This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft File: Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft (raw, json) Hash identifier: o5/9mpoNq8FmZbScfifBHy6++IXN4gnGHdzJ2JQOdZ8= Subject key identifier: FC:3A:46:75:29:B9:BD:F5:41:E0:D3:A7:2F:8E:D7:18:43:50:F2:DB Authority key identifier: 31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54 Certificate issuer: /CN=31fd401741e669e920b03c6c76aa3a7871403f54 Certificate serial: 019B597630FCB188DDE3D052BAEAC69C7557 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft Manifest number: 05FE Signing time: Fri 26 Dec 2025 07:01:16 +0000 Manifest this update: Fri 26 Dec 2025 07:01:16 +0000 Manifest next update: Sat 27 Dec 2025 07:01:16 +0000 Files and hashes: 1: Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl (hash: wHBqTK7+L1m83pJNejdZCykMWmveRna39C3dz8VZXaA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:30:fc:b1:88:dd:e3:d0:52:ba:ea:c6:9c:75:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31fd401741e669e920b03c6c76aa3a7871403f54 Validity Not Before: Dec 26 07:01:16 2025 GMT Not After : Dec 27 07:01:16 2025 GMT Subject: CN=fc3a467529b9bdf541e0d3a72f8ed7184350f2db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c7:80:5b:eb:4b:d6:08:60:5a:1c:4b:99:71: 28:af:66:86:b0:09:41:64:a7:20:90:36:ae:54:9c: 1a:a8:4c:94:ca:36:32:ed:13:3c:20:45:61:cf:dc: d7:18:32:d9:a2:8c:3e:01:d6:19:02:2c:72:fd:0e: f4:50:6e:e8:86:83:7d:8b:60:da:e9:c7:b0:51:b5: c5:8b:83:ef:fb:23:7b:7d:c7:00:74:b9:26:a7:8d: 54:ef:6b:3a:3b:3e:4b:a8:46:df:ce:d4:ba:d5:44: a9:a8:f1:fa:df:66:1b:a4:64:d9:36:30:b8:6e:f4: 79:8c:d6:b1:c5:02:87:0d:dd:a7:81:9b:00:46:e9: 81:fd:c7:6a:6e:da:36:1f:d9:fb:42:8d:74:57:7c: 87:1c:b8:ca:09:6c:13:70:ec:5f:1f:54:7a:8e:83: ba:d6:65:4e:94:67:7a:b4:d6:15:07:38:4e:a7:82: c0:58:7f:37:4d:1d:73:24:86:40:e8:33:6c:6e:ce: 28:24:a5:05:4a:f6:f4:93:d0:05:7f:77:39:55:63: bd:40:51:5a:97:30:5f:7c:0b:db:4e:7a:d9:e7:c5: 68:9e:74:62:41:ff:81:51:86:7e:59:b8:b9:87:77: fd:a7:64:2c:50:31:5a:1a:e1:49:99:f9:db:59:bb: 3c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3A:46:75:29:B9:BD:F5:41:E0:D3:A7:2F:8E:D7:18:43:50:F2:DB X509v3 Authority Key Identifier: keyid:31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:7e:3d:85:2c:42:f5:67:9c:b5:e2:a1:b4:6b:51:af:7d:2a: bd:09:3b:a2:e0:48:06:f2:43:99:78:63:76:26:c4:d2:2c:8d: b4:6f:3d:0d:69:1c:f2:64:ca:46:f3:2e:19:42:2a:cb:cf:22: 95:f2:ff:cb:f0:76:73:f7:b5:d0:32:9f:50:29:34:ee:25:fe: 39:a9:d1:11:04:de:c6:58:14:c6:f9:57:64:c4:55:7c:45:6a: df:18:f5:4f:29:2d:c3:df:8a:a9:a0:c5:1b:4d:d9:7e:36:4c: 45:ed:8e:ec:ba:a7:b8:3b:ff:81:19:b3:a3:46:90:95:18:e5: 01:f7:69:fc:e6:6b:86:5e:04:d0:2a:f2:d1:7e:b0:ac:4d:d3: c7:31:e1:ee:9e:05:22:e1:b8:d7:73:15:98:02:fb:c8:a2:b3: 0c:b4:cc:4d:d8:14:cd:8e:45:1e:11:71:59:d5:ee:f7:28:31: 59:4f:72:ae:70:95:22:50:a5:62:89:c9:46:9c:6c:85:4f:64: d4:ef:27:a0:b4:6b:78:6a:96:37:e1:a6:18:a6:dd:60:ab:79: 75:b2:7d:45:eb:d2:74:31:02:80:28:06:b2:ad:a7:0c:8d:a1: 12:f5:6c:f7:25:2f:48:00:64:ea:e1:88:cd:a5:8d:58:8f:b8: 78:db:8f:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdjD8sYjd49BSuurGnHVXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZmQ0MDE3NDFlNjY5ZTkyMGIwM2M2Yzc2YWEzYTc4NzE0 MDNmNTQwHhcNMjUxMjI2MDcwMTE2WhcNMjUxMjI3MDcwMTE2WjAzMTEwLwYDVQQD EyhmYzNhNDY3NTI5YjliZGY1NDFlMGQzYTcyZjhlZDcxODQzNTBmMmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5seAW+tL1ghgWhxLmXEor2aGsAlB ZKcgkDauVJwaqEyUyjYy7RM8IEVhz9zXGDLZoow+AdYZAixy/Q70UG7ohoN9i2Da 6cewUbXFi4Pv+yN7fccAdLkmp41U72s6Oz5LqEbfztS61USpqPH632YbpGTZNjC4 bvR5jNaxxQKHDd2ngZsARumB/cdqbto2H9n7Qo10V3yHHLjKCWwTcOxfH1R6joO6 1mVOlGd6tNYVBzhOp4LAWH83TR1zJIZA6DNsbs4oJKUFSvb0k9AFf3c5VWO9QFFa lzBffAvbTnrZ58VonnRiQf+BUYZ+Wbi5h3f9p2QsUDFaGuFJmfnbWbs8qQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPw6RnUpub31QeDTpy+O1xhDUPLbMB8GA1UdIwQY MBaAFDH9QBdB5mnpILA8bHaqOnhxQD9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9iYTM2NWItNjk0Yi00ZmJhLTg2NTMt ZGUzNmJmMjBiYTRmLzEvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9iYTM2NWItNjk0Yi00ZmJhLTg2NTMtZGUzNmJmMjBiYTRm LzEvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAun49hSxC 9WecteKhtGtRr30qvQk7ouBIBvJDmXhjdibE0iyNtG89DWkc8mTKRvMuGUIqy88i lfL/y/B2c/e10DKfUCk07iX+OanREQTexlgUxvlXZMRVfEVq3xj1Tyktw9+KqaDF G03ZfjZMRe2O7LqnuDv/gRmzo0aQlRjlAfdp/OZrhl4E0Cry0X6wrE3TxzHh7p4F IuG413MVmAL7yKKzDLTMTdgUzY5FHhFxWdXu9ygxWU9yrnCVIlClYonJRpxshU9k 1O8noLRreGqWN+GmGKbdYKt5dbJ9RevSdDECgCgGsq2nDI2hEvVs9yUvSABk6uGI zaWNWI+4eNuP6Q== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:25 2025 by rpki-client