This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json) Hash identifier: TJEa6vI8Tw15QEJvMa+1OLxSW5Vm4d0kd+6WmUWJTqM= Subject key identifier: 7A:01:1A:36:F1:D1:B7:EF:B7:CB:8F:46:39:94:24:DE:DE:4B:6E:06 Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9 Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9 Certificate serial: 019AF1D22327D39AA0B165814A3CB358F943 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft Manifest number: 1628 Signing time: Sat 06 Dec 2025 04:01:11 +0000 Manifest this update: Sat 06 Dec 2025 04:01:11 +0000 Manifest next update: Sun 07 Dec 2025 04:01:11 +0000 Files and hashes: 1: 3bMVFRs8FOeJcOkO2XYWLqzrrkg.roa (hash: jcRVVzJYs1NWamGAFlutgx67H4FacWZP/qMYz6OqYpI=) 2: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: /UsXlxB5GRuQiiiiy4JBX3UAjQI75jjr1fuavZkVN/g=) 3: iu1uLDkjA2lC4iCmh3mgoTg-ECs.roa (hash: J1M6seCPFdUQmcH1n+B1kmRcatuaeOrkFhV5roQrzQ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:23:27:d3:9a:a0:b1:65:81:4a:3c:b3:58:f9:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9 Validity Not Before: Dec 6 04:01:11 2025 GMT Not After : Dec 7 04:01:11 2025 GMT Subject: CN=7a011a36f1d1b7efb7cb8f46399424dede4b6e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f7:02:80:83:8d:e2:c7:3a:98:c9:ef:54:58: de:31:28:28:66:39:3c:55:2e:fe:00:b0:cf:f2:eb: b0:49:b8:f6:13:47:95:91:eb:24:24:7d:b3:26:08: 67:63:b9:b6:2f:db:83:f5:ea:c7:4a:f0:12:3f:f6: 88:30:f6:43:49:31:53:b0:bf:f9:7a:69:3c:2f:20: b7:3f:9e:bf:a5:77:58:3a:8b:46:3f:69:bb:c3:d5: 74:9c:9a:b4:a2:df:b5:b0:72:6d:44:03:e4:3b:c8: 25:59:7f:65:03:14:f6:bf:ff:de:d3:89:d8:76:f2: c2:ad:b2:3f:c2:8c:89:57:b0:ec:ab:a4:dd:f8:c2: 88:45:e4:21:33:38:4b:84:ef:01:45:fc:df:4f:e5: 0d:38:35:c5:c6:49:96:8b:c0:cc:ba:df:b0:0e:f2: 08:f4:26:e2:e1:b5:0b:bc:c3:c5:ab:13:58:dd:89: 61:02:6d:e5:08:cb:d9:f1:6b:cd:22:b3:79:6e:f5: dd:54:9c:96:78:dc:59:a7:b6:75:6b:22:c0:92:32: 27:d3:fc:5c:6a:f2:c2:03:0b:cd:18:4e:31:20:86: d0:d4:a8:35:a8:74:1f:a1:06:6a:9c:0e:da:15:ba: d4:2d:9c:fb:1f:9f:ac:ef:95:f7:f1:24:84:d3:d5: 76:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:01:1A:36:F1:D1:B7:EF:B7:CB:8F:46:39:94:24:DE:DE:4B:6E:06 X509v3 Authority Key Identifier: keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:1f:cb:cf:0a:6f:f4:33:34:55:84:90:62:12:6c:fb:8c:79: e8:b8:4d:ab:b3:ed:b6:79:a3:35:fd:c9:cc:91:e2:13:6f:24: 74:96:67:18:d4:57:aa:c7:c0:97:f3:3c:d4:89:2d:62:1e:52: 7c:5a:7f:28:6c:a5:74:05:59:8a:6f:aa:f4:7f:0f:b7:6d:ed: 6d:aa:70:5c:0d:07:9a:0e:89:23:35:bb:41:9b:26:fe:54:e9: a9:7b:37:dc:0b:c6:22:1f:ff:ae:6f:8e:68:48:91:a2:ba:62: 55:07:24:0b:eb:a2:83:66:71:aa:e2:f5:0a:3c:43:8b:e7:7e: 72:6a:21:5a:d8:3e:ad:96:6b:70:ab:d5:c2:1a:e9:80:c9:cf: 61:2d:5e:69:14:85:1c:bb:3b:7b:a9:c6:b8:2b:a5:08:4a:13: d8:55:57:0b:3f:3a:a3:80:ae:04:f9:3e:fe:e8:fa:b8:87:d0: f0:86:d5:f9:0f:38:a7:cd:c3:c3:f0:ce:ba:69:59:4a:25:1c: fc:05:6b:74:b6:e4:3b:61:8e:2c:ad:2c:32:17:94:9a:ef:b5: 53:bd:73:9c:84:37:b7:9c:53:5e:a6:38:c8:cd:d5:d0:06:8f: 3f:ee:2f:00:40:80:3a:d3:a6:d8:cd:e1:55:22:14:a4:02:3c: 9b:c9:b9:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0iMn05qgsWWBSjyzWPlDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTJkMGRjZDUwYTY4MmY5NzVlYTNkOGMzOGU1ZTY3YmIw MzIyZjkwHhcNMjUxMjA2MDQwMTExWhcNMjUxMjA3MDQwMTExWjAzMTEwLwYDVQQD Eyg3YTAxMWEzNmYxZDFiN2VmYjdjYjhmNDYzOTk0MjRkZWRlNGI2ZTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvcCgION4sc6mMnvVFjeMSgoZjk8 VS7+ALDP8uuwSbj2E0eVkeskJH2zJghnY7m2L9uD9erHSvASP/aIMPZDSTFTsL/5 emk8LyC3P56/pXdYOotGP2m7w9V0nJq0ot+1sHJtRAPkO8glWX9lAxT2v//e04nY dvLCrbI/woyJV7Dsq6Td+MKIReQhMzhLhO8BRfzfT+UNODXFxkmWi8DMut+wDvII 9Cbi4bULvMPFqxNY3YlhAm3lCMvZ8WvNIrN5bvXdVJyWeNxZp7Z1ayLAkjIn0/xc avLCAwvNGE4xIIbQ1Kg1qHQfoQZqnA7aFbrULZz7H5+s75X38SSE09V2SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHoBGjbx0bfvt8uPRjmUJN7eS24GMB8GA1UdIwQY MBaAFIGi0NzVCmgvl16j2MOOXme7AyL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQt ZmU0NWQ1MTYwYzM5LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQtZmU0NWQ1MTYwYzM5 LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARB/Lzwpv 9DM0VYSQYhJs+4x56LhNq7PttnmjNf3JzJHiE28kdJZnGNRXqsfAl/M81IktYh5S fFp/KGyldAVZim+q9H8Pt23tbapwXA0Hmg6JIzW7QZsm/lTpqXs33AvGIh//rm+O aEiRorpiVQckC+uig2ZxquL1CjxDi+d+cmohWtg+rZZrcKvVwhrpgMnPYS1eaRSF HLs7e6nGuCulCEoT2FVXCz86o4CuBPk+/uj6uIfQ8IbV+Q84p83Dw/DOumlZSiUc /AVrdLbkO2GOLK0sMheUmu+1U71znIQ3t5xTXqY4yM3V0AaPP+4vAECAOtOm2M3h VSIUpAI8m8m5FQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:01:08 2025 by rpki-client