This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft File: GGr6K4fO01gj1aLMCghE56FRa_M.mft (raw, json) Hash identifier: 6qa14fhZ1uz7bez5SWVZ1womJaR4GCG85aRVbMVbzmc= Subject key identifier: 77:EA:87:4C:B9:92:D8:3C:7B:3D:0A:7D:39:6F:E8:0E:71:37:A1:C1 Authority key identifier: 18:6A:FA:2B:87:CE:D3:58:23:D5:A2:CC:0A:08:44:E7:A1:51:6B:F3 Certificate issuer: /CN=186afa2b87ced35823d5a2cc0a0844e7a1516bf3 Certificate serial: 019AF50B1022FA8016AF0F3FD3BB55C5AF8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft Manifest number: 0EC3 Signing time: Sat 06 Dec 2025 19:02:14 +0000 Manifest this update: Sat 06 Dec 2025 19:02:14 +0000 Manifest next update: Sun 07 Dec 2025 19:02:14 +0000 Files and hashes: 1: GGr6K4fO01gj1aLMCghE56FRa_M.crl (hash: zO7fiuOXhyokSa5oJr1zb6KSdd881qER6TKx/0rUsuQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:10:22:fa:80:16:af:0f:3f:d3:bb:55:c5:af:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=186afa2b87ced35823d5a2cc0a0844e7a1516bf3 Validity Not Before: Dec 6 19:02:14 2025 GMT Not After : Dec 7 19:02:14 2025 GMT Subject: CN=77ea874cb992d83c7b3d0a7d396fe80e7137a1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ad:46:61:0c:b1:be:22:24:52:10:b7:f8:44: bb:50:16:cb:7f:22:92:b8:f1:6a:90:63:52:c0:d5: ea:34:ef:71:5c:c8:a6:bc:7c:98:3f:f3:5e:a9:5e: 4f:34:39:43:8b:f3:58:d4:71:5f:c4:79:c7:04:d9: a0:33:eb:95:d4:42:63:7d:bd:39:56:a0:7c:6f:c3: af:58:cd:ed:9d:9e:23:b2:cb:34:4b:5f:7a:e1:c6: 5f:0e:1c:79:aa:d4:84:eb:21:cb:00:dd:b4:53:c6: d6:09:3a:28:26:e8:22:c7:56:dc:a4:b9:67:2b:4f: c8:35:30:f3:0e:f8:07:d1:3a:3b:7b:ce:18:d7:88: 52:bf:34:6f:6e:7b:b7:ca:ad:40:24:31:92:2b:ee: 4d:9f:c8:94:05:e6:5e:9c:5b:35:72:48:dc:80:8b: f3:36:f5:2d:ae:85:23:db:d1:83:43:11:64:50:3c: cc:23:ea:ea:bc:df:f4:41:2a:0d:a2:3e:e6:05:e7: a7:5f:fa:24:69:30:d7:bb:c4:2a:20:46:9c:80:7f: 51:01:81:12:bc:6f:c1:61:a9:38:6c:14:f1:e0:56: 19:72:46:e6:65:19:e7:ca:94:05:47:0f:9d:54:f4: 78:7b:97:82:89:28:af:e9:5c:24:1a:b0:cd:5f:b7: 6a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EA:87:4C:B9:92:D8:3C:7B:3D:0A:7D:39:6F:E8:0E:71:37:A1:C1 X509v3 Authority Key Identifier: keyid:18:6A:FA:2B:87:CE:D3:58:23:D5:A2:CC:0A:08:44:E7:A1:51:6B:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:2a:5a:a4:28:e4:a4:a5:38:1d:0b:55:da:0e:d8:9d:92:fe: b1:72:99:ec:eb:c5:10:11:8e:50:83:ab:cd:3e:09:c5:5d:39: 