This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft File: _4MmzOvF_DL70ONP7n85u6iPuaI.mft (raw, json) Hash identifier: lADURfXwC9L9YzjFb0u2diBhHX8mRfoccOX/ijy+GP8= Subject key identifier: 84:0E:65:AE:4D:B9:B6:D9:5A:5A:92:03:F3:04:BA:3D:0A:D9:40:4D Authority key identifier: FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2 Certificate issuer: /CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2 Certificate serial: 019B35A022C6A15F9C1ABEB8D9A359A31315 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft Manifest number: 1304 Signing time: Fri 19 Dec 2025 08:00:45 +0000 Manifest this update: Fri 19 Dec 2025 08:00:45 +0000 Manifest next update: Sat 20 Dec 2025 08:00:45 +0000 Files and hashes: 1: _4MmzOvF_DL70ONP7n85u6iPuaI.crl (hash: KWu89XnvGl07YnrhewtxB9gGY7C9M1b+dH3JrvMzDqw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a0:22:c6:a1:5f:9c:1a:be:b8:d9:a3:59:a3:13:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff8326ccebc5fc32fbd0e34fee7f39bba88fb9a2 Validity Not Before: Dec 19 08:00:45 2025 GMT Not After : Dec 20 08:00:45 2025 GMT Subject: CN=840e65ae4db9b6d95a5a9203f304ba3d0ad9404d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7a:31:75:66:6f:26:06:29:08:8c:54:3d:91: c7:07:01:fa:76:ab:41:15:b1:7e:2a:4c:3c:b0:2b: 54:1e:18:45:54:ba:14:18:53:b4:fb:06:05:fd:72: d7:99:10:51:72:7c:8f:ff:c6:67:7b:7f:36:46:b3: a6:3d:f5:f5:c0:9a:45:ff:b7:88:22:4c:fa:55:94: a4:ad:df:15:b4:7d:4f:eb:4d:19:d5:8b:bc:fd:76: c3:52:cc:3f:aa:b9:ba:6e:fd:64:c1:f0:fb:b9:2c: 1a:12:37:e2:f4:5f:44:85:af:7d:35:63:4a:7c:03: 67:64:a3:ce:a2:80:08:42:bd:39:9a:4f:a7:a7:2e: 05:66:5a:c7:23:41:94:b7:fd:af:e8:cc:74:7e:0d: 99:4a:42:58:aa:44:77:18:e0:4f:8b:04:4e:a5:6e: d7:68:a6:3f:c3:5f:65:81:71:d4:28:17:a7:3f:88: cb:ad:7b:a6:09:eb:9f:00:0e:ef:c5:f9:6d:92:2f: aa:fd:33:eb:17:d3:6d:a6:8d:02:64:d3:5c:bb:45: 99:47:8f:f6:4b:5d:b8:82:27:aa:46:4a:3e:5c:ab: 62:51:6b:3d:60:6d:0c:c9:0a:b0:9c:0d:a3:5f:a8: 8f:6e:77:f2:31:42:fb:f0:d8:11:56:ef:39:23:2b: df:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:0E:65:AE:4D:B9:B6:D9:5A:5A:92:03:F3:04:BA:3D:0A:D9:40:4D X509v3 Authority Key Identifier: keyid:FF:83:26:CC:EB:C5:FC:32:FB:D0:E3:4F:EE:7F:39:BB:A8:8F:B9:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4MmzOvF_DL70ONP7n85u6iPuaI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/6f5b6a-f4bb-4fde-8a51-8b1344b7d5a6/1/_4MmzOvF_DL70ONP7n85u6iPuaI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:84:d0:84:64:2b:08:51:5d:c8:9d:89:53:fb:4f:55:4d:d3: 