3b:38:9f:b9:5b:79:51:35:12:a7:67:99:9d:30:b6: 3b:12:51:48:6b:51:a3:76:07:27:7b:41:32:09:ab:4c:ba:02: 0d:34:e6:fc:33:35:da:11:3d:43:38:79:64:ab:2e:84:d9:8f: 85:66:f5:cc:b7:34:51:9d:56:c6:8c:58:60:34:03:44:06:8b: 9c:77:cd:e3:a5:1b:19:46:1e:2b:e1:89:43:5c:ea:43:df:f1: ec:d8:1a:20:5a:1d:e6:a5:a8:09:1d:6d:06:c6:a6:fe:bb:b1: 58:8e:7d:bb:da:11:a0:23:19:a9:7e:86:37:53:bc:b7:12:f3: 2c:27:e7:a5:db:77:49:3c:1e:4f:4d:cf:d8:79:29:30:75:a6: 65:cc:d1:5e:2f:b1:d1:d5:9f:05:08:fc:1f:ff:40:da:5e:68: 50:5e:03:08:15:31:d5:8b:95:cd:88:8e:9c:e9:7f:49:13:02: 0c:2f:ab:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG/55HOYoMXJ+nRXsB2bKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhMTgzMTUyYTY0MWE0MDM3YmQ2Y2EwYTZhYjQxY2JhNDZk YTU3ZGIwHhcNMjUxMjA2MTAwMTI5WhcNMjUxMjA3MTAwMTI5WjAzMTEwLwYDVQQD Eyg1NzU5YzJlNzg1MGY2MzRmYmU0NjUxNTYwNGZiMmE5YzdmODNkNWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC2M2AJUSdlXniYw4wuWwNG8E3R/ sRt530ejYl+mDrHlO46xaMf8y8MpPsnahrAJ2YrotQ3s4ldJuJ3V2y+Gqwp8mmp6 r5POTnjx4JDixx+obhxHob7jBvSQD5IQ1qRHUisRAjeiGnquB+nvu7BYUp28YPN6 Wtik3SsEgPJVgv7Dmt1t7b213UAyBdhe6xVQoT9M92lFURq8n9QqPR5rIUNJyx8n E0hvFyCL0CRoZ4Qo0KGSEF7Z0e/YuzlcHISSWCgCbp9nC4MWbXze0nr3tBaKwczF MG4OixvoOiPtpRKrsHH1mb+z2a4L7rlznRlcb1oA8J8vaHoY4kOO1uAiSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFdZwueFD2NPvkZRVgT7Kpx/g9XQMB8GA1UdIwQY MBaAFBoYMVKmQaQDe9bKCmq0HLpG2lfbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2hneFVxWkJwQU43MXNvS2FyUWN1a2JhVjlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9jM2UwM2QtYTRkYi00MDUwLTkwNmMt NTYyOTRjNzA4ZmFmLzEvR2hneFVxWkJwQU43MXNvS2FyUWN1a2JhVjlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My9jM2UwM2QtYTRkYi00MDUwLTkwNmMtNTYyOTRjNzA4ZmFm LzEvR2hneFVxWkJwQU43MXNvS2FyUWN1a2JhVjlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADbIdgbFW SO4eUkLfhx2UHFAOpCxjL3/ZpfsfAanmC3nh2XgJwNcfRBDioDwoY6gpvFteazd5 VAnMVa5aIxUH1JHH/z4LPDIVFYtLOzifuVt5UTUSp2eZnTC2OxJRSGtRo3YHJ3tB MgmrTLoCDTTm/DM12hE9Qzh5ZKsuhNmPhWb1zLc0UZ1WxoxYYDQDRAaLnHfN46Ub GUYeK+GJQ1zqQ9/x7NgaIFod5qWoCR1tBsam/ruxWI59u9oRoCMZqX6GN1O8txLz LCfnpdt3STweT03P2HkpMHWmZczRXi+x0dWfBQj8H/9A2l5oUF4DCBUx1YuVzYiO nOl/SRMCDC+rLw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:48:10 2025 by rpki-client