This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json) Hash identifier: 2N2iOPwjJmhl+0fW1v0y8Sd9LD78VK5BHS2ntNr10I0= Subject key identifier: 11:B3:7B:B2:E2:19:70:31:46:93:7F:35:12:7E:ED:03:B9:29:ED:0A Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b Certificate serial: 019AF20943AEDD694E3913B9D27FEAF536D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 05:01:24 +0000 Manifest this update: Sat 06 Dec 2025 05:01:24 +0000 Manifest next update: Sun 07 Dec 2025 05:01:24 +0000 Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: V/csqY94XW1B6OvVXsWGMEOi41Ly2dPqoici6SjSqKA=) 2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:43:ae:dd:69:4e:39:13:b9:d2:7f:ea:f5:36:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b Validity Not Before: Dec 6 05:01:24 2025 GMT Not After : Dec 7 05:01:24 2025 GMT Subject: CN=11b37bb2e219703146937f35127eed03b929ed0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b4:b9:05:43:e3:4f:d8:11:97:79:39:03:78: 7d:85:12:8d:9a:d0:07:f7:d1:ca:f4:4a:82:bf:06: b3:9b:16:d6:e7:6a:7d:5a:5c:62:72:f7:fe:56:bd: f7:23:3f:c9:94:56:44:e5:0c:bf:e2:75:b9:5b:06: c4:fd:e6:2b:34:69:5f:04:5e:56:b1:19:c2:b9:fa: d2:9f:8f:f3:33:5a:10:0b:a2:59:58:9d:45:34:6e: 26:43:9b:f6:a2:a1:15:fc:78:f5:a6:c9:e4:2e:ee: 8d:2d:8d:1d:6f:2c:84:f6:8d:31:3b:b0:66:32:23: 8a:5b:31:01:cd:7b:ec:4a:3f:e4:0e:9b:04:82:91: 53:08:bb:ec:65:8a:52:8e:3c:c5:94:2c:1c:91:4f: 90:31:10:ee:7b:a9:97:f4:d7:9c:c5:6a:f8:b6:fa: f9:75:e3:f9:98:3e:5f:69:b1:e7:5a:54:10:93:4c: cd:8d:a1:0c:0d:9e:cc:c6:9d:02:0f:58:cb:b4:0d: ea:3e:d5:46:54:24:ab:30:05:6b:f2:19:c3:ea:4e: a4:20:fe:bc:7d:48:91:4a:0f:71:6d:aa:95:37:fa: 3f:79:4d:b0:91:32:5e:51:f8:bf:bb:7d:7b:f0:20: 5e:4a:af:b0:a6:e5:90:80:4c:28:03:cb:f9:e2:6b: f2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B3:7B:B2:E2:19:70:31:46:93:7F:35:12:7E:ED:03:B9:29:ED:0A X509v3 Authority Key Identifier: keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption f1:39:47:18:ee:c6:93:dd:5d:ef:b6:0c:8a:fe:08:0e:ad:60: 8c:59:28:a7:a9:df:d0:29:18:8e:6c:47:fa:e7:10:5c:b4:06: e9:01:70:36:62:5a:9e:9a:c0:b2:c4:56:5e:93:28:42:2e:8c: 34:d5:1f:c3:d0:ae:d1:e3:44:f8:25:79:0d:ed:a6:24:86:e3: cd:3b:82:9b:ec:e9:82:92:cc:6e:ca:88:9f:76:a9:de:2d:3c: b1:38:a7:2c:17:04:21:38:1e:5a:af:ea:21:6b:90:29:73:23: 15:2c:c1:e4:8c:ff:f2:71:7a:fd:e2:d5:fd:9a:a8:a3:df:f4: 80:3c:94:68:00:9c:c9:b8:00:73:7c:5c:d7:a8:ac:5e:f5:ff: b9:4c:b6:2d:bb:ef:00:d0:fc:cb:7e:8c:5e:a4:ea:22:21:d1: aa:5e:dd:50:37:7e:0c:e5:24:3d:70:70:04:77:68:cb:6d:b6: 6c:8a:77:a7:eb:71:72:a8:3d:55:b6:3f:d7:1c:91:2d:af:ce: eb:c4:e0:1c:a6:78:b9:86:5d:f4:31:36:35:76:45:7f:7b:57: 7f:12:7c:79:c5:34:3b:69:f3:aa:6b:16:00:98:e9:e2:3c:5b: 06:1d:33:81:ab:a1:12:52:0a:e7:99:e3:29:f1:7d:63:eb:c6: 0a:d9:9d:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUOu3WlOORO50n/q9TbSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhZDYxYTUyZjEwODJlY2Y0Yzk3YjUxMjJiNDYxMTIyNTA3 MzQ1MWIwHhcNMjUxMjA2MDUwMTI0WhcNMjUxMjA3MDUwMTI0WjAzMTEwLwYDVQQD EygxMWIzN2JiMmUyMTk3MDMxNDY5MzdmMzUxMjdlZWQwM2I5MjllZDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbS5BUPjT9gRl3k5A3h9hRKNmtAH 99HK9EqCvwazmxbW52p9Wlxicvf+Vr33Iz/JlFZE5Qy/4nW5WwbE/eYrNGlfBF5W sRnCufrSn4/zM1oQC6JZWJ1FNG4mQ5v2oqEV/Hj1psnkLu6NLY0dbyyE9o0xO7Bm MiOKWzEBzXvsSj/kDpsEgpFTCLvsZYpSjjzFlCwckU+QMRDue6mX9NecxWr4tvr5 deP5mD5fabHnWlQQk0zNjaEMDZ7Mxp0CD1jLtA3qPtVGVCSrMAVr8hnD6k6kIP68 fUiRSg9xbaqVN/o/eU2wkTJeUfi/u3178CBeSq+wpuWQgEwoA8v54mvyowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGze7LiGXAxRpN/NRJ+7QO5Ke0KMB8GA1UdIwQY MBaAFBrWGlLxCC7PTJe1EitGESJQc0UbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEt NzJjZTk1YmE5YWZhLzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEtNzJjZTk1YmE5YWZh LzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8TlHGO7G k91d77YMiv4IDq1gjFkop6nf0CkYjmxH+ucQXLQG6QFwNmJanprAssRWXpMoQi6M NNUfw9Cu0eNE+CV5De2mJIbjzTuCm+zpgpLMbsqIn3ap3i08sTinLBcEITgeWq/q IWuQKXMjFSzB5Iz/8nF6/eLV/Zqoo9/0gDyUaACcybgAc3xc16isXvX/uUy2Lbvv AND8y36MXqTqIiHRql7dUDd+DOUkPXBwBHdoy222bIp3p+txcqg9VbY/1xyRLa/O 68TgHKZ4uYZd9DE2NXZFf3tXfxJ8ecU0O2nzqmsWAJjp4jxbBh0zgauhElIK55nj KfF9Y+vGCtmdcw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:25:22 2025 by rpki-client