This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft File: giapl0ECulgiFxiL5tSdh3bTvrs.mft (raw, json) Hash identifier: 7r1IJ/NMzYv9e13srpYD/LQcvBjsHCl9LFx64QsiNzs= Subject key identifier: BA:0A:67:5E:60:5F:2B:82:CF:B9:51:7A:95:02:37:A6:3D:E7:2B:E8 Authority key identifier: 82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB Certificate issuer: /CN=8226a9974102ba582217188be6d49d8776d3bebb Certificate serial: 019AF389D65F7F5FD32534DD35315DA5E7D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft Manifest number: 1653 Signing time: Sat 06 Dec 2025 12:01:28 +0000 Manifest this update: Sat 06 Dec 2025 12:01:28 +0000 Manifest next update: Sun 07 Dec 2025 12:01:28 +0000 Files and hashes: 1: bHa5FimsimJ7r5ToFYrryDiB-9M.roa (hash: fOdUqsDSfmPIMyaQ7PWVxrcyqzptZELP3xikWCnwSh0=) 2: giapl0ECulgiFxiL5tSdh3bTvrs.crl (hash: 2ovJNCv+yJj9NbxH/JupMRej20O45sthDT23C6GH1mw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:d6:5f:7f:5f:d3:25:34:dd:35:31:5d:a5:e7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8226a9974102ba582217188be6d49d8776d3bebb Validity Not Before: Dec 6 12:01:28 2025 GMT Not After : Dec 7 12:01:28 2025 GMT Subject: CN=ba0a675e605f2b82cfb9517a950237a63de72be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:91:54:c0:17:8b:ae:31:d4:10:a5:9b:5e:87: 6d:6d:16:7a:48:76:2d:b0:84:44:80:f0:99:f3:0a: b0:d8:c8:13:bc:7a:ed:91:e7:62:7a:d2:d2:6e:63: 11:e2:52:cf:48:01:84:41:28:23:b5:c3:82:d7:4b: f7:9e:c5:df:19:40:ca:03:cd:65:bb:9d:d8:8f:86: bd:03:87:cf:f9:39:e6:58:73:a5:02:0a:e9:23:cf: 11:21:7b:7c:c2:ba:dc:50:ac:79:17:cc:01:82:cc: 3c:27:80:86:cf:61:30:1d:7c:ad:0e:ec:a9:75:84: 81:71:3c:a5:58:da:12:73:0b:d1:ad:6f:cc:16:11: fc:89:fa:e5:5f:48:f5:20:37:d3:ff:4c:82:47:74: ff:57:6b:2c:60:5d:7a:a8:fc:b2:5b:d9:4f:51:39: 6c:74:07:45:fb:dc:cd:8a:18:00:b0:5e:6e:c8:d8: 1c:af:60:0c:29:ca:a4:84:ad:9e:02:f0:f0:42:97: 8f:65:9c:ba:7f:36:97:f1:43:7a:8b:3c:af:b2:02: 85:bf:76:7d:d1:c9:5a:7f:22:42:ce:08:d2:6f:47: 11:d7:82:04:38:8c:d4:10:06:18:5b:85:13:00:46: 88:8a:0f:99:db:65:a7:ee:25:35:15:96:7e:cf:43: 4b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0A:67:5E:60:5F:2B:82:CF:B9:51:7A:95:02:37:A6:3D:E7:2B:E8 X509v3 Authority Key Identifier: keyid:82:26:A9:97:41:02:BA:58:22:17:18:8B:E6:D4:9D:87:76:D3:BE:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/giapl0ECulgiFxiL5tSdh3bTvrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/35477f-80d0-4ea4-bbde-767b72eb407b/1/giapl0ECulgiFxiL5tSdh3bTvrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e5:df:73:d1:35:1f:ac:14:07:c2:f8:50:54:ed:5d:d4:22: 