This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json) Hash identifier: ZsWmchZGcsZMGTlCiMGkCcYHX5DP25LnzMVYAZf7Aso= Subject key identifier: 18:5D:C1:9D:64:15:4C:E5:5D:25:72:03:DC:20:D6:C5:62:E3:CC:93 Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9 Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9 Certificate serial: 019AF2AE0741C65C2162E31488300DE6B43F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft Manifest number: 0FF6 Signing time: Sat 06 Dec 2025 08:01:22 +0000 Manifest this update: Sat 06 Dec 2025 08:01:22 +0000 Manifest next update: Sun 07 Dec 2025 08:01:22 +0000 Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: mnGaUokE5YYWq+qGUdUZ3/kJXi6vUDFHXuIiWbtAJWc=) 2: gA2VeOc__NflxeLdsWWIIUZ9Deg.roa (hash: ipk5YS27VQlaPqS1epEEueLOZHeXvism8b/2q3vbuaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ae:07:41:c6:5c:21:62:e3:14:88:30:0d:e6:b4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9 Validity Not Before: Dec 6 08:01:22 2025 GMT Not After : Dec 7 08:01:22 2025 GMT Subject: CN=185dc19d64154ce55d257203dc20d6c562e3cc93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:51:f7:b6:d8:af:df:ed:c2:91:7e:67:18:e1: 28:cd:39:7a:aa:1a:c3:33:67:fe:f1:6d:ee:5b:80: 1d:30:ad:39:a5:05:ca:6f:58:f2:f1:43:f5:a0:62: e5:56:45:93:59:3f:47:cb:c9:db:4b:fe:9f:0e:bb: d1:cd:af:b7:5f:00:42:28:d3:86:1b:4c:dc:d9:1a: 56:1d:50:e8:19:53:f7:bf:b4:72:14:a5:6d:61:f7: 3c:17:f6:63:38:4c:84:27:a9:59:cb:97:cf:df:8c: 7c:a6:d0:2b:e4:4d:a6:0c:85:02:2a:7b:ec:0e:7d: 1c:de:1a:5c:2f:8b:a6:5f:b5:81:d6:7a:2c:bb:43: db:13:36:21:50:d1:82:00:c5:1f:60:fb:dc:04:42: 5b:de:98:d3:22:49:bb:fd:a0:08:cf:28:38:a2:25: ba:2a:4d:7f:53:d0:06:39:db:66:94:bd:46:90:ef: 75:ea:3f:f2:03:36:33:54:13:df:40:d3:6a:ba:53: d5:0a:d3:a3:18:08:8c:54:0b:aa:37:b3:3b:fa:70: f2:79:59:75:7e:fd:4a:3e:5b:a5:a9:1b:6e:c5:ea: e8:d1:d9:e8:c3:31:34:4d:87:ae:00:2d:1d:79:b4: 73:73:d8:2d:d4:49:f6:08:39:73:6d:29:1d:cd:54: b7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:5D:C1:9D:64:15:4C:E5:5D:25:72:03:DC:20:D6:C5:62:E3:CC:93 X509v3 Authority Key Identifier: keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:23:27:cb:c5:31:31:de:e3:a9:ad:14:66:d6:d0:95:6e:cc: 9e:c9:42:84:64:7c:f5:18:09:3f:ef:1d:f7:66:26:be:d2:f3: 12:45:c4:32:38:ba:26:ec:2e:4d:5c:dd:28:c0:25:29:6d:5c: 40:06:2c:cc:18:55:64:13:aa:44:cb:46:bd:db:c1:9d:26:ea: 6e:3a:5e:02:5e:e7:42:c9:19:84:1c:c6:44:dc:5f:ef:f2:a2: 7c:2a:ce:12:42:5f:63:b0:ce:1d:8b:f3:cc:93:5b:f5:ed:76: 41:6d:73:8b:a7:c6:e6:a9:4f:1a:51:58:bf:b1:bd:87:db:78: 80:aa:de:5b:fb:dc:d2:93:38:8a:76:f8:75:21:c6:6f:4a:e4: 1b:94:d0:01:bb:9b:1a:ff:8d:d7:a6:09:30:15:49:0a:42:ea: 7d:96:50:7e:ea:d9:26:e9:4e:1d:7f:f1:3f:91:c5:30:37:23: 8e:b6:6f:49:b5:fe:20:c5:28:1c:b7:88:7d:71:4a:cf:7c:fe: de:9b:f8:f6:4e:c5:46:2e:a7:df:a0:8e:e6:cc:f5:03:b2:87: b0:f4:e7:e4:e8:51:8c:56:a4:b3:c5:db:fb:b6:ae:c4:70:6c: 65:fb:a1:7b:86:c2:25:bf:38:4f:aa:a9:ba:a5:ff:bd:fe:e6: 18:55:ec:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrgdBxlwhYuMUiDAN5rQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyMDRhMWMyY2E0YTRkYjAzMzM3NWUzNjBkZTMyMzc5MGJh NmE1YjkwHhcNMjUxMjA2MDgwMTIyWhcNMjUxMjA3MDgwMTIyWjAzMTEwLwYDVQQD EygxODVkYzE5ZDY0MTU0Y2U1NWQyNTcyMDNkYzIwZDZjNTYyZTNjYzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1H3ttiv3+3CkX5nGOEozTl6qhrD M2f+8W3uW4AdMK05pQXKb1jy8UP1oGLlVkWTWT9Hy8nbS/6fDrvRza+3XwBCKNOG G0zc2RpWHVDoGVP3v7RyFKVtYfc8F/ZjOEyEJ6lZy5fP34x8ptAr5E2mDIUCKnvs Dn0c3hpcL4umX7WB1nosu0PbEzYhUNGCAMUfYPvcBEJb3pjTIkm7/aAIzyg4oiW6 Kk1/U9AGOdtmlL1GkO916j/yAzYzVBPfQNNqulPVCtOjGAiMVAuqN7M7+nDyeVl1 fv1KPlulqRtuxero0dnowzE0TYeuAC0debRzc9gt1En2CDlzbSkdzVS3gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhdwZ1kFUzlXSVyA9wg1sVi48yTMB8GA1UdIwQY MBaAFOIEocLKSk2wMzdeNg3jI3kLpqW5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGIt Y2Y0YmQ0ZjNmMjlkLzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGItY2Y0YmQ0ZjNmMjlk LzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPyMny8Ux Md7jqa0UZtbQlW7MnslChGR89RgJP+8d92YmvtLzEkXEMji6JuwuTVzdKMAlKW1c QAYszBhVZBOqRMtGvdvBnSbqbjpeAl7nQskZhBzGRNxf7/KifCrOEkJfY7DOHYvz zJNb9e12QW1zi6fG5qlPGlFYv7G9h9t4gKreW/vc0pM4inb4dSHGb0rkG5TQAbub Gv+N16YJMBVJCkLqfZZQfurZJulOHX/xP5HFMDcjjrZvSbX+IMUoHLeIfXFKz3z+ 3pv49k7FRi6n36CO5sz1A7KHsPTn5OhRjFaks8Xb+7auxHBsZfuhe4bCJb84T6qp uqX/vf7mGFXsWw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:15:34 2025 by rpki-client