This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft File: mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft (raw, json) Hash identifier: w9+CvHQeqazFczmQIDzK7GVJmajqZT3L7kQSq4Mh75g= Subject key identifier: 12:E7:5A:9C:4F:74:A2:94:F6:51:9C:86:7F:F0:78:9E:C1:08:9A:FA Authority key identifier: 99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4 Certificate issuer: /CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4 Certificate serial: 019B2551CED51871BB9ACAF8666F461B0782 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft Manifest number: 0AA7 Signing time: Tue 16 Dec 2025 04:01:16 +0000 Manifest this update: Tue 16 Dec 2025 04:01:16 +0000 Manifest next update: Wed 17 Dec 2025 04:01:16 +0000 Files and hashes: 1: mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl (hash: 2K+u/tq5RuEqk4cHx2z/2EkrYHdL6Is4TQQY3yALA6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:51:ce:d5:18:71:bb:9a:ca:f8:66:6f:46:1b:07:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4 Validity Not Before: Dec 16 04:01:16 2025 GMT Not After : Dec 17 04:01:16 2025 GMT Subject: CN=12e75a9c4f74a294f6519c867ff0789ec1089afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8d:48:3d:6d:ba:95:39:53:98:93:f8:10:4f: 5d:fb:97:19:9b:a3:2d:61:20:38:f0:7e:15:5e:ae: d3:69:41:f7:85:75:1e:a4:74:bb:de:57:62:9b:0b: 4b:78:14:cc:73:db:6f:39:26:c4:54:f3:5e:c5:22: d1:d9:59:36:48:05:0f:5e:a9:03:1c:1b:d3:af:50: e1:09:b1:00:a1:43:94:61:4a:fd:01:ca:c3:ee:64: 63:86:12:04:ed:d6:c5:06:15:31:7d:f7:b1:09:b4: 53:6f:35:30:60:7e:22:20:b1:d0:26:e5:70:18:2e: 4d:5e:dc:8e:a5:aa:42:2b:d0:09:fd:eb:8c:be:16: 04:20:07:bd:93:8b:e0:ee:e7:ec:af:8f:9a:8a:22: e1:38:4b:19:ec:71:a0:c8:64:eb:b4:ac:87:79:d2: 39:da:e9:ab:d9:b1:93:05:86:84:ee:bb:52:5f:e0: fe:6a:29:95:06:b3:62:88:1e:9a:68:84:af:1c:ef: d2:79:0b:a4:df:3e:4e:04:01:f8:9b:d4:e4:de:70: 80:76:0d:c7:51:d4:46:9b:ac:8b:d9:cf:09:f2:48: 4b:68:6e:fd:6f:43:17:11:2d:d1:42:16:80:ad:10: 88:ef:56:93:9d:f6:f8:d0:1f:3a:ba:b7:6f:37:26: 87:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:E7:5A:9C:4F:74:A2:94:F6:51:9C:86:7F:F0:78:9E:C1:08:9A:FA X509v3 Authority Key Identifier: keyid:99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:71:8b:38:1a:bd:c9:04:f9:cc:74:f1:84:6d:0f:65:55:9e: ec:16:c1:04:93:91:95:83:6f:74:f8:1f:44:f2:67:0e:8c:60: 0a:01:cf:9e:31:19:14:d7:da:8b:45:d5:88:d4:28:cf:1c:f4: cd:1a:98:aa:ff:e3:e4:e1:07:7f:06:a9:7d:38:32:c8:56:33: ca:ca:f7:83:3d:31:b4:6e:3b:d4:ae:b2:93:48:0b:65:07:66: 0e:30:72:51:3a:14:28:44:e7:cc:39:6a:e9:33:45:a8:d4:25: ff:97:e9:4b:c5:21:e5:82:b2:70:b9:9f:6b:10:d7:df:c2:3e: 69:be:36:85:ed:d5:21:08:68:7b:d1:69:12:d2:e3:35:39:6a: b0:64:35:06:12:7d:36:ce:b0:79:ad:2e:15:d2:f9:b8:05:e8: 2d:40:12:3c:7a:79:7b:ef:b7:94:8c:66:19:50:ec:e4:6b:ea: 1e:b4:8b:4f:7d:0e:89:8c:3e:1b:4b:46:e7:b3:fd:9f:8a:9d: 03:03:76:57:36:61:ca:ac:82:b0:69:46:0f:16:9c:eb:e6:a0: 82:d2:7b:d8:ad:6e:d4:6a:b9:09:5a:81:07:80:a6:23:9f:f7: a4:e1:04:bf:dc:6e:b7:61:78:96:cc:2a:7f:ac:b4:6a:1f:35: 25:55:8a:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUc7VGHG7msr4Zm9GGweCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YzEzY2I1OGQyZmQzMWUxMmM1ZTE0NmNjNmI0ZjJjNzQ3 ODE2ZjQwHhcNMjUxMjE2MDQwMTE2WhcNMjUxMjE3MDQwMTE2WjAzMTEwLwYDVQQD EygxMmU3NWE5YzRmNzRhMjk0ZjY1MTljODY3ZmYwNzg5ZWMxMDg5YWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsY1IPW26lTlTmJP4EE9d+5cZm6Mt YSA48H4VXq7TaUH3hXUepHS73ldimwtLeBTMc9tvOSbEVPNexSLR2Vk2SAUPXqkD HBvTr1DhCbEAoUOUYUr9AcrD7mRjhhIE7dbFBhUxffexCbRTbzUwYH4iILHQJuVw GC5NXtyOpapCK9AJ/euMvhYEIAe9k4vg7ufsr4+aiiLhOEsZ7HGgyGTrtKyHedI5 2umr2bGTBYaE7rtSX+D+aimVBrNiiB6aaISvHO/SeQuk3z5OBAH4m9Tk3nCAdg3H UdRGm6yL2c8J8khLaG79b0MXES3RQhaArRCI71aTnfb40B86urdvNyaHQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBLnWpxPdKKU9lGchn/weJ7BCJr6MB8GA1UdIwQY MBaAFJnBPLWNL9MeEsXhRsxrTyx0eBb0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEt NTY3ZGM5YTc5ZmRkLzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEtNTY3ZGM5YTc5ZmRk LzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYHGLOBq9 yQT5zHTxhG0PZVWe7BbBBJORlYNvdPgfRPJnDoxgCgHPnjEZFNfai0XViNQozxz0 zRqYqv/j5OEHfwapfTgyyFYzysr3gz0xtG471K6yk0gLZQdmDjByUToUKETnzDlq 6TNFqNQl/5fpS8Uh5YKycLmfaxDX38I+ab42he3VIQhoe9FpEtLjNTlqsGQ1BhJ9 Ns6wea0uFdL5uAXoLUASPHp5e++3lIxmGVDs5GvqHrSLT30OiYw+G0tG57P9n4qd AwN2VzZhyqyCsGlGDxac6+aggtJ72K1u1Gq5CVqBB4CmI5/3pOEEv9xut2F4lswq f6y0ah81JVWKkA== -----END CERTIFICATE-----Generated at Tue Dec 16 06:23:44 2025 by rpki-client