This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.mft File: CANpo1iWH3KE-9WR6SdzfNsFw10.mft (raw, json) Hash identifier: Wb2XwDPDYtAlzKZmXkupabv6YWVtSybGO9T6zTAwhks= Subject key identifier: 8F:CF:63:D2:DF:52:C7:E5:B2:73:23:53:B6:0B:8D:AE:16:0F:63:01 Authority key identifier: 08:03:69:A3:58:96:1F:72:84:FB:D5:91:E9:27:73:7C:DB:05:C3:5D Certificate issuer: /CN=080369a358961f7284fbd591e927737cdb05c35d Certificate serial: 019B0DEDDC9EAAC7A1E278789B48C6F86828 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CANpo1iWH3KE-9WR6SdzfNsFw10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.mft Manifest number: 1772 Signing time: Thu 11 Dec 2025 15:00:50 +0000 Manifest this update: Thu 11 Dec 2025 15:00:50 +0000 Manifest next update: Fri 12 Dec 2025 15:00:50 +0000 Files and hashes: 1: CANpo1iWH3KE-9WR6SdzfNsFw10.crl (hash: CHF6z4+jmp20tsDIIJxlmlkLXFfxEvUWTfpOO8S+9Q8=) 2: GP2HIzJfCfnGM2MVlkSHwUHaN84.roa (hash: ETW1pgFwQtTKE9AFyJGtQ+Xl0Zj/E5KZv9xhDaWW5T8=) 3: qfVV9jSGkUSpTVAmIfthWu05Cnw.roa (hash: UbRHP3L39dp/ZkCYjMy0IuUuv/BT0urLDu7xXNtiXsY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.crl rsync://rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.mft rsync://rpki.ripe.net/repository/DEFAULT/CANpo1iWH3KE-9WR6SdzfNsFw10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:ed:dc:9e:aa:c7:a1:e2:78:78:9b:48:c6:f8:68:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=080369a358961f7284fbd591e927737cdb05c35d Validity Not Before: Dec 11 15:00:50 2025 GMT Not After : Dec 12 15:00:50 2025 GMT Subject: CN=8fcf63d2df52c7e5b2732353b60b8dae160f6301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2c:9a:36:a5:dc:40:aa:9a:23:7d:24:20:dd: 50:94:3e:3f:f1:54:bf:45:01:b3:ef:3f:e5:a6:67: ec:42:0d:bf:1a:66:6d:91:02:18:61:f5:fb:59:03: 3d:40:5d:51:6d:ab:34:fd:e0:70:e9:8b:b4:0d:49: 46:f8:a1:da:6a:19:40:89:a2:3c:e4:26:97:05:5d: d8:68:d7:27:a8:39:30:80:1d:dc:a6:b8:aa:1e:a6: 2e:a2:1c:95:2f:34:8f:8d:69:77:21:95:68:d6:6e: 42:ae:68:fa:b7:30:46:c3:a0:8b:fd:1a:a3:2f:82: f3:b2:20:2c:c8:88:49:8f:11:08:3c:a8:e7:71:0c: f7:1f:51:2c:77:25:c2:5d:7c:78:6f:14:1e:65:be: ee:7f:10:6a:ce:05:eb:39:94:b0:c6:d0:ee:94:92: b0:56:74:23:df:7a:90:a9:c7:98:36:88:53:a8:12: 96:ad:97:24:90:69:0b:33:25:43:34:0f:98:74:ab: e2:2f:c7:47:62:e6:dd:3a:70:01:65:3d:9a:bc:39: ae:50:f3:83:f8:fa:22:f1:bb:99:1d:df:1b:48:b3: b1:30:91:6c:cc:f2:01:26:3e:fe:a1:83:f6:21:ef: ee:50:4b:cb:cf:97:27:25:f7:68:81:d4:07:e5:27: 4b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CF:63:D2:DF:52:C7:E5:B2:73:23:53:B6:0B:8D:AE:16:0F:63:01 X509v3 Authority Key Identifier: