This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft File: gz8MJRPUNTtAzvg5F57r-HOCRcY.mft (raw, json) Hash identifier: PQ1niX9xtC0VZ+Hy/LM5vxfr5e0IOTur9JHrP1IGJmE= Subject key identifier: D0:05:42:D0:92:CA:2F:04:EA:94:28:9F:E1:80:6E:79:52:41:4F:B9 Authority key identifier: 83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6 Certificate issuer: /CN=833f0c2513d4353b40cef839179eebf8738245c6 Certificate serial: 019AF12EB243D407635F6F8C804F0D18D3E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft Manifest number: 1235 Signing time: Sat 06 Dec 2025 01:02:40 +0000 Manifest this update: Sat 06 Dec 2025 01:02:40 +0000 Manifest next update: Sun 07 Dec 2025 01:02:40 +0000 Files and hashes: 1: gz8MJRPUNTtAzvg5F57r-HOCRcY.crl (hash: DEuU553Mbqe8OR6yw/Cebyykv0q/ZmXu40uHtTz/O78=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:b2:43:d4:07:63:5f:6f:8c:80:4f:0d:18:d3:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833f0c2513d4353b40cef839179eebf8738245c6 Validity Not Before: Dec 6 01:02:40 2025 GMT Not After : Dec 7 01:02:40 2025 GMT Subject: CN=d00542d092ca2f04ea94289fe1806e7952414fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c2:cc:de:df:92:1a:0a:1d:b6:16:e0:4d:d1: b5:e9:f6:70:37:46:51:f2:6b:46:e3:f8:f6:c5:c9: 0d:18:3c:14:d4:7c:7f:55:87:bc:ac:75:42:cd:a4: b2:e4:22:a0:67:ea:58:37:65:5b:7b:24:ce:5f:0d: dc:8d:68:e9:bb:c2:9e:ba:51:4e:35:a2:49:20:d9: df:65:6f:5a:99:2d:3a:ee:e0:c1:52:c6:15:f5:ab: bc:be:63:58:fe:55:8f:55:d1:72:b3:10:a8:ad:94: e7:da:a4:ad:de:5d:b6:26:a4:2c:ed:24:f4:e8:32: 2a:92:b3:92:f0:2b:62:29:40:bf:8f:dd:6b:32:1b: 80:e3:c7:82:33:54:36:19:a7:e6:50:0d:a2:f1:71: 1e:bf:48:be:d5:63:c0:4c:cb:be:a1:35:77:04:56: 35:9f:3e:b9:33:a7:9b:6d:51:52:6c:eb:fe:dd:1e: 5b:d6:d1:de:6e:5a:04:51:ec:d6:0e:09:82:c2:a0: 9d:5a:2d:46:67:3f:b6:cd:3a:96:da:fd:e3:f2:13: 89:64:3a:2b:f1:e8:ea:55:d9:8a:78:3f:1b:84:56: 07:1b:51:97:cb:79:65:2b:7e:bf:92:79:ad:ca:c6: 97:3e:b5:de:09:73:05:9d:60:69:ba:f1:5d:8d:15: 9d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:05:42:D0:92:CA:2F:04:EA:94:28:9F:E1:80:6E:79:52:41:4F:B9 X509v3 Authority Key Identifier: keyid:83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:b7:7e:f4:98:1b:9e:ea:af:8d:01:90:0d:30:7f:68:36:fc: 5e:2d:57:19:6c:6d:21:8c:b1:e2:5b:89:ac:36:4d:44:86:c7: 3a:b2:2d:ff:36:b7:dd:12:72:87:1e:43:fa:3f:6f:7f:1d:2b: ac:95:7c:53:f2:08:d3:a4:fd:86:b7:fe:a3:58:0c:8f:28:be: 3e:53:c7:d3:c7:6b:cc:10:d9:fa:75:f7:fd:96:63:0b:d0:e2: 9a:53:37:ad:07:07:df:de:03:99:8b:ce:5a:07:ae:34:65:82: 97:03:6b:93:5f:d4:69:01:e0:4f:11:2b:f8:27:40:c9:d7:67: 95:75:86:c6:0f:87:6f:09:6b:04:d8:02:36:f0:d3:13:d9:25: a1:69:8b:d9:a0:b5:bb:2d:47:5d:01:d5:7e:5b:4d:f6:cd:8b: de:90:c7:17:19:e8:1f:75:a0:72:c6:54:22:67:2f:d9:9a:ee: 40:23:f1:54:1f:cd:ed:26:df:bf:e5:2b:25:57:68:fd:3b:44: 3a:00:2e:71:73:a0:75:2e:8c:95:01:3e:07:b0:8f:90:d8:36: 53:c9:c2:ec:4f:e9:cc:ff:c5:b7:ef:c2:4d:2e:78:a2:82:fa: cb:bb:0d:bd:ea:ce:30:90:ad:91:ed:3d:60:82:d6:69:af:ca: 47:e5:df:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLrJD1AdjX2+MgE8NGNPlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2YwYzI1MTNkNDM1M2I0MGNlZjgzOTE3OWVlYmY4NzM4 MjQ1YzYwHhcNMjUxMjA2MDEwMjQwWhcNMjUxMjA3MDEwMjQwWjAzMTEwLwYDVQQD EyhkMDA1NDJkMDkyY2EyZjA0ZWE5NDI4OWZlMTgwNmU3OTUyNDE0ZmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncLM3t+SGgodthbgTdG16fZwN0ZR 8mtG4/j2xckNGDwU1Hx/VYe8rHVCzaSy5CKgZ+pYN2VbeyTOXw3cjWjpu8KeulFO NaJJINnfZW9amS067uDBUsYV9au8vmNY/lWPVdFysxCorZTn2qSt3l22JqQs7ST0 6DIqkrOS8CtiKUC/j91rMhuA48eCM1Q2GafmUA2i8XEev0i+1WPATMu+oTV3BFY1 nz65M6ebbVFSbOv+3R5b1tHebloEUezWDgmCwqCdWi1GZz+2zTqW2v3j8hOJZDor 8ejqVdmKeD8bhFYHG1GXy3llK36/knmtysaXPrXeCXMFnWBpuvFdjRWdtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNAFQtCSyi8E6pQon+GAbnlSQU+5MB8GA1UdIwQY MBaAFIM/DCUT1DU7QM74ORee6/hzgkXGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEt ZWQwN2VjZjJkYzM2LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEtZWQwN2VjZjJkYzM2 LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARrd+9Jgb nuqvjQGQDTB/aDb8Xi1XGWxtIYyx4luJrDZNRIbHOrIt/za33RJyhx5D+j9vfx0r rJV8U/II06T9hrf+o1gMjyi+PlPH08drzBDZ+nX3/ZZjC9DimlM3rQcH394DmYvO WgeuNGWClwNrk1/UaQHgTxEr+CdAyddnlXWGxg+HbwlrBNgCNvDTE9kloWmL2aC1 uy1HXQHVfltN9s2L3pDHFxnoH3WgcsZUImcv2ZruQCPxVB/N7Sbfv+UrJVdo/TtE OgAucXOgdS6MlQE+B7CPkNg2U8nC7E/pzP/Ft+/CTS54ooL6y7sNverOMJCtke09 YILWaa/KR+Xf9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:13:56 2025 by rpki-client