This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft File: gQrwAiUQayCW6bIdmsLyBAaI3qI.mft (raw, json) Hash identifier: Jj52NARbWXqPyw9seyH83joAlukjoVIzQJXrLIsGAp0= Subject key identifier: 05:56:DB:DF:5A:F7:04:8E:44:7B:46:DF:B9:17:80:4A:35:0D:DC:82 Authority key identifier: 81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2 Certificate issuer: /CN=810af00225106b2096e9b21d9ac2f2040688dea2 Certificate serial: 019B2CD3BCAC8D7812DB0AA3CADA9A1680A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft Manifest number: 0AC8 Signing time: Wed 17 Dec 2025 15:00:32 +0000 Manifest this update: Wed 17 Dec 2025 15:00:32 +0000 Manifest next update: Thu 18 Dec 2025 15:00:32 +0000 Files and hashes: 1: RY9h-rx1ZstpJjozDETgohyO7Lk.roa (hash: 0CX3AZGe8LLC0uBgiztbMwk7WnvOC9Yq5FJHH6gri8w=) 2: gA8AYbCwcFJfHyhTWrHCSel_7z4.roa (hash: DRfyCzFOVemyTrr7A1FKb5ojCB7lbj59iDLvIoFfDN4=) 3: gQrwAiUQayCW6bIdmsLyBAaI3qI.crl (hash: TY3mAmG0z7iz5lMppmwb1f6jGBrMF+HGNBNZWLQT8z4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:d3:bc:ac:8d:78:12:db:0a:a3:ca:da:9a:16:80:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=810af00225106b2096e9b21d9ac2f2040688dea2 Validity Not Before: Dec 17 15:00:32 2025 GMT Not After : Dec 18 15:00:32 2025 GMT Subject: CN=0556dbdf5af7048e447b46dfb917804a350ddc82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:af:7b:73:38:87:b0:5e:a0:9c:39:54:91:03: 21:02:c9:4d:b1:94:f3:08:1d:80:a0:29:46:e6:d7: d4:2e:34:4b:e6:8c:1b:81:03:47:f0:2e:c5:e3:a1: 91:75:ee:c0:97:39:fc:b1:5a:68:1d:ea:d5:79:ed: 49:84:98:49:ca:45:fb:08:17:23:3b:74:ca:72:4b: 9d:d4:6e:47:4a:37:09:ad:22:83:99:ee:09:f6:fd: 64:43:5e:fb:b4:bd:05:2a:8f:71:ec:6d:37:25:4b: 6a:ed:d4:30:69:33:ac:9a:b9:21:51:a1:e9:66:43: 0a:f1:26:49:d1:b9:b4:ce:8f:b0:e7:7c:87:4f:8e: 19:c0:6c:74:38:30:a3:db:86:1b:dc:5b:03:35:ee: 40:e6:81:03:7f:b6:80:19:2b:21:ee:97:47:97:53: 15:9b:f2:a5:1c:02:4f:53:86:01:2e:ba:f5:f3:ab: 35:fd:ec:b5:76:8b:1b:6e:bd:66:97:41:fc:89:71: ef:aa:ef:97:31:0c:51:25:18:dd:86:52:c4:cc:57: 6c:cf:d5:3f:ef:cb:dd:2d:27:b3:cc:69:56:d0:b7: 84:27:6b:e9:65:44:70:19:59:19:76:da:5d:ad:eb: 28:58:b5:65:18:35:f0:0f:69:fb:fe:ff:ec:63:42: 26:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:56:DB:DF:5A:F7:04:8E:44:7B:46:DF:B9:17:80:4A:35:0D:DC:82 X509v3 Authority Key Identifier: keyid:81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:55:a5:bb:33:ae:d9:af:48:a0:5a:a4:60:06:80:5a:b7:a3: bb:6e:c6:b8:a4:9e:30:c7:57:26:f9:df:42:8b:2a:f4:55:74: ce:9a:2a:22:a6:26:56:fe:49:30:f5:65:bb:75:f4:6c:79:5a: 0e:e8:30:c3:d4:7f:94:7c:cb:28:64:f4:79:18:3d:9f:8e:62: 72:7f:4f:c0:26:1c:83:c2:4d:d3:8e:68:cc:34:b1:b7:80:d8: d2:93:93:f3:a8:19:5e:b2:4a:0a:7e:4e:82:e1:32:1c:1a:76: ac:2c:85:fc:79:30:52:6a:61:f0:7a:a5:a8:4d:1a:46:4d:4b: f6:2b:d7:55:77:fd:d2:62:3c:35:1d:1a:2e:f8:17:d2:0d:1b: 3f:59:fb:00:db:e0:cd:81:2f:e6:00:fa:bd:91:98:0e:d5:e1: 7e:6d:77:1c:e9:e8:be:f0:ac:c0:cd:ec:e1:50:ce:79:2e:38: 11:28:99:fe:12:fe:29:a2:42:79:9e:57:94:2f:8f:6f:39:57: fd:f1:9f:d3:2e:85:4f:98:a5:42:56:8f:1a:dd:ea:4a:4c:f9: a7:d8:79:06:f8:38:7f:e4:fb:8f:c8:64:80:c0:bb:13:19:38: d4:c3:e4:27:dc:c2:bc:a1:bc:e6:57:b9:ed:70:df:d7:a8:08: dc:b9:ea:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZss07ysjXgS2wqjytqaFoCoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxMGFmMDAyMjUxMDZiMjA5NmU5YjIxZDlhYzJmMjA0MDY4 OGRlYTIwHhcNMjUxMjE3MTUwMDMyWhcNMjUxMjE4MTUwMDMyWjAzMTEwLwYDVQQD EygwNTU2ZGJkZjVhZjcwNDhlNDQ3YjQ2ZGZiOTE3ODA0YTM1MGRkYzgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxK97cziHsF6gnDlUkQMhAslNsZTz CB2AoClG5tfULjRL5owbgQNH8C7F46GRde7Alzn8sVpoHerVee1JhJhJykX7CBcj O3TKckud1G5HSjcJrSKDme4J9v1kQ177tL0FKo9x7G03JUtq7dQwaTOsmrkhUaHp ZkMK8SZJ0bm0zo+w53yHT44ZwGx0ODCj24Yb3FsDNe5A5oEDf7aAGSsh7pdHl1MV m/KlHAJPU4YBLrr186s1/ey1dosbbr1ml0H8iXHvqu+XMQxRJRjdhlLEzFdsz9U/ 78vdLSezzGlW0LeEJ2vpZURwGVkZdtpdresoWLVlGDXwD2n7/v/sY0ImgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAVW299a9wSORHtG37kXgEo1DdyCMB8GA1UdIwQY MBaAFIEK8AIlEGsglumyHZrC8gQGiN6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80NDJhOWItOWVkNy00OTNkLTgzZjMt M2NhNDg4ZGVlZTg5LzEvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC80NDJhOWItOWVkNy00OTNkLTgzZjMtM2NhNDg4ZGVlZTg5 LzEvZ1Fyd0FpVVFheUNXNmJJZG1zTHlCQWFJM3FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVWluzOu 2a9IoFqkYAaAWreju27GuKSeMMdXJvnfQosq9FV0zpoqIqYmVv5JMPVlu3X0bHla Dugww9R/lHzLKGT0eRg9n45icn9PwCYcg8JN045ozDSxt4DY0pOT86gZXrJKCn5O guEyHBp2rCyF/HkwUmph8HqlqE0aRk1L9ivXVXf90mI8NR0aLvgX0g0bP1n7ANvg zYEv5gD6vZGYDtXhfm13HOnovvCswM3s4VDOeS44ESiZ/hL+KaJCeZ5XlC+PbzlX /fGf0y6FT5ilQlaPGt3qSkz5p9h5Bvg4f+T7j8hkgMC7Exk41MPkJ9zCvKG85le5 7XDf16gI3LnqOg== -----END CERTIFICATE-----Generated at Wed Dec 17 16:38:33 2025 by rpki-client