0a:c2:1c:fb:8c:b5:fd:4c:9d:03:cf:f1:ca:93:ea:ab:04:86: ea:72:5a:31:37:d0:64:5b:29:4b:a2:fa:50:4b:95:bd:56:df: 0b:11:92:03:14:a1:ab:b8:34:50:e8:20:25:56:44:39:89:7f: 5c:dc:62:e9:a2:ae:a9:98:fb:8a:62:99:16:b0:5f:7e:54:08: a5:f9:d7:e3:d4:78:d4:b0:3e:b6:b4:c5:37:bd:aa:a0:e0:be: ed:5a:00:65:92:e9:00:00:d7:58:52:9e:52:d9:d6:7d:40:c2: f3:3e:58:39:b8:83:7b:de:c7:ce:8e:db:fd:c1:e3:73:99:a6: 10:62:75:da:fe:b9:4d:89:6a:7e:56:52:aa:14:a6:d6:fb:e9: ea:42:1f:7a:eb:3e:9f:16:4d:d5:a2:d9:f5:7a:9d:4b:7e:5b: 3b:72:fb:d9:b4:3b:e7:92:a8:81:c5:c7:86:64:3d:6a:a2:fe: e6:88:91:42:67:b9:d5:4c:74:18:ed:73:e1:83:96:13:57:81: 5c:90:d6:bb:53:ef:b0:e7:2f:0a:fd:cf:e0:55:09:af:55:18: c5:b6:71:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CxAi+oAWrw8/07tVxa+OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NmFmYTJiODdjZWQzNTgyM2Q1YTJjYzBhMDg0NGU3YTE1 MTZiZjMwHhcNMjUxMjA2MTkwMjE0WhcNMjUxMjA3MTkwMjE0WjAzMTEwLwYDVQQD Eyg3N2VhODc0Y2I5OTJkODNjN2IzZDBhN2QzOTZmZTgwZTcxMzdhMWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs61GYQyxviIkUhC3+ES7UBbLfyKS uPFqkGNSwNXqNO9xXMimvHyYP/NeqV5PNDlDi/NY1HFfxHnHBNmgM+uV1EJjfb05 VqB8b8OvWM3tnZ4jsss0S1964cZfDhx5qtSE6yHLAN20U8bWCTooJugix1bcpLln K0/INTDzDvgH0To7e84Y14hSvzRvbnu3yq1AJDGSK+5Nn8iUBeZenFs1ckjcgIvz NvUtroUj29GDQxFkUDzMI+rqvN/0QSoNoj7mBeenX/okaTDXu8QqIEacgH9RAYES vG/BYak4bBTx4FYZckbmZRnnypQFRw+dVPR4e5eCiSiv6VwkGrDNX7dqCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfqh0y5ktg8ez0KfTlv6A5xN6HBMB8GA1UdIwQY MBaAFBhq+iuHztNYI9WizAoIROehUWvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0dyNks0Zk8wMWdqMWFMTUNnaEU1NkZSYV9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9lZmIxM2ItNWRiYy00MTFiLWIyMzgt NjU1ZDUzNjk4ZmRhLzEvR0dyNks0Zk8wMWdqMWFMTUNnaEU1NkZSYV9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9lZmIxM2ItNWRiYy00MTFiLWIyMzgtNjU1ZDUzNjk4ZmRh LzEvR0dyNks0Zk8wMWdqMWFMTUNnaEU1NkZSYV9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlipapCjk pKU4HQtV2g7YnZL+sXKZ7OvFEBGOUIOrzT4JxV05CsIc+4y1/UydA8/xypPqqwSG 6nJaMTfQZFspS6L6UEuVvVbfCxGSAxShq7g0UOggJVZEOYl/XNxi6aKuqZj7imKZ FrBfflQIpfnX49R41LA+trTFN72qoOC+7VoAZZLpAADXWFKeUtnWfUDC8z5YObiD e97Hzo7b/cHjc5mmEGJ12v65TYlqflZSqhSm1vvp6kIfeus+nxZN1aLZ9XqdS35b O3L72bQ755KogcXHhmQ9aqL+5oiRQme51Ux0GO1z4YOWE1eBXJDWu1PvsOcvCv3P 4FUJr1UYxbZxwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:20:18 2025 by rpki-client