This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json) Hash identifier: sOcZTo/nIZTKuhU1SBVEWsfX5NrGJSWvmEas4yjDWao= Subject key identifier: 63:59:1E:E8:F7:96:A1:38:9E:61:78:3D:5C:50:8F:AD:45:C6:D4:45 Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd Certificate serial: 019B2EF965F052909DC1E4B43CED477E422A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft Manifest number: 0967 Signing time: Thu 18 Dec 2025 01:00:55 +0000 Manifest this update: Thu 18 Dec 2025 01:00:55 +0000 Manifest next update: Fri 19 Dec 2025 01:00:55 +0000 Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: WiJ7J0HNA6flJ3uxJW6evOS32k0IhctyVKRLQljxUKo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:65:f0:52:90:9d:c1:e4:b4:3c:ed:47:7e:42:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd Validity Not Before: Dec 18 01:00:55 2025 GMT Not After : Dec 19 01:00:55 2025 GMT Subject: CN=63591ee8f796a1389e61783d5c508fad45c6d445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:df:80:0b:92:96:01:cb:12:d6:44:1a:4e:2d: 88:97:8b:21:a1:e1:6b:49:cc:b4:91:57:b4:40:78: 1a:f8:67:b2:ad:24:51:2e:ee:34:c2:69:e1:90:87: 04:d5:76:c0:d0:c5:d6:c6:10:10:02:b6:ce:aa:7b: a4:07:dd:af:6b:25:f3:8b:20:a1:00:84:3e:cc:52: 28:7f:22:b3:f2:b8:4f:46:80:db:88:7c:f9:9b:e6: f5:bd:bf:5e:e5:b4:83:2f:02:33:c3:33:6c:6f:1a: 3e:52:4b:8b:d4:78:33:7e:4e:ed:ef:e1:9e:e3:99: bd:fe:42:35:98:a6:4c:f5:02:dd:f4:9f:ee:f9:13: 0b:35:a2:14:c8:8d:e7:22:1e:6b:c9:d9:3a:41:ec: 23:29:65:4f:cc:68:e8:ef:a8:6f:bb:ae:d1:0f:58: 34:ca:fe:df:5a:6d:6d:2a:d3:cf:7c:50:b0:9d:4b: 51:1c:0f:15:30:81:c2:1f:fa:93:87:8e:9d:75:9a: 40:f5:34:6c:8c:4d:6c:2d:3c:36:4d:0e:f3:f8:76: da:37:19:be:fe:dd:29:66:7d:52:5d:10:b3:f6:a4: 7b:fc:e1:a1:b7:f1:f2:7b:27:7b:92:a0:97:1f:92: 04:42:b5:68:c8:75:a2:ce:98:50:f2:17:8e:96:60: 5f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:59:1E:E8:F7:96:A1:38:9E:61:78:3D:5C:50:8F:AD:45:C6:D4:45 X509v3 Authority Key Identifier: keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:c1:ae:21:25:c0:bf:e9:1b:21:43:42:72:a3:7b:63:1f:3c: 22:1f:f8:00:ef:7c:7f:76:63:0d:0e:2b:0d:04:9f:2d:06:0e: d8:57:8d:de:73:62:0c:e1:77:98:13:ed:e4:f7:38:d1:5f:48: ef:07:87:7b:a2:c4:ea:3c:91:db:a3:a1:f7:5c:1e:4c:a2:61: da:09:50:8d:56:e5:31:90:da:c3:68:39:60:e1:72:9b:44:66: 5b:5c:91:60:21:1b:6c:b0:d3:9c:6a:50:fe:94:35:90:44:c0: ea:47:64:b6:99:59:3c:84:2d:1f:08:4f:c8:02:0c:93:a1:e4: 66:86:4b:6e:0a:f5:79:d5:8d:60:f2:44:c6:50:86:54:e7:2b: 4f:ae:e4:9b:65:a9:cf:72:f9:49:27:94:b7:4f:75:75:e4:31: 27:ad:af:32:e4:ae:b6:a7:6a:88:ca:f3:93:27:c7:54:4b:28: 62:6b:0c:eb:6c:e6:d1:49:62:1a:78:d0:75:2e:db:85:20:3b: f4:fe:86:b2:24:40:e3:db:fe:88:6c:62:c1:79:82:fe:e6:f2: 9c:5e:81:55:16:41:42:05:8a:4f:18:5d:59:2c:7d:61:a0:61: c9:f6:16:87:fb:3f:9c:9d:a0:65:39:4d:12:1b:ce:51:4b:c5: a1:ce:0c:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+WXwUpCdweS0PO1HfkIqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMTRkYzQ4YjNlOTE5ZTU1Y2U4MTg0ZDNhOTY5MGQxNDky NWJjYmQwHhcNMjUxMjE4MDEwMDU1WhcNMjUxMjE5MDEwMDU1WjAzMTEwLwYDVQQD Eyg2MzU5MWVlOGY3OTZhMTM4OWU2MTc4M2Q1YzUwOGZhZDQ1YzZkNDQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArd+AC5KWAcsS1kQaTi2Il4shoeFr Scy0kVe0QHga+GeyrSRRLu40wmnhkIcE1XbA0MXWxhAQArbOqnukB92vayXziyCh AIQ+zFIofyKz8rhPRoDbiHz5m+b1vb9e5bSDLwIzwzNsbxo+UkuL1Hgzfk7t7+Ge 45m9/kI1mKZM9QLd9J/u+RMLNaIUyI3nIh5rydk6QewjKWVPzGjo76hvu67RD1g0 yv7fWm1tKtPPfFCwnUtRHA8VMIHCH/qTh46ddZpA9TRsjE1sLTw2TQ7z+HbaNxm+ /t0pZn1SXRCz9qR7/OGht/Hyeyd7kqCXH5IEQrVoyHWizphQ8heOlmBfswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGNZHuj3lqE4nmF4PVxQj61FxtRFMB8GA1UdIwQY MBaAFIIU3Eiz6RnlXOgYTTqWkNFJJby9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yYTdhMTgtOGQ0YS00ZTgxLTkwYTAt ZmJjMDI2OTE3ZjYyLzEvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yYTdhMTgtOGQ0YS00ZTgxLTkwYTAtZmJjMDI2OTE3ZjYy LzEvZ2hUY1NMUHBHZVZjNkJoTk9wYVEwVWtsdkwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAisGuISXA v+kbIUNCcqN7Yx88Ih/4AO98f3ZjDQ4rDQSfLQYO2FeN3nNiDOF3mBPt5Pc40V9I 7weHe6LE6jyR26Oh91weTKJh2glQjVblMZDaw2g5YOFym0RmW1yRYCEbbLDTnGpQ /pQ1kETA6kdktplZPIQtHwhPyAIMk6HkZoZLbgr1edWNYPJExlCGVOcrT67km2Wp z3L5SSeUt091deQxJ62vMuSutqdqiMrzkyfHVEsoYmsM62zm0UliGnjQdS7bhSA7 9P6GsiRA49v+iGxiwXmC/ubynF6BVRZBQgWKTxhdWSx9YaBhyfYWh/s/nJ2gZTlN EhvOUUvFoc4MXQ== -----END CERTIFICATE-----Generated at Thu Dec 18 11:15:43 2025 by rpki-client