53:62:44:65:43:6d:c6:96:d3:fc:f5:65:c7:c1:ae:96:94:5c: ca:47:f1:1b:24:5f:92:42:6b:33:e6:a0:2b:d7:42:3c:75:74: 01:71:84:b8:fc:20:d2:a3:69:e8:79:51:aa:53:a3:14:a7:b5: d2:74:ba:8a:bd:ee:58:2c:a7:1a:a9:d0:b3:62:95:da:5a:85: 86:e7:0b:17:7b:36:f4:cc:e4:72:9b:4e:10:58:49:3c:f2:29: 36:14:5e:72:9e:02:1e:86:48:d3:90:31:39:48:48:e7:f6:e9: 6a:6c:10:e7:c9:af:b7:a9:c0:7a:a5:9f:39:0f:06:58:31:5e: 36:4a:0c:2d:71:d6:b2:e6:3e:6c:3b:4b:57:fe:9e:c1:49:bc: ea:f4:3f:43:38:b7:8c:16:14:2f:02:c4:3d:c4:5f:b4:29:67: bf:f0:af:17:84:dd:88:62:0d:58:cc:e9:c7:0a:3e:fc:0d:d7: 82:6f:3d:b7:db:b9:14:9c:92:6e:7c:12:1f:fc:7e:e2:37:a9: 11:b4:08:a5:7f:c7:b2:25:4c:c7:f4:5f:bd:cf:b9:8c:2e:f5: 02:b2:0a:b1:25:4d:d4:11:89:46:a3:85:5c:fb:3b:c2:d0:f1: 51:34:24:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oCLGoV+cGr642aNZoxMVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmODMyNmNjZWJjNWZjMzJmYmQwZTM0ZmVlN2YzOWJiYTg4 ZmI5YTIwHhcNMjUxMjE5MDgwMDQ1WhcNMjUxMjIwMDgwMDQ1WjAzMTEwLwYDVQQD Eyg4NDBlNjVhZTRkYjliNmQ5NWE1YTkyMDNmMzA0YmEzZDBhZDk0MDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHoxdWZvJgYpCIxUPZHHBwH6dqtB FbF+Kkw8sCtUHhhFVLoUGFO0+wYF/XLXmRBRcnyP/8Zne382RrOmPfX1wJpF/7eI Ikz6VZSkrd8VtH1P600Z1Yu8/XbDUsw/qrm6bv1kwfD7uSwaEjfi9F9Eha99NWNK fANnZKPOooAIQr05mk+npy4FZlrHI0GUt/2v6Mx0fg2ZSkJYqkR3GOBPiwROpW7X aKY/w19lgXHUKBenP4jLrXumCeufAA7vxfltki+q/TPrF9Ntpo0CZNNcu0WZR4/2 S124gieqRko+XKtiUWs9YG0MyQqwnA2jX6iPbnfyMUL78NgRVu85IyvfkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIQOZa5NubbZWlqSA/MEuj0K2UBNMB8GA1UdIwQY MBaAFP+DJszrxfwy+9DjT+5/Obuoj7miMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS82ZjViNmEtZjRiYi00ZmRlLThhNTEt OGIxMzQ0YjdkNWE2LzEvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS82ZjViNmEtZjRiYi00ZmRlLThhNTEtOGIxMzQ0YjdkNWE2 LzEvXzRNbXpPdkZfREw3ME9OUDduODV1NmlQdWFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR4TQhGQr CFFdyJ2JU/tPVU3TU2JEZUNtxpbT/PVlx8GulpRcykfxGyRfkkJrM+agK9dCPHV0 AXGEuPwg0qNp6HlRqlOjFKe10nS6ir3uWCynGqnQs2KV2lqFhucLF3s29MzkcptO EFhJPPIpNhRecp4CHoZI05AxOUhI5/bpamwQ58mvt6nAeqWfOQ8GWDFeNkoMLXHW suY+bDtLV/6ewUm86vQ/Qzi3jBYULwLEPcRftClnv/CvF4TdiGINWMzpxwo+/A3X gm89t9u5FJySbnwSH/x+4jepEbQIpX/HsiVMx/Rfvc+5jC71ArIKsSVN1BGJRqOF XPs7wtDxUTQkng== -----END CERTIFICATE-----Generated at Fri Dec 19 14:54:30 2025 by rpki-client