This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft File: rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft (raw, json) Hash identifier: ROxiLHKo/PggAqpjrrQnIYxPlIFZ+SgGwXV0mYnnNH4= Subject key identifier: 27:2C:0D:D4:34:63:CF:D3:C2:04:FA:23:DB:B6:49:98:87:EA:C5:6F Authority key identifier: AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03 Certificate issuer: /CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003 Certificate serial: 019B2EFABA5982FF73677D2E470150962983 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft Manifest number: 177E Signing time: Thu 18 Dec 2025 01:02:22 +0000 Manifest this update: Thu 18 Dec 2025 01:02:22 +0000 Manifest next update: Fri 19 Dec 2025 01:02:22 +0000 Files and hashes: 1: rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl (hash: 4z8sseyJZ5CiJMDIiHVD6Zx0wNxhLw6I4GPAEPtKj3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:fa:ba:59:82:ff:73:67:7d:2e:47:01:50:96:29:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae50ec352e8dbb0cdf6e08c57c71caa11a445003 Validity Not Before: Dec 18 01:02:22 2025 GMT Not After : Dec 19 01:02:22 2025 GMT Subject: CN=272c0dd43463cfd3c204fa23dbb6499887eac56f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:66:0d:2a:7b:7c:22:29:fb:88:a2:20:fd:f8: e4:a5:59:12:0d:a5:87:57:67:95:3f:0c:20:13:21: b0:1e:c2:0a:91:8d:b4:49:d5:4b:32:96:72:c0:bf: e9:78:08:71:65:9d:1a:90:0d:53:98:4f:6d:6f:91: 00:2b:cf:9d:a7:d8:e8:1b:e7:88:6a:64:41:25:4d: e3:ae:9d:37:68:92:7a:0e:2c:58:04:ae:7a:d3:89: 5f:8c:18:1a:08:98:c3:80:65:32:09:84:4c:ce:7e: 83:81:9c:cd:1d:1b:8d:68:e9:50:1b:7c:74:e1:b1: 24:c4:6b:7d:73:78:7b:41:62:d2:fc:31:99:2c:7d: 1d:8f:3c:94:ce:9c:8e:77:19:ac:eb:6b:56:c0:7f: 00:31:49:61:25:19:dc:7b:93:25:0d:eb:73:c2:4d: 8e:de:fc:43:53:3a:a7:a2:b6:cc:6b:9e:fc:3b:54: 73:bb:58:3e:d9:0b:79:24:5b:f6:90:50:30:7e:2d: 87:ca:83:59:7c:6f:90:a2:3e:92:3c:13:d5:e1:59: 70:32:37:bf:b9:dd:0b:c4:51:1c:b3:b3:12:16:04: 33:b1:48:9c:93:15:d2:7e:71:b3:57:56:ce:6d:c3: 95:ad:1d:a1:67:7e:60:09:78:76:9f:04:2a:8b:a4: d6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2C:0D:D4:34:63:CF:D3:C2:04:FA:23:DB:B6:49:98:87:EA:C5:6F X509v3 Authority Key Identifier: keyid:AE:50:EC:35:2E:8D:BB:0C:DF:6E:08:C5:7C:71:CA:A1:1A:44:50:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlDsNS6NuwzfbgjFfHHKoRpEUAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c8961f-d1d7-46ac-9f8d-33ebac095077/1/rlDsNS6NuwzfbgjFfHHKoRpEUAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:39:62:c9:e5:58:d1:46:4a:eb:3b:77:43:e5:17:61:ed:fa: 