This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft File: GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json) Hash identifier: iBeIt2Ixt23CtMslPKu9bNa71utPF3pji/o1Os0e3FA= Subject key identifier: 04:52:3F:B0:9F:05:1D:03:E4:01:0D:DB:25:9D:23:69:FD:5D:DD:10 Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70 Certificate issuer: /CN=18745466b4e146830b962b74906db1c6d081fc70 Certificate serial: 019AF19B6DB48940CB3864C5C4C3335D65EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft Manifest number: 1727 Signing time: Sat 06 Dec 2025 03:01:26 +0000 Manifest this update: Sat 06 Dec 2025 03:01:26 +0000 Manifest next update: Sun 07 Dec 2025 03:01:26 +0000 Files and hashes: 1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: mOUKHUXmQOgn+mpk/FChqU14R85a/8wI1LcF6PyxoSA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:6d:b4:89:40:cb:38:64:c5:c4:c3:33:5d:65:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70 Validity Not Before: Dec 6 03:01:26 2025 GMT Not After : Dec 7 03:01:26 2025 GMT Subject: CN=04523fb09f051d03e4010ddb259d2369fd5ddd10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:3e:27:0e:74:c6:a1:df:b0:52:15:c8:08: 85:d7:a9:ef:a2:f9:ca:6b:8d:12:7d:dd:05:e9:b6: 1b:1b:e7:2b:10:7a:e6:f2:8f:7f:27:e4:54:00:6b: 01:29:4e:cd:9b:3e:1a:d0:84:cf:12:9e:7a:17:d1: 1e:e1:dd:bc:1b:42:f3:7a:5c:4b:71:bc:1c:2f:d9: 85:76:98:2a:cf:6b:5e:eb:98:97:36:bb:e0:9d:7a: ba:d2:a7:5d:01:71:05:f5:21:bd:ca:ab:21:22:dd: 70:37:54:c7:35:ba:22:e4:de:0a:df:93:cc:e4:a8: ce:a7:b2:f3:ac:37:89:94:da:9c:83:db:ab:13:8e: f1:c4:af:00:71:7b:11:24:7d:b1:e9:3c:4a:13:76: bb:f5:b1:42:a4:5d:12:70:db:30:57:6c:4d:58:c5: 98:46:28:66:e8:76:5e:26:ed:db:e2:fc:ac:0c:6d: eb:0b:ea:9e:51:d8:d5:a1:65:8e:8d:9f:ee:78:a5: b2:97:ea:4a:fa:f3:e8:0b:16:47:bd:10:68:32:81: 78:b4:22:2b:27:e6:b4:b0:15:6f:9b:7a:18:2c:25: 56:66:e9:92:09:64:28:e0:41:3c:a9:31:df:9e:a1: 38:63:7b:40:ee:d4:23:62:82:71:73:a1:51:6d:60: 87:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:52:3F:B0:9F:05:1D:03:E4:01:0D:DB:25:9D:23:69:FD:5D:DD:10 X509v3 Authority Key Identifier: keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:a3:ec:01:3f:04:e0:99:1a:56:94:8a:77:91:5d:0c:78:dd: 86:71:ba:ef:3c:56:34:96:8d:34:6b:f8:99:89:19:75:ab:d4: 46:df:91:d7:fa:c5:4b:a1:a2:85:2e:4d:ab:f5:94:a0:e9:74: 9c:10:fd:e6:d7:4f:0b:90:21:6c:8d:24:c5:20:e0:dd:4a:fc: c0:a2:5c:3b:4d:f8:c2:73:a2:ff:a4:f1:91:fb:56:35:74:8f: b1:cf:d8:e2:65:86:ed:00:24:1a:3a:10:29:64:62:86:a5:91: a5:3a:8b:23:eb:5b:fc:11:89:0e:e9:7f:cf:c3:5e:5c:22:d6: 71:ad:19:a1:06:38:ad:11:e8:86:16:be:4c:7e:b3:d9:94:00: 11:b7:56:a5:ae:72:9a:6c:b3:f6:18:fe:c5:49:4d:48:d4:be: 54:6c:74:66:67:d8:89:23:bf:ad:46:d3:22:da:bf:75:35:5d: 0a:1b:0a:0b:96:c0:bd:1a:c7:ad:35:dc:fe:e8:46:ff:1d:b7: a3:22:12:47:c4:f4:11:92:4b:a9:b4:ca:b0:cc:be:55:3c:95: c7:5c:74:02:a3:00:22:ee:3a:4f:17:24:7e:72:8f:b3:2b:25: 19:e8:ab:24:c2:91:49:ab:4b:42:33:2e:94:3e:64:9a:e4:53: a9:26:25:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm220iUDLOGTFxMMzXWXuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NzQ1NDY2YjRlMTQ2ODMwYjk2MmI3NDkwNmRiMWM2ZDA4 MWZjNzAwHhcNMjUxMjA2MDMwMTI2WhcNMjUxMjA3MDMwMTI2WjAzMTEwLwYDVQQD EygwNDUyM2ZiMDlmMDUxZDAzZTQwMTBkZGIyNTlkMjM2OWZkNWRkZDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDs+Jw50xqHfsFIVyAiF16nvovnK a40Sfd0F6bYbG+crEHrm8o9/J+RUAGsBKU7Nmz4a0ITPEp56F9Ee4d28G0LzelxL cbwcL9mFdpgqz2te65iXNrvgnXq60qddAXEF9SG9yqshIt1wN1THNboi5N4K35PM 5KjOp7LzrDeJlNqcg9urE47xxK8AcXsRJH2x6TxKE3a79bFCpF0ScNswV2xNWMWY Rihm6HZeJu3b4vysDG3rC+qeUdjVoWWOjZ/ueKWyl+pK+vPoCxZHvRBoMoF4tCIr J+a0sBVvm3oYLCVWZumSCWQo4EE8qTHfnqE4Y3tA7tQjYoJxc6FRbWCH/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFARSP7CfBR0D5AEN2yWdI2n9Xd0QMB8GA1UdIwQY MBaAFBh0VGa04UaDC5YrdJBtscbQgfxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS83Yjk4MWMtMDFlMy00ODk1LWJmMWYt ZjFmYzA1NDFjNjQ5LzEvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS83Yjk4MWMtMDFlMy00ODk1LWJmMWYtZjFmYzA1NDFjNjQ5 LzEvR0hSVVpyVGhSb01MbGl0MGtHMnh4dENCX0hBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhqPsAT8E 4JkaVpSKd5FdDHjdhnG67zxWNJaNNGv4mYkZdavURt+R1/rFS6GihS5Nq/WUoOl0 nBD95tdPC5AhbI0kxSDg3Ur8wKJcO034wnOi/6TxkftWNXSPsc/Y4mWG7QAkGjoQ KWRihqWRpTqLI+tb/BGJDul/z8NeXCLWca0ZoQY4rRHohha+TH6z2ZQAEbdWpa5y mmyz9hj+xUlNSNS+VGx0ZmfYiSO/rUbTItq/dTVdChsKC5bAvRrHrTXc/uhG/x23 oyISR8T0EZJLqbTKsMy+VTyVx1x0AqMAIu46TxckfnKPsyslGeirJMKRSatLQjMu lD5kmuRTqSYl5w== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:34 2025 by rpki-client