keyid:08:03:69:A3:58:96:1F:72:84:FB:D5:91:E9:27:73:7C:DB:05:C3:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CANpo1iWH3KE-9WR6SdzfNsFw10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/01aac3-bce9-4d7e-a5fc-3f1b16c6cd63/1/CANpo1iWH3KE-9WR6SdzfNsFw10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d9:53:7f:db:23:1e:62:c1:d2:60:d7:88:f3:22:23:a3:c3: 56:39:8a:4e:72:67:b1:bd:fc:20:84:00:cc:bd:3d:30:a9:82: 7c:ff:b6:43:89:ad:ad:a9:0e:69:85:d0:d7:39:4d:8d:93:1b: 92:05:fb:48:7d:77:04:2b:64:74:7d:2b:9a:97:32:3e:16:f9: 4d:81:71:88:98:1b:0c:ad:a1:20:38:19:95:5d:b8:62:c0:83: dc:54:48:1e:0a:84:b4:ef:a8:3f:5a:43:77:ed:12:87:5a:7e: 1b:c2:5b:44:13:07:db:f0:23:a3:04:1a:a3:1c:7c:5c:97:dd: a5:ac:22:35:bf:c4:a4:e5:d1:20:82:98:63:02:d9:2a:54:24: a5:e5:58:66:c2:30:7f:e6:9c:e7:17:89:32:19:0b:69:5e:1d: 27:21:4b:5e:02:f4:64:f9:d1:8f:6e:a6:1a:45:4d:35:f7:82: 8e:4e:ba:48:39:80:42:2a:e2:77:9e:15:b7:ee:19:d0:28:c3: 3b:62:56:66:27:f1:88:60:3e:6e:5d:40:74:aa:31:29:24:bb: 60:3c:fa:e4:a4:43:62:c2:08:9a:26:49:10:1e:b5:78:93:2b: 1b:6c:3e:1b:ba:11:5e:13:1d:1a:0f:b6:75:86:4d:d8:72:44: 4e:70:a4:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsN7dyeqseh4nh4m0jG+GgoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDM2OWEzNTg5NjFmNzI4NGZiZDU5MWU5Mjc3MzdjZGIw NWMzNWQwHhcNMjUxMjExMTUwMDUwWhcNMjUxMjEyMTUwMDUwWjAzMTEwLwYDVQQD Eyg4ZmNmNjNkMmRmNTJjN2U1YjI3MzIzNTNiNjBiOGRhZTE2MGY2MzAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriyaNqXcQKqaI30kIN1QlD4/8VS/ RQGz7z/lpmfsQg2/GmZtkQIYYfX7WQM9QF1Rbas0/eBw6Yu0DUlG+KHaahlAiaI8 5CaXBV3YaNcnqDkwgB3cpriqHqYuohyVLzSPjWl3IZVo1m5Crmj6tzBGw6CL/Rqj L4LzsiAsyIhJjxEIPKjncQz3H1EsdyXCXXx4bxQeZb7ufxBqzgXrOZSwxtDulJKw VnQj33qQqceYNohTqBKWrZckkGkLMyVDNA+YdKviL8dHYubdOnABZT2avDmuUPOD +Poi8buZHd8bSLOxMJFszPIBJj7+oYP2Ie/uUEvLz5cnJfdogdQH5SdLKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/PY9LfUsflsnMjU7YLja4WD2MBMB8GA1UdIwQY MBaAFAgDaaNYlh9yhPvVkeknc3zbBcNdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FOcG8xaVdIM0tFLTlXUjZTZHpmTnNGdzEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8wMWFhYzMtYmNlOS00ZDdlLWE1ZmMt M2YxYjE2YzZjZDYzLzEvQ0FOcG8xaVdIM0tFLTlXUjZTZHpmTnNGdzEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8wMWFhYzMtYmNlOS00ZDdlLWE1ZmMtM2YxYjE2YzZjZDYz LzEvQ0FOcG8xaVdIM0tFLTlXUjZTZHpmTnNGdzEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHNlTf9sj HmLB0mDXiPMiI6PDVjmKTnJnsb38IIQAzL09MKmCfP+2Q4mtrakOaYXQ1zlNjZMb kgX7SH13BCtkdH0rmpcyPhb5TYFxiJgbDK2hIDgZlV24YsCD3FRIHgqEtO+oP1pD d+0Sh1p+G8JbRBMH2/AjowQaoxx8XJfdpawiNb/EpOXRIIKYYwLZKlQkpeVYZsIw f+ac5xeJMhkLaV4dJyFLXgL0ZPnRj26mGkVNNfeCjk66SDmAQirid54Vt+4Z0CjD O2JWZifxiGA+bl1AdKoxKSS7YDz65KRDYsIImiZJEB61eJMrG2w+G7oRXhMdGg+2 dYZN2HJETnCkYw== -----END CERTIFICATE-----Generated at Fri Dec 12 00:08:07 2025 by rpki-client