80:33:96:60:4c:d2:6e:d8:37:d1:d7:6c:c8:6d:97:01:41:3a: 38:aa:8a:92:33:62:b8:26:c2:6d:b1:3f:fa:34:6d:49:fc:68: 61:0a:99:c7:3d:28:49:6a:fb:bc:aa:a0:cb:a7:4d:f7:fc:3f: e9:3d:8a:8f:2a:9e:31:25:03:f4:c0:cc:78:e3:1d:1a:4a:07: f1:16:58:ea:2f:cc:2a:22:5f:2e:87:25:5c:0a:19:be:0a:93: f8:56:4b:4d:da:1b:44:16:eb:e1:5b:b4:d3:14:aa:bd:2a:8c: f1:37:aa:42:81:5f:56:e9:77:a2:82:2d:02:d7:75:f1:4c:df: 2c:76:c1:12:14:c0:e3:79:e3:77:d5:cc:57:c8:32:10:69:4d: 2d:f1:e4:9d:c9:79:a4:17:28:c1:ed:24:7d:10:34:a8:a5:13: d7:9d:6f:e3:2e:e4:92:35:b1:3d:60:83:67:da:89:59:98:3c: ff:c0:6b:c4:d8:c0:76:6d:26:30:c3:af:55:21:36:14:d0:ba: d0:ea:0d:28:ad:90:a8:89:6f:4d:3b:69:b8:96:d0:f5:e2:c0: 61:d8:4c:a7:f9:09:fb:51:f9:46:7e:57:74:77:d5:96:05:3f: a3:b1:c6:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+rpZgv9zZ30uRwFQlimDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTBlYzM1MmU4ZGJiMGNkZjZlMDhjNTdjNzFjYWExMWE0 NDUwMDMwHhcNMjUxMjE4MDEwMjIyWhcNMjUxMjE5MDEwMjIyWjAzMTEwLwYDVQQD EygyNzJjMGRkNDM0NjNjZmQzYzIwNGZhMjNkYmI2NDk5ODg3ZWFjNTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2YNKnt8Iin7iKIg/fjkpVkSDaWH V2eVPwwgEyGwHsIKkY20SdVLMpZywL/peAhxZZ0akA1TmE9tb5EAK8+dp9joG+eI amRBJU3jrp03aJJ6DixYBK5604lfjBgaCJjDgGUyCYRMzn6DgZzNHRuNaOlQG3x0 4bEkxGt9c3h7QWLS/DGZLH0djzyUzpyOdxms62tWwH8AMUlhJRnce5MlDetzwk2O 3vxDUzqnorbMa578O1Rzu1g+2Qt5JFv2kFAwfi2HyoNZfG+Qoj6SPBPV4VlwMje/ ud0LxFEcs7MSFgQzsUickxXSfnGzV1bObcOVrR2hZ35gCXh2nwQqi6TW7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcsDdQ0Y8/TwgT6I9u2SZiH6sVvMB8GA1UdIwQY MBaAFK5Q7DUujbsM324IxXxxyqEaRFADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9jODk2MWYtZDFkNy00NmFjLTlmOGQt MzNlYmFjMDk1MDc3LzEvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9jODk2MWYtZDFkNy00NmFjLTlmOGQtMzNlYmFjMDk1MDc3 LzEvcmxEc05TNk51d3pmYmdqRmZISEtvUnBFVUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAzliyeVY 0UZK6zt3Q+UXYe36gDOWYEzSbtg30ddsyG2XAUE6OKqKkjNiuCbCbbE/+jRtSfxo YQqZxz0oSWr7vKqgy6dN9/w/6T2KjyqeMSUD9MDMeOMdGkoH8RZY6i/MKiJfLocl XAoZvgqT+FZLTdobRBbr4Vu00xSqvSqM8TeqQoFfVul3ooItAtd18UzfLHbBEhTA 43njd9XMV8gyEGlNLfHkncl5pBcowe0kfRA0qKUT151v4y7kkjWxPWCDZ9qJWZg8 /8BrxNjAdm0mMMOvVSE2FNC60OoNKK2QqIlvTTtpuJbQ9eLAYdhMp/kJ+1H5Rn5X dHfVlgU/o7HGHw== -----END CERTIFICATE-----Generated at Thu Dec 18 09:26:57 2025 by rpki-client