This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json) Hash identifier: 7Ip4gy+uaMWtkTHOYczkd8tIugPf8+OUla7qElT9iEQ= Subject key identifier: 51:38:B6:5E:DC:71:13:70:88:D4:40:50:22:43:40:3D:DB:95:AB:FB Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Certificate serial: 019AF276E05B38DBD4C46774BF95C8F799DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft Manifest number: 0349 Signing time: Sat 06 Dec 2025 07:01:08 +0000 Manifest this update: Sat 06 Dec 2025 07:01:08 +0000 Manifest next update: Sun 07 Dec 2025 07:01:08 +0000 Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: IbNir4/h64BxCc1gEMlA8izAouFn6EZxY32njuzXoCA=) 2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:e0:5b:38:db:d4:c4:67:74:bf:95:c8:f7:99:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18 Validity Not Before: Dec 6 07:01:08 2025 GMT Not After : Dec 7 07:01:08 2025 GMT Subject: CN=5138b65edc71137088d440502243403ddb95abfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:43:e6:33:2c:a1:da:05:8f:62:c1:f6:56:8a: 34:06:c5:6e:53:3c:d4:c7:2f:8f:b5:45:b6:ac:5d: 78:12:8d:23:2d:d6:84:40:b7:9e:7e:2c:70:f8:88: 00:73:3c:45:cc:34:ad:05:f8:52:65:d4:7a:eb:87: 3d:cb:1f:c4:a3:7a:24:e9:1e:30:c1:13:8d:b1:a2: e9:38:1b:4b:2e:20:ad:c9:a8:43:4f:d2:4f:9e:2d: de:86:e4:ed:00:0a:c5:fd:c7:b8:67:0b:e4:26:da: f5:bc:00:81:be:11:3e:5d:d1:e3:81:dc:9d:b0:ff: 39:5d:c3:9e:69:02:62:ea:e3:94:ed:de:f2:19:f1: 3f:67:c7:8f:9e:eb:88:6c:35:46:c1:4c:d2:53:52: bf:2e:99:87:7b:87:b7:11:eb:63:0a:46:f3:b8:1b: 01:45:65:f3:8f:aa:3d:65:24:1f:09:66:a8:55:7d: 68:e0:17:b3:eb:08:d4:ec:a7:e9:a2:df:ef:0e:77: 80:5b:8f:d6:18:17:8c:a1:bd:77:a5:56:44:ee:b7: c7:fc:1e:df:86:b1:ce:1b:e7:09:3b:3f:47:be:db: a8:6e:84:94:9b:ed:78:a4:98:99:e3:76:fe:ec:8e: 01:ea:f9:42:60:d4:62:9b:eb:01:a1:a6:1f:52:c1: 2a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:38:B6:5E:DC:71:13:70:88:D4:40:50:22:43:40:3D:DB:95:AB:FB X509v3 Authority Key Identifier: keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d2:3a:21:92:69:f3:fe:44:05:99:ba:01:40:30:c6:ef:05: e5:e9:a3:79:5a:87:f5:e6:3e:03:6a:9e:f2:68:94:94:59:11: 31:6f:ca:a4:a3:8b:20:1c:f2:e6:7e:c3:13:36:ce:67:1c:3d: 9d:62:92:b5:d0:8f:0c:a0:c4:01:da:e2:99:6b:b4:8b:8e:0c: 61:f9:3e:22:28:4f:8c:2e:56:be:58:4c:81:e9:3e:10:d1:66: 01:ca:81:f3:8d:ee:20:36:b3:57:0a:26:64:8b:62:22:2e:63: fc:db:b0:6a:1b:c4:ac:b5:f3:35:87:84:63:9d:e5:e5:1c:3c: 29:28:b4:5e:86:d4:e0:2e:09:1d:1c:6b:be:e5:5a:19:de:6f: 2a:bc:90:41:8f:87:a5:58:09:7a:1c:25:bd:57:14:91:97:c0: b1:6a:c3:2c:83:fb:00:09:b9:82:03:3e:af:41:b1:dc:f7:ab: 2d:e4:23:27:d8:99:a8:b9:f2:4c:fe:35:d3:68:4a:37:9f:9a: 3f:b6:2e:1c:e1:33:ef:90:1b:14:96:33:85:ab:04:59:38:ed: 03:61:70:8c:a1:13:9a:d3:42:a9:94:1b:95:8b:3a:c6:e1:0b: fd:9c:37:c3:53:87:7f:1c:13:0f:e0:26:6a:bd:c2:37:35:a1: 00:f5:ee:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryduBbONvUxGd0v5XI95nfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw MjVkMTgwHhcNMjUxMjA2MDcwMTA4WhcNMjUxMjA3MDcwMTA4WjAzMTEwLwYDVQQD Eyg1MTM4YjY1ZWRjNzExMzcwODhkNDQwNTAyMjQzNDAzZGRiOTVhYmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzEPmMyyh2gWPYsH2Voo0BsVuUzzU xy+PtUW2rF14Eo0jLdaEQLeefixw+IgAczxFzDStBfhSZdR664c9yx/Eo3ok6R4w wRONsaLpOBtLLiCtyahDT9JPni3ehuTtAArF/ce4ZwvkJtr1vACBvhE+XdHjgdyd sP85XcOeaQJi6uOU7d7yGfE/Z8ePnuuIbDVGwUzSU1K/LpmHe4e3EetjCkbzuBsB RWXzj6o9ZSQfCWaoVX1o4Bez6wjU7Kfpot/vDneAW4/WGBeMob13pVZE7rfH/B7f hrHOG+cJOz9HvtuoboSUm+14pJiZ43b+7I4B6vlCYNRim+sBoaYfUsEq5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFE4tl7ccRNwiNRAUCJDQD3blav7MB8GA1UdIwQY MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAatI6IZJp 8/5EBZm6AUAwxu8F5emjeVqH9eY+A2qe8miUlFkRMW/KpKOLIBzy5n7DEzbOZxw9 nWKStdCPDKDEAdrimWu0i44MYfk+IihPjC5WvlhMgek+ENFmAcqB843uIDazVwom ZItiIi5j/NuwahvErLXzNYeEY53l5Rw8KSi0XobU4C4JHRxrvuVaGd5vKryQQY+H pVgJehwlvVcUkZfAsWrDLIP7AAm5ggM+r0Gx3PerLeQjJ9iZqLnyTP4102hKN5+a P7YuHOEz75AbFJYzhasEWTjtA2FwjKETmtNCqZQblYs6xuEL/Zw3w1OHfxwTD+Am ar3CNzWhAPXuPA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:41:02 2025 by rpki-client