49:30:5f:8e:e8:45:f9:5b:1f:93:18:33:f3:08:2e:80:48:99: 66:38:7e:ee:d4:2c:b7:5c:8f:77:41:5c:9d:ca:63:eb:21:7e: 2e:2c:e6:03:07:16:c3:5f:43:59:cb:70:f7:31:04:73:fc:91: 9f:61:2c:70:ba:6f:d1:b6:b6:61:ac:f5:6d:9d:8a:7e:24:02: 6c:e8:f2:b6:53:8a:34:50:af:52:2f:59:73:73:f9:7a:70:78: 13:df:5a:8f:d8:29:ae:50:ab:03:2e:38:27:56:25:f6:04:00: c1:38:da:e7:77:49:8d:9c:be:94:d5:0e:7d:3f:a3:40:2c:86: 45:ff:07:cc:ce:77:ca:ec:c5:b5:03:26:83:04:03:87:de:ea: 8f:bf:ad:ad:3d:9f:f9:6b:91:06:ea:19:29:cb:b6:f4:62:82: b0:4d:72:d0:46:a6:32:47:01:83:d5:28:41:a4:dd:97:07:b6: 47:f3:b0:f8:4f:16:88:ca:bb:10:ca:f3:1a:96:68:1c:3d:1a: cb:95:c7:39:c6:52:53:f2:a8:f9:f8:26:b2:0c:d4:25:a0:76: ea:55:98:08:69:72:20:7b:41:12:61:9c:e5:e1:81:8b:29:17: b9:30:f5:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzidZff1/TJTTdNTFdpefXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMjZhOTk3NDEwMmJhNTgyMjE3MTg4YmU2ZDQ5ZDg3NzZk M2JlYmIwHhcNMjUxMjA2MTIwMTI4WhcNMjUxMjA3MTIwMTI4WjAzMTEwLwYDVQQD EyhiYTBhNjc1ZTYwNWYyYjgyY2ZiOTUxN2E5NTAyMzdhNjNkZTcyYmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJFUwBeLrjHUEKWbXodtbRZ6SHYt sIREgPCZ8wqw2MgTvHrtkedietLSbmMR4lLPSAGEQSgjtcOC10v3nsXfGUDKA81l u53Yj4a9A4fP+TnmWHOlAgrpI88RIXt8wrrcUKx5F8wBgsw8J4CGz2EwHXytDuyp dYSBcTylWNoScwvRrW/MFhH8ifrlX0j1IDfT/0yCR3T/V2ssYF16qPyyW9lPUTls dAdF+9zNihgAsF5uyNgcr2AMKcqkhK2eAvDwQpePZZy6fzaX8UN6izyvsgKFv3Z9 0clafyJCzgjSb0cR14IEOIzUEAYYW4UTAEaIig+Z22Wn7iU1FZZ+z0NLNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLoKZ15gXyuCz7lRepUCN6Y95yvoMB8GA1UdIwQY MBaAFIImqZdBArpYIhcYi+bUnYd20767MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUt NzY3YjcyZWI0MDdiLzEvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8zNTQ3N2YtODBkMC00ZWE0LWJiZGUtNzY3YjcyZWI0MDdi LzEvZ2lhcGwwRUN1bGdpRnhpTDV0U2RoM2JUdnJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC+Xfc9E1 H6wUB8L4UFTtXdQiSTBfjuhF+Vsfkxgz8wgugEiZZjh+7tQst1yPd0Fcncpj6yF+ LizmAwcWw19DWctw9zEEc/yRn2EscLpv0ba2Yaz1bZ2KfiQCbOjytlOKNFCvUi9Z c3P5enB4E99aj9gprlCrAy44J1Yl9gQAwTja53dJjZy+lNUOfT+jQCyGRf8HzM53 yuzFtQMmgwQDh97qj7+trT2f+WuRBuoZKcu29GKCsE1y0EamMkcBg9UoQaTdlwe2 R/Ow+E8WiMq7EMrzGpZoHD0ay5XHOcZSU/Ko+fgmsgzUJaB26lWYCGlyIHtBEmGc 5eGBiykXuTD1NA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:49:29 2025 by rpki-client