This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json) Hash identifier: Ebn6GLAATdyh+lifKyaaaOdVBZQZh/hr0TT9+ed00uc= Subject key identifier: EE:D4:05:17:32:62:32:EE:C7:A0:6B:D9:FD:2E:EB:8F:07:6F:AE:DB Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42 Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842 Certificate serial: 019B32D66B7319147A6122EFF2702D288DE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft Manifest number: 0C8F Signing time: Thu 18 Dec 2025 19:01:11 +0000 Manifest this update: Thu 18 Dec 2025 19:01:11 +0000 Manifest next update: Fri 19 Dec 2025 19:01:11 +0000 Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: mycERNHl+JP9I7OzRXbbN6877D5W+aY0FP/MiYTccIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:6b:73:19:14:7a:61:22:ef:f2:70:2d:28:8d:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842 Validity Not Before: Dec 18 19:01:11 2025 GMT Not After : Dec 19 19:01:11 2025 GMT Subject: CN=eed40517326232eec7a06bd9fd2eeb8f076faedb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e8:c9:46:53:27:88:69:ee:8f:b3:f1:64:50: 23:e1:f3:a0:fb:63:34:36:3b:12:cf:f4:27:10:df: bc:ea:ee:50:b5:be:22:8a:e9:63:3e:0b:02:bf:c7: 8c:b7:75:15:b3:63:f7:a1:4f:d7:4f:fc:15:c8:a5: 8a:2c:3c:b9:8f:4c:1f:71:7d:74:22:81:76:99:38: 75:92:a0:9a:18:2c:46:c8:a9:d5:44:72:f9:54:b5: 0c:77:01:20:8f:e3:4c:55:d1:81:29:5e:49:78:01: 03:f6:85:25:48:cd:34:f9:91:f4:4a:10:bf:14:b7: 5d:54:aa:79:bf:b2:8d:22:29:98:8e:e7:89:97:43: 49:62:83:09:b3:d0:a7:bd:0a:a0:40:07:c0:61:fe: 17:1a:5d:79:f1:da:2e:be:aa:d8:90:20:69:a8:5f: 03:60:2d:17:02:d2:a1:c3:28:e7:4c:39:c6:c7:ed: e4:34:53:16:b6:e3:90:1e:14:d7:04:a1:41:64:ca: 8b:9c:e6:28:6a:23:2e:01:d7:2b:6c:32:ab:00:1c: 41:8c:46:1d:32:03:bd:c8:1a:3c:3b:cc:01:9c:9c: 0b:2e:4d:82:61:77:e7:fd:d9:b2:75:4a:ab:d9:a2: 5a:60:99:d6:b0:ca:45:c2:15:76:7a:c0:22:9b:9b: 2b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D4:05:17:32:62:32:EE:C7:A0:6B:D9:FD:2E:EB:8F:07:6F:AE:DB X509v3 Authority Key Identifier: keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1e:8b:dc:73:a5:32:8b:e9:dc:6f:7c:6d:14:bc:98:93:ae: 77:07:20:ea:0b:f1:b7:93:50:22:b3:ef:b6:a1:1c:89:3b:5e: c6:2b:71:27:e8:97:3b:fb:58:cb:9e:b4:ab:5f:1b:49:3d:96: 67:f9:62:e9:10:3a:34:e1:79:ee:1a:1e:bc:16:2c:15:25:49: 49:7f:20:ef:04:5e:13:22:9e:05:4f:29:8a:26:77:48:5a:aa: f8:a5:0f:10:db:a1:3a:a9:11:82:48:e0:31:5b:a9:5e:fc:c8: 6b:59:bf:9d:96:10:32:17:7e:ea:4e:f4:37:a9:a2:69:83:5a: 02:dd:99:41:e2:ca:60:a9:a7:93:05:1c:51:31:c5:04:d9:db: c4:70:93:29:2a:28:79:3f:03:4f:51:07:c6:57:36:35:3a:d4: 97:8c:47:ed:37:de:47:4a:0e:da:7b:9f:28:e8:94:35:b5:ae: 72:ce:a6:c8:46:89:a7:61:ea:e9:32:3b:8e:a5:7a:95:1c:2d: b9:9e:d6:e4:94:67:0f:fd:03:d5:a4:02:64:14:84:96:1e:a1: 39:a9:d4:dc:9a:7a:bc:f7:7d:90:58:14:11:2f:a8:bf:4a:5e: e9:62:7a:39:b9:96:dd:30:46:1c:c6:6e:c5:6c:c5:dd:aa:f2: 74:f5:fb:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1mtzGRR6YSLv8nAtKI3jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0Yzg4OGViOTYwYTAwMTkwMGMyNzk1ZThhYWZhMjY4ZjYw MmQ4NDIwHhcNMjUxMjE4MTkwMTExWhcNMjUxMjE5MTkwMTExWjAzMTEwLwYDVQQD EyhlZWQ0MDUxNzMyNjIzMmVlYzdhMDZiZDlmZDJlZWI4ZjA3NmZhZWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9ejJRlMniGnuj7PxZFAj4fOg+2M0 NjsSz/QnEN+86u5Qtb4iiuljPgsCv8eMt3UVs2P3oU/XT/wVyKWKLDy5j0wfcX10 IoF2mTh1kqCaGCxGyKnVRHL5VLUMdwEgj+NMVdGBKV5JeAED9oUlSM00+ZH0ShC/ FLddVKp5v7KNIimYjueJl0NJYoMJs9CnvQqgQAfAYf4XGl158douvqrYkCBpqF8D YC0XAtKhwyjnTDnGx+3kNFMWtuOQHhTXBKFBZMqLnOYoaiMuAdcrbDKrABxBjEYd MgO9yBo8O8wBnJwLLk2CYXfn/dmydUqr2aJaYJnWsMpFwhV2esAim5srvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO7UBRcyYjLux6Br2f0u648Hb67bMB8GA1UdIwQY MBaAFNTIiOuWCgAZAMJ5Xoqvomj2AthCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMU1pSTY1WUtBQmtBd25sZWlxLWlhUFlDMkVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yZDczNGYtYWE4Yy00NzM1LWFjNzEt MTVkNzY5MWY0YTJhLzEvMU1pSTY1WUtBQmtBd25sZWlxLWlhUFlDMkVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8yZDczNGYtYWE4Yy00NzM1LWFjNzEtMTVkNzY5MWY0YTJh LzEvMU1pSTY1WUtBQmtBd25sZWlxLWlhUFlDMkVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWh6L3HOl Movp3G98bRS8mJOudwcg6gvxt5NQIrPvtqEciTtexitxJ+iXO/tYy560q18bST2W Z/li6RA6NOF57hoevBYsFSVJSX8g7wReEyKeBU8piiZ3SFqq+KUPENuhOqkRgkjg MVupXvzIa1m/nZYQMhd+6k70N6miaYNaAt2ZQeLKYKmnkwUcUTHFBNnbxHCTKSoo eT8DT1EHxlc2NTrUl4xH7TfeR0oO2nufKOiUNbWucs6myEaJp2Hq6TI7jqV6lRwt uZ7W5JRnD/0D1aQCZBSElh6hOanU3Jp6vPd9kFgUES+ov0pe6WJ6ObmW3TBGHMZu xWzF3arydPX7nQ== -----END CERTIFICATE-----Generated at Fri Dec 19 00:51:16 2025 by rpki-client