This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json) Hash identifier: MoZ07Sw4/5UI6BItKDLusbvoAvOa/1QbHOB7xXvJd8U= Subject key identifier: 1B:AC:AD:C1:99:AB:43:45:80:25:C7:2C:B5:4C:07:8B:C5:EE:E8:BD Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Certificate serial: 019AF23FB49D0FAE65E0C89D3498792FF59E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft Manifest number: 0E10 Signing time: Sat 06 Dec 2025 06:00:52 +0000 Manifest this update: Sat 06 Dec 2025 06:00:52 +0000 Manifest next update: Sun 07 Dec 2025 06:00:52 +0000 Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: ntSbzNKBn90o0DgPiA8R3wm4Mf6CFxktEaIw3hM/JgE=) 2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=) 3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=) 4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=) 5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b4:9d:0f:ae:65:e0:c8:9d:34:98:79:2f:f5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Validity Not Before: Dec 6 06:00:52 2025 GMT Not After : Dec 7 06:00:52 2025 GMT Subject: CN=1bacadc199ab43458025c72cb54c078bc5eee8bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2f:81:04:20:31:46:8e:1d:f0:e9:d3:29:16: 36:40:dd:df:2f:e8:51:14:e2:1e:df:b1:b2:ac:14: bb:f1:ca:56:aa:b4:f1:bf:33:27:5d:16:7c:be:d8: 39:ef:66:1c:80:88:74:aa:6d:62:ec:05:f9:2d:b4: e0:f1:7e:9f:50:ee:78:ae:52:bd:9e:1c:35:f2:fc: 43:2d:30:d7:a9:c6:67:27:64:b3:bd:71:9d:92:50: 5d:c1:57:ce:e7:09:61:05:2c:3c:f9:4e:97:48:fe: a1:5f:0e:2b:ca:ce:d8:49:47:4a:c3:0b:ff:c0:46: 4b:4b:ec:69:61:47:a8:5e:70:c0:b3:a3:f4:87:c1: 7c:40:4f:6b:f4:cd:c2:0d:28:dc:22:ab:2c:29:f1: fe:db:9e:4a:79:94:bb:7d:b3:42:c1:c8:f2:9c:14: 07:17:08:2f:67:08:b8:67:b3:0b:f3:0b:82:c4:27: ee:de:b1:71:88:71:2a:9d:3d:bb:81:11:7e:8e:3d: 62:fe:f9:ff:d0:74:9f:5b:f0:17:1e:d9:e3:10:33: 3c:25:ee:5b:39:96:3c:a0:ac:60:09:af:c7:66:e1: eb:23:90:51:2a:89:20:11:52:49:58:25:30:a2:d9: a8:4e:87:87:eb:8a:e5:de:12:51:3d:44:fa:80:fe: ce:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AC:AD:C1:99:AB:43:45:80:25:C7:2C:B5:4C:07:8B:C5:EE:E8:BD X509v3 Authority Key Identifier: keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c4:00:2c:be:44:0f:ff:83:4b:bd:d7:09:a0:4c:8a:10:c4: 15:65:f7:5b:30:9e:65:81:4a:1a:bb:51:43:b1:98:cc:a3:5a: 8b:51:a9:85:cc:7f:f5:38:40:07:1b:3e:fb:b0:42:d2:4a:b5: a8:26:43:d3:5b:f3:9d:0c:0e:25:b0:83:df:7f:7a:c1:57:2c: 07:6d:6f:87:7d:db:56:cd:dd:4c:bc:5d:67:ca:fd:78:35:b9: cb:21:81:a6:f2:8f:1e:b2:6d:8c:87:06:d8:03:4c:94:9c:bf: 4f:39:ae:84:50:35:dc:e6:0a:32:75:c9:04:71:3a:bb:eb:fd: 6d:8d:16:c4:07:7b:42:2c:92:7f:1b:02:4e:bd:8d:b7:fc:b9: a1:e9:44:e6:6e:ae:b3:71:62:c9:e4:a8:37:98:00:ff:c4:a5: 1e:74:b3:31:e8:ac:c0:c3:91:be:fc:96:f3:b7:59:f6:7d:9b: c2:05:14:63:ae:9b:4d:d3:07:06:b4:18:ff:cc:e3:66:58:2a: 35:e1:fa:db:a8:5a:d1:53:c7:51:ad:04:0d:dc:63:26:34:ff: f5:60:d7:6e:ac:7e:d5:f7:17:e4:bd:79:81:af:3f:5b:c3:95: 12:11:c0:f2:35:9b:14:2c:ff:42:2f:df:be:e5:f7:f1:d5:8e: db:0d:07:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7SdD65l4MidNJh5L/WeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNjFhMjkyMjIzYWQ5YWViYzhhZDgyYzJhNTY0NzVmYmQ5 N2E4MzQwHhcNMjUxMjA2MDYwMDUyWhcNMjUxMjA3MDYwMDUyWjAzMTEwLwYDVQQD EygxYmFjYWRjMTk5YWI0MzQ1ODAyNWM3MmNiNTRjMDc4YmM1ZWVlOGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuC+BBCAxRo4d8OnTKRY2QN3fL+hR FOIe37GyrBS78cpWqrTxvzMnXRZ8vtg572YcgIh0qm1i7AX5LbTg8X6fUO54rlK9 nhw18vxDLTDXqcZnJ2SzvXGdklBdwVfO5wlhBSw8+U6XSP6hXw4rys7YSUdKwwv/ wEZLS+xpYUeoXnDAs6P0h8F8QE9r9M3CDSjcIqssKfH+255KeZS7fbNCwcjynBQH FwgvZwi4Z7ML8wuCxCfu3rFxiHEqnT27gRF+jj1i/vn/0HSfW/AXHtnjEDM8Je5b OZY8oKxgCa/HZuHrI5BRKokgEVJJWCUwotmoToeH64rl3hJRPUT6gP7OuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBusrcGZq0NFgCXHLLVMB4vF7ui9MB8GA1UdIwQY MBaAFN9hopIiOtmuvIrYLCpWR1+9l6g0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYt NDE0ODdmNGQ0MTcxLzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYtNDE0ODdmNGQ0MTcx LzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHMQALL5E D/+DS73XCaBMihDEFWX3WzCeZYFKGrtRQ7GYzKNai1Gphcx/9ThABxs++7BC0kq1 qCZD01vznQwOJbCD3396wVcsB21vh33bVs3dTLxdZ8r9eDW5yyGBpvKPHrJtjIcG 2ANMlJy/TzmuhFA13OYKMnXJBHE6u+v9bY0WxAd7QiySfxsCTr2Nt/y5oelE5m6u s3FiyeSoN5gA/8SlHnSzMeiswMORvvyW87dZ9n2bwgUUY66bTdMHBrQY/8zjZlgq NeH626ha0VPHUa0EDdxjJjT/9WDXbqx+1fcX5L15ga8/W8OVEhHA8jWbFCz/Qi/f vuX38dWO2w0Htw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:04 2025 by rpki-client