This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft File: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft (raw, json) Hash identifier: 29AurTSQE1ojG85lBuE9WmBgsghsaSrv0ek6e92Q87Y= Subject key identifier: 77:41:74:91:E0:15:D0:44:8B:E5:54:C9:38:19:59:ED:B5:2A:C9:F7 Authority key identifier: 46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4 Certificate issuer: /CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4 Certificate serial: 019B48F0807E720D5A2E2846F83DD19E3647 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft Manifest number: 08D5 Signing time: Tue 23 Dec 2025 02:01:19 +0000 Manifest this update: Tue 23 Dec 2025 02:01:19 +0000 Manifest next update: Wed 24 Dec 2025 02:01:19 +0000 Files and hashes: 1: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl (hash: dEVRUycv9W+Ju2DxwZS1rSi8z5Ym01e66LJ95LfYUow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:f0:80:7e:72:0d:5a:2e:28:46:f8:3d:d1:9e:36:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4 Validity Not Before: Dec 23 02:01:19 2025 GMT Not After : Dec 24 02:01:19 2025 GMT Subject: CN=77417491e015d0448be554c9381959edb52ac9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a8:6a:a9:98:08:f2:37:5a:2c:1d:65:51:78: e8:da:68:7c:40:23:6e:84:c0:6e:90:b6:d5:01:f3: 88:62:f8:6d:22:f1:77:fc:25:2e:4a:8e:f1:b0:f5: 8f:1a:07:1d:36:bb:91:a0:4f:45:1a:c9:79:3c:6e: ce:8c:eb:10:ad:6f:b6:af:cf:0b:08:8a:76:db:fb: 0d:6e:d8:a0:65:c3:9e:48:6f:d0:e8:ff:86:72:5b: 00:e9:64:bd:39:81:d9:a7:e3:85:d6:32:ef:ff:9b: b6:e3:21:c9:4a:8c:a8:f5:c0:61:48:a3:6b:72:9c: 4d:49:75:95:e0:b4:26:3e:c1:db:b7:ec:63:3a:aa: 83:ca:65:db:dc:d7:5c:d7:4c:ff:04:52:06:b7:1f: cf:1e:cf:59:df:48:47:40:cd:e5:64:5b:2b:a0:4b: 84:9f:c4:b3:7a:a3:25:55:a4:ba:ad:75:cc:12:2c: b3:cd:ac:51:9d:8b:3c:7b:48:68:f8:13:ad:69:61: aa:09:fc:c1:58:d0:06:fb:3e:50:74:95:77:0c:f5: 59:67:98:0c:49:09:10:02:34:e5:a6:4a:d9:f6:d4: 7b:4c:34:94:9b:86:63:e0:2a:f7:c3:28:87:02:f0: 55:99:f3:38:5e:23:fe:54:f2:bc:42:1b:db:66:41: 2f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:41:74:91:E0:15:D0:44:8B:E5:54:C9:38:19:59:ED:B5:2A:C9:F7 X509v3 Authority Key Identifier: keyid:46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:65:ec:bd:cd:3f:c8:61:e1:93:a7:32:2c:dd:11:71:29:56: 59:43:65:c4:15:f6:d4:1b:f7:30:7f:46:3b:84:89:e4:76:5d: 7d:ad:61:a4:6b:4f:34:37:5f:83:8c:b0:91:96:e5:71:e6:1f: 60:5a:94:d4:98:b7:ad:8f:21:51:dd:6e:8f:b8:b2:1f:01:4a: 6b:72:d3:33:61:0c:39:fa:b6:ab:5f:2a:4c:52:9b:cf:a9:47: a0:3d:ae:0f:27:12:3a:53:c9:eb:b3:a3:29:f7:19:be:44:20: 07:3b:da:d1:6a:36:e5:33:c4:7c:20:56:f3:09:d2:77:3b:a7: 99:a1:34:45:f2:4e:9e:ce:bc:70:bd:a7:78:39:41:0c:a8:f1: b6:50:48:60:b3:23:a0:d9:22:b2:ae:93:83:88:51:7b:69:06: 54:77:63:88:b9:13:0c:71:74:f2:87:dc:31:ce:db:84:69:2c: 87:de:51:f8:37:39:60:15:f8:9c:15:b7:0e:57:6b:91:81:d2: bf:c4:dd:35:31:8f:dd:27:be:24:dc:01:48:34:ee:6c:f6:c4: 48:e6:e3:41:7a:5b:cd:9d:00:ab:e9:2f:69:0a:ed:07:68:85: 51:f4:93:55:b0:6d:aa:84:95:58:39:b0:54:f5:ca:af:11:19: f7:84:7c:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtI8IB+cg1aLihG+D3RnjZHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2NTRmM2U2OTI3ZWM0YzdjOTdkMGYyMzZhOGMyNDUzNGE3 ZmNkZDQwHhcNMjUxMjIzMDIwMTE5WhcNMjUxMjI0MDIwMTE5WjAzMTEwLwYDVQQD Eyg3NzQxNzQ5MWUwMTVkMDQ0OGJlNTU0YzkzODE5NTllZGI1MmFjOWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2qhqqZgI8jdaLB1lUXjo2mh8QCNu hMBukLbVAfOIYvhtIvF3/CUuSo7xsPWPGgcdNruRoE9FGsl5PG7OjOsQrW+2r88L CIp22/sNbtigZcOeSG/Q6P+GclsA6WS9OYHZp+OF1jLv/5u24yHJSoyo9cBhSKNr cpxNSXWV4LQmPsHbt+xjOqqDymXb3Ndc10z/BFIGtx/PHs9Z30hHQM3lZFsroEuE n8SzeqMlVaS6rXXMEiyzzaxRnYs8e0ho+BOtaWGqCfzBWNAG+z5QdJV3DPVZZ5gM SQkQAjTlpkrZ9tR7TDSUm4Zj4Cr3wyiHAvBVmfM4XiP+VPK8QhvbZkEvcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHdBdJHgFdBEi+VUyTgZWe21Ksn3MB8GA1UdIwQY MBaAFEZU8+aSfsTHyX0PI2qMJFNKf83UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEt YjgwNTA2MjJhYTk2LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEtYjgwNTA2MjJhYTk2 LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaGXsvc0/ yGHhk6cyLN0RcSlWWUNlxBX21Bv3MH9GO4SJ5HZdfa1hpGtPNDdfg4ywkZblceYf YFqU1Ji3rY8hUd1uj7iyHwFKa3LTM2EMOfq2q18qTFKbz6lHoD2uDycSOlPJ67Oj KfcZvkQgBzva0Wo25TPEfCBW8wnSdzunmaE0RfJOns68cL2neDlBDKjxtlBIYLMj oNkisq6Tg4hRe2kGVHdjiLkTDHF08ofcMc7bhGksh95R+Dc5YBX4nBW3DldrkYHS v8TdNTGP3Se+JNwBSDTubPbESObjQXpbzZ0Aq+kvaQrtB2iFUfSTVbBtqoSVWDmw VPXKrxEZ94R8vw== -----END CERTIFICATE-----Generated at Tue Dec 23 07:56:17 2025 by rpki-client