This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json) Hash identifier: uIYVN45fl1vB71j5Et2+birk5poFxADvgD/VCz21+z8= Subject key identifier: 6B:4B:A8:3A:37:D5:A0:FA:EC:B4:24:97:C5:5D:3E:07:A8:D3:01:6E Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7 Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7 Certificate serial: 019AF12EFCC2BC8880BD9A757BF3F6093845 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft Manifest number: 0FCA Signing time: Sat 06 Dec 2025 01:02:59 +0000 Manifest this update: Sat 06 Dec 2025 01:02:59 +0000 Manifest next update: Sun 07 Dec 2025 01:02:59 +0000 Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: DbDRXDVWFPKxaew20AUx7XkFwrkx2RRKKpaFmtFLeTo=) 2: W-3Ri8AWWqFrWKutCVRwXCG1LqI.roa (hash: Nh1PgA8Gs535g7b3yZbGMUCwzbOT918z/QhuTNM74dw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:fc:c2:bc:88:80:bd:9a:75:7b:f3:f6:09:38:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7 Validity Not Before: Dec 6 01:02:59 2025 GMT Not After : Dec 7 01:02:59 2025 GMT Subject: CN=6b4ba83a37d5a0faecb42497c55d3e07a8d3016e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:32:d5:68:0f:e8:8e:f8:36:32:51:54:db:66: 7e:93:95:43:b8:5f:02:ea:0e:a5:c1:23:58:b9:d4: 0e:29:2c:8c:19:6a:95:a6:41:2e:8f:54:9a:fe:b5: 0b:17:bf:27:97:60:e3:14:2d:67:53:90:e1:4c:12: e6:98:fb:ba:09:55:57:9c:e5:53:54:43:d4:09:9d: 51:e7:8b:14:55:9c:b8:d5:78:02:b6:a1:31:30:a2: 74:5f:8b:98:68:58:f9:7f:fc:b9:3b:1d:3b:21:08: 0c:0f:8c:54:77:e0:a7:2e:11:7e:7c:6a:52:43:68: f4:59:3e:17:da:41:1f:8d:de:e9:e1:49:72:aa:a2: ec:e4:fb:b8:c6:1d:23:0a:f2:f4:df:11:88:e3:6a: 8a:75:7c:7d:b2:7d:9d:ab:83:41:33:bc:a4:40:5a: 7d:39:91:ea:33:8a:10:85:09:ad:70:4e:84:0f:20: 0e:b3:40:d8:fa:3f:ee:45:87:3a:00:73:07:55:57: 0f:d6:04:99:f0:f8:92:e7:b0:5d:a2:59:be:d2:2e: 60:d2:2f:f1:ed:9b:61:76:e0:bb:68:bd:c9:95:d2: cc:22:ba:ac:fd:4a:7a:e3:20:50:0b:8a:ab:0c:50: fe:38:a9:5f:fd:29:cf:5a:8c:38:13:03:8e:36:14: 1c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4B:A8:3A:37:D5:A0:FA:EC:B4:24:97:C5:5D:3E:07:A8:D3:01:6E X509v3 Authority Key Identifier: keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2e:ab:93:d2:c8:5d:2e:c2:07:12:c8:9a:bf:c3:c2:77:ae: ab:cf:8c:ac:f0:18:5a:64:08:05:2d:9e:04:01:53:17:99:2f: 97:bf:bd:c4:c4:35:84:0a:0c:67:5d:21:c3:4e:7f:93:bd:fe: d6:24:63:c0:ed:70:1d:6e:eb:02:a9:f3:23:0b:40:05:03:e8: b7:55:e9:79:70:a5:59:a4:ab:0a:9f:7c:11:4d:f8:1d:f6:23: 05:75:66:b0:ec:c4:25:36:37:8c:f0:cd:8c:86:74:05:22:aa: 83:5a:4d:5c:22:24:14:04:7d:c2:ef:f8:6c:b7:a2:1d:68:54: bf:36:63:94:f0:91:71:c7:a9:20:bb:39:2b:da:55:f6:7d:17: 3f:db:56:df:0f:f5:0b:60:97:e4:18:98:44:7d:cc:3a:a4:02: b1:2d:65:7c:35:f8:5a:f5:8d:6f:22:be:bc:62:4b:3e:46:e2: 2e:06:f0:a7:72:88:e9:ce:ef:a0:dd:05:56:1a:15:b4:88:81: 1d:0d:39:05:39:86:9a:b6:22:1a:32:37:ca:5b:3f:09:00:fe: 64:42:f4:64:8d:29:31:43:08:12:9a:17:33:cb:93:c2:4b:05: f9:73:f9:16:5d:d1:8f:d0:db:86:73:21:cf:b0:44:bc:cf:34: 26:a2:f8:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLvzCvIiAvZp1e/P2CThFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5ZTA2MTU1ZmMxZTM3NjUyYjJiNzljOWE1MzZkMmU2MTQ0 ZDA0ZjcwHhcNMjUxMjA2MDEwMjU5WhcNMjUxMjA3MDEwMjU5WjAzMTEwLwYDVQQD Eyg2YjRiYTgzYTM3ZDVhMGZhZWNiNDI0OTdjNTVkM2UwN2E4ZDMwMTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDLVaA/ojvg2MlFU22Z+k5VDuF8C 6g6lwSNYudQOKSyMGWqVpkEuj1Sa/rULF78nl2DjFC1nU5DhTBLmmPu6CVVXnOVT VEPUCZ1R54sUVZy41XgCtqExMKJ0X4uYaFj5f/y5Ox07IQgMD4xUd+CnLhF+fGpS Q2j0WT4X2kEfjd7p4UlyqqLs5Pu4xh0jCvL03xGI42qKdXx9sn2dq4NBM7ykQFp9 OZHqM4oQhQmtcE6EDyAOs0DY+j/uRYc6AHMHVVcP1gSZ8PiS57Bdolm+0i5g0i/x 7ZthduC7aL3JldLMIrqs/Up64yBQC4qrDFD+OKlf/SnPWow4EwOONhQceQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGtLqDo31aD67LQkl8VdPgeo0wFuMB8GA1UdIwQY MBaAFBngYVX8HjdlKyt5yaU20uYUTQT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYt NzllZWI2MzIxZWI3LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9iYjg1ZDctN2NkZS00ZTFjLWI5ZGYtNzllZWI2MzIxZWI3 LzEvR2VCaFZmd2VOMlVySzNuSnBUYlM1aFJOQlBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADC6rk9LI XS7CBxLImr/Dwneuq8+MrPAYWmQIBS2eBAFTF5kvl7+9xMQ1hAoMZ10hw05/k73+ 1iRjwO1wHW7rAqnzIwtABQPot1XpeXClWaSrCp98EU34HfYjBXVmsOzEJTY3jPDN jIZ0BSKqg1pNXCIkFAR9wu/4bLeiHWhUvzZjlPCRccepILs5K9pV9n0XP9tW3w/1 C2CX5BiYRH3MOqQCsS1lfDX4WvWNbyK+vGJLPkbiLgbwp3KI6c7voN0FVhoVtIiB HQ05BTmGmrYiGjI3yls/CQD+ZEL0ZI0pMUMIEpoXM8uTwksF+XP5Fl3Rj9DbhnMh z7BEvM80JqL4hw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:44:57 2025 by rpki-client