This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json) Hash identifier: sw59DreMMZBMB+tcpxsb2n3/Of5wKV08fL8+CXgZwrc= Subject key identifier: 84:5E:F1:28:A1:10:2A:FE:E5:6B:30:0D:F9:91:F3:DE:FD:12:A6:7F Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68 Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668 Certificate serial: 019AF5E57550A34519EF0F364B8ED958DFE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft Manifest number: 1064 Signing time: Sat 06 Dec 2025 23:00:46 +0000 Manifest this update: Sat 06 Dec 2025 23:00:46 +0000 Manifest next update: Sun 07 Dec 2025 23:00:46 +0000 Files and hashes: 1: 2iJw4EQoXKQlcgvYyAFZ8L2PyY4.roa (hash: iiK5pamhZGxd1XFCTcN85Gnci+JOI25h5MBN1jWndgw=) 2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: sva9aXo6YWHd5vIi6JVsqqHkYNhZGkftWbkDfvbemp8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:75:50:a3:45:19:ef:0f:36:4b:8e:d9:58:df:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8166038385b343d55e76b728efe23c0731787668 Validity Not Before: Dec 6 23:00:46 2025 GMT Not After : Dec 7 23:00:46 2025 GMT Subject: CN=845ef128a1102afee56b300df991f3defd12a67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ef:a7:10:30:b6:e2:1e:af:cd:01:7e:5f:00: 54:90:7c:d8:4e:7e:45:61:b0:ee:63:bb:90:53:78: 00:94:ce:90:87:e5:28:31:e6:c4:63:2d:d2:62:10: a3:3e:8a:a6:14:0d:77:08:34:62:a2:ef:f9:df:65: 87:e6:78:71:e9:88:38:55:2a:1c:3f:bf:dd:f1:06: 05:11:e7:85:4d:48:b7:9a:41:b1:b9:87:3e:65:64: 3a:d4:1d:2b:be:fd:40:42:23:21:68:e0:cc:6b:ef: 4d:7e:c0:b9:d4:0c:b9:56:8b:d8:4f:74:2e:86:8e: 5f:2c:eb:14:b8:42:ff:cb:ac:14:f4:8f:92:fe:2d: 28:0e:cd:55:76:d9:89:bf:f0:3c:64:06:4a:af:ab: 18:6e:d3:b8:15:6a:86:36:76:38:a9:19:13:c6:c2: 2a:1d:eb:1c:ff:2d:17:e0:f9:7d:e6:e9:b8:7a:62: f2:75:de:58:d1:57:6b:3d:8e:f6:a8:b8:93:f3:1e: 81:bc:1c:0d:10:5a:79:75:65:fc:a0:4e:64:fb:17: b3:9e:d8:07:fe:76:fa:34:a1:60:c1:22:45:b9:de: 70:81:e4:f4:e2:88:64:e4:e0:0e:e6:0b:5b:a3:91: 8a:ba:ba:ea:d8:94:e3:99:6a:ef:8e:ed:6b:8e:24: 22:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5E:F1:28:A1:10:2A:FE:E5:6B:30:0D:F9:91:F3:DE:FD:12:A6:7F X509v3 Authority Key Identifier: keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:53:85:d6:6c:e3:27:bf:23:ee:55:18:07:5f:95:7b:f8:0d: 1a:dd:e2:27:70:38:4e:89:fa:55:6c:38:3e:66:0a:e4:c6:12: aa:1d:e1:5f:cc:f8:c8:6b:63:bb:53:67:7c:f8:78:db:30:2c: 4c:4b:ac:ad:42:f8:71:a8:b5:3f:50:3c:71:a6:32:bf:dd:9a: c8:dd:1e:db:63:07:27:fa:ef:a4:c3:85:60:a8:a7:bf:f7:1f: cf:d6:17:17:85:dd:c6:bd:f1:6b:03:36:63:3a:70:3e:d2:8b: bc:cd:28:65:a6:00:3f:a7:6c:8f:95:1a:56:f2:cc:13:64:41: b0:1a:50:d2:32:ba:14:7c:6f:6e:00:20:3c:91:4a:a3:8e:27: b3:6b:ef:83:fb:3c:f0:3b:4f:72:79:57:42:e0:46:7d:f1:06: bd:57:e9:e1:8f:c9:6d:b4:f5:42:57:67:93:bd:e7:d7:36:0f: 94:29:75:a1:61:75:15:f8:24:f0:04:4d:ca:e0:f3:a7:99:f2: e1:f6:6b:39:3f:f6:8f:79:2f:ab:ab:15:f3:b4:1b:12:27:da: aa:a0:d9:ac:7e:66:65:5d:b3:d4:75:c9:a9:d5:11:3d:e8:fd: 36:3c:68:22:44:41:b9:58:14:9b:5f:f2:37:55:11:32:23:26: b3:6b:fc:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15XVQo0UZ7w82S47ZWN/lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxNjYwMzgzODViMzQzZDU1ZTc2YjcyOGVmZTIzYzA3MzE3 ODc2NjgwHhcNMjUxMjA2MjMwMDQ2WhcNMjUxMjA3MjMwMDQ2WjAzMTEwLwYDVQQD Eyg4NDVlZjEyOGExMTAyYWZlZTU2YjMwMGRmOTkxZjNkZWZkMTJhNjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAke+nEDC24h6vzQF+XwBUkHzYTn5F YbDuY7uQU3gAlM6Qh+UoMebEYy3SYhCjPoqmFA13CDRiou/532WH5nhx6Yg4VSoc P7/d8QYFEeeFTUi3mkGxuYc+ZWQ61B0rvv1AQiMhaODMa+9NfsC51Ay5VovYT3Qu ho5fLOsUuEL/y6wU9I+S/i0oDs1VdtmJv/A8ZAZKr6sYbtO4FWqGNnY4qRkTxsIq Hesc/y0X4Pl95um4emLydd5Y0VdrPY72qLiT8x6BvBwNEFp5dWX8oE5k+xezntgH /nb6NKFgwSJFud5wgeT04ohk5OAO5gtbo5GKurrq2JTjmWrvju1rjiQigQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRe8SihECr+5WswDfmR8979EqZ/MB8GA1UdIwQY MBaAFIFmA4OFs0PVXna3KO/iPAcxeHZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1dZRGc0V3pROVZlZHJjbzctSThCekY0ZG1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy80OGNmZDAtMzIzOC00YWFmLWI2NjMt NDM3M2I2NTc5MGI4LzEvZ1dZRGc0V3pROVZlZHJjbzctSThCekY0ZG1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy80OGNmZDAtMzIzOC00YWFmLWI2NjMtNDM3M2I2NTc5MGI4 LzEvZ1dZRGc0V3pROVZlZHJjbzctSThCekY0ZG1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO1OF1mzj J78j7lUYB1+Ve/gNGt3iJ3A4Ton6VWw4PmYK5MYSqh3hX8z4yGtju1NnfPh42zAs TEusrUL4cai1P1A8caYyv92ayN0e22MHJ/rvpMOFYKinv/cfz9YXF4Xdxr3xawM2 YzpwPtKLvM0oZaYAP6dsj5UaVvLME2RBsBpQ0jK6FHxvbgAgPJFKo44ns2vvg/s8 8DtPcnlXQuBGffEGvVfp4Y/JbbT1Qldnk73n1zYPlCl1oWF1Ffgk8ARNyuDzp5ny 4fZrOT/2j3kvq6sV87QbEifaqqDZrH5mZV2z1HXJqdURPej9NjxoIkRBuVgUm1/y N1URMiMms2v8IA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:53:58 2025 by rpki-client