This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json) Hash identifier: 7LBrWgFao0LPI4HaTW1yhFf8vDJg9cKiWq72cWBm804= Subject key identifier: EB:B7:FC:ED:6E:99:5F:74:16:EA:71:F8:BD:0F:E0:F4:7D:2B:8F:27 Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9 Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9 Certificate serial: 019B2BC19F4A182E03E9D1F73935050E1F0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft Manifest number: 1646 Signing time: Wed 17 Dec 2025 10:01:08 +0000 Manifest this update: Wed 17 Dec 2025 10:01:08 +0000 Manifest next update: Thu 18 Dec 2025 10:01:08 +0000 Files and hashes: 1: 3bMVFRs8FOeJcOkO2XYWLqzrrkg.roa (hash: jcRVVzJYs1NWamGAFlutgx67H4FacWZP/qMYz6OqYpI=) 2: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: ZTsrX9EtnYWVAf0ilXxt/1GFP3ptqOMslHijklOjapY=) 3: iu1uLDkjA2lC4iCmh3mgoTg-ECs.roa (hash: J1M6seCPFdUQmcH1n+B1kmRcatuaeOrkFhV5roQrzQ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:c1:9f:4a:18:2e:03:e9:d1:f7:39:35:05:0e:1f:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9 Validity Not Before: Dec 17 10:01:08 2025 GMT Not After : Dec 18 10:01:08 2025 GMT Subject: CN=ebb7fced6e995f7416ea71f8bd0fe0f47d2b8f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:93:0a:c0:1a:55:ab:8f:29:73:f7:73:a4: 74:22:ec:de:42:9f:33:80:5e:27:c4:cf:31:16:f7: 03:51:d4:1e:f1:ee:00:90:36:23:bc:4f:64:e5:07: c5:8f:31:77:d5:cd:50:b9:fd:85:aa:f1:41:15:85: 09:eb:e0:bd:e4:e1:60:fb:89:4f:ef:bc:e6:cf:7b: bf:6c:23:8f:de:57:07:e0:0a:61:82:61:b2:99:db: 63:c4:f2:b0:b6:d1:b3:d9:d6:c1:d5:c9:cc:91:14: 5a:dc:f5:8c:c8:f3:86:9b:45:68:9e:2e:e4:23:ba: 81:91:25:5c:3a:48:7c:f6:d5:cd:73:3a:a6:e0:82: ad:1e:ac:fe:03:d2:31:29:e7:b1:c1:83:cf:70:65: 9d:56:ca:ba:66:e0:3a:0c:c1:12:2f:a6:e7:36:89: b8:7c:5e:97:ca:a4:8f:91:1b:86:a8:ef:a8:b5:df: a1:c7:2a:5f:bd:dd:58:ed:80:36:ae:68:88:f8:42: ef:6a:05:6b:ac:ab:fb:56:14:05:df:74:6a:70:24: 50:45:28:33:cc:69:a1:66:9e:05:03:32:dd:d3:2e: 23:ad:09:06:06:b8:42:6f:ad:28:b7:83:e9:4d:3c: bf:8c:53:8f:94:5d:f7:5a:ff:28:ad:a2:cc:68:4e: bb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:B7:FC:ED:6E:99:5F:74:16:EA:71:F8:BD:0F:E0:F4:7D:2B:8F:27 X509v3 Authority Key Identifier: keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:39:48:35:f8:f8:1a:6c:da:cb:03:7b:f0:3e:18:77:61:73: 43:9d:ad:4e:2b:76:d6:1f:f5:56:ae:c5:3a:9e:cd:84:6c:33: 25:bc:d8:26:62:6b:76:7f:56:c4:5d:45:a9:d8:52:78:6c:bd: db:38:10:4b:c2:d0:34:2d:df:fc:8a:c7:60:f1:29:19:b7:ba: e8:96:f0:11:1b:08:85:df:5f:31:d0:1c:2d:4e:d8:5f:2a:e1: cf:3d:a2:b2:c7:9a:bb:91:3f:10:bb:ae:04:ad:a4:ec:59:35: 6e:f7:b1:06:6d:90:6e:11:5c:3e:7e:b7:74:67:36:fc:63:b2: 08:de:6d:4b:f4:6a:28:d3:45:27:0d:a1:c4:63:c6:2d:ae:a0: 85:dc:01:7f:d6:93:26:26:5d:a3:02:4c:00:b7:66:6c:22:e5: 4e:8d:e6:81:8b:be:d2:ed:fe:1e:2f:29:15:01:2c:c6:25:69: 8d:15:94:94:62:64:26:1e:70:d2:a5:03:b8:52:0c:4a:13:b3: ed:88:02:e0:03:8f:92:6f:bb:4b:81:85:9f:33:6b:bd:6b:9a: 36:97:32:8d:d1:3d:75:81:ab:98:e0:ac:94:fe:60:94:ca:39: 5b:18:d0:ef:a5:98:d9:f4:b2:80:4d:00:41:70:b7:32:69:27: b4:b4:5e:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrwZ9KGC4D6dH3OTUFDh8OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxYTJkMGRjZDUwYTY4MmY5NzVlYTNkOGMzOGU1ZTY3YmIw MzIyZjkwHhcNMjUxMjE3MTAwMTA4WhcNMjUxMjE4MTAwMTA4WjAzMTEwLwYDVQQD EyhlYmI3ZmNlZDZlOTk1Zjc0MTZlYTcxZjhiZDBmZTBmNDdkMmI4ZjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufmTCsAaVauPKXP3c6R0IuzeQp8z gF4nxM8xFvcDUdQe8e4AkDYjvE9k5QfFjzF31c1Quf2FqvFBFYUJ6+C95OFg+4lP 77zmz3u/bCOP3lcH4AphgmGymdtjxPKwttGz2dbB1cnMkRRa3PWMyPOGm0Voni7k I7qBkSVcOkh89tXNczqm4IKtHqz+A9IxKeexwYPPcGWdVsq6ZuA6DMESL6bnNom4 fF6XyqSPkRuGqO+otd+hxypfvd1Y7YA2rmiI+ELvagVrrKv7VhQF33RqcCRQRSgz zGmhZp4FAzLd0y4jrQkGBrhCb60ot4PpTTy/jFOPlF33Wv8oraLMaE67wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOu3/O1umV90Fupx+L0P4PR9K48nMB8GA1UdIwQY MBaAFIGi0NzVCmgvl16j2MOOXme7AyL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQt ZmU0NWQ1MTYwYzM5LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9kMjVhNzItYmJlMy00YWIwLTk1NjQtZmU0NWQ1MTYwYzM5 LzEvZ2FMUTNOVUthQy1YWHFQWXc0NWVaN3NESXZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWTlINfj4 GmzaywN78D4Yd2FzQ52tTit21h/1Vq7FOp7NhGwzJbzYJmJrdn9WxF1FqdhSeGy9 2zgQS8LQNC3f/IrHYPEpGbe66JbwERsIhd9fMdAcLU7YXyrhzz2isseau5E/ELuu BK2k7Fk1bvexBm2QbhFcPn63dGc2/GOyCN5tS/RqKNNFJw2hxGPGLa6ghdwBf9aT JiZdowJMALdmbCLlTo3mgYu+0u3+Hi8pFQEsxiVpjRWUlGJkJh5w0qUDuFIMShOz 7YgC4AOPkm+7S4GFnzNrvWuaNpcyjdE9dYGrmOCslP5glMo5WxjQ76WY2fSygE0A QXC3MmkntLRelg== -----END CERTIFICATE-----Generated at Wed Dec 17 18:12:57 2025 by rpki-client