This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft File: 4T3UuB8fx53U2mQo-cKgJzRX_wY.mft (raw, json) Hash identifier: TNl45KTUFLHSHEIwrM3+zTsAeD3r7/Sw7Vc7KDz3IJ0= Subject key identifier: E8:30:4D:F4:EC:4D:46:57:45:1A:30:75:E8:52:28:D3:61:8B:83:FD Authority key identifier: E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06 Certificate issuer: /CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06 Certificate serial: 019B24ACE91BDE388CCAEDE19A33579A1A0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft Manifest number: 05F5 Signing time: Tue 16 Dec 2025 01:01:10 +0000 Manifest this update: Tue 16 Dec 2025 01:01:10 +0000 Manifest next update: Wed 17 Dec 2025 01:01:10 +0000 Files and hashes: 1: 4T3UuB8fx53U2mQo-cKgJzRX_wY.crl (hash: FtwatkoNHLoTQbff1HG7KtrpegtezoGUIPOoEio/nnM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:ac:e9:1b:de:38:8c:ca:ed:e1:9a:33:57:9a:1a:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06 Validity Not Before: Dec 16 01:01:10 2025 GMT Not After : Dec 17 01:01:10 2025 GMT Subject: CN=e8304df4ec4d4657451a3075e85228d3618b83fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d5:a1:26:76:34:98:60:9c:35:ae:15:1b:88: f9:0c:19:d4:8b:16:d7:eb:6b:5f:f1:39:d5:09:8f: cc:df:e5:ef:b3:ff:bf:9b:20:a1:64:d6:e3:49:71: 16:00:a7:8e:6a:2e:95:a2:d8:da:75:d6:70:cd:62: 7f:9d:30:29:38:1e:c2:72:cc:77:28:cd:f3:b4:36: 62:f8:84:6d:81:a2:b5:27:c6:bb:57:db:34:df:e5: c0:7e:e1:d5:ac:73:f5:d1:71:d8:34:1c:30:bc:61: b8:46:66:82:c4:90:83:62:61:31:ee:33:71:3b:73: 26:e0:96:72:86:44:db:e1:8b:b6:24:6c:36:e3:a3: d7:66:53:43:48:2e:e2:93:64:45:95:d0:22:ae:f3: 47:60:f6:d4:13:18:1e:b5:61:f3:44:a7:43:39:4f: 0f:d1:64:54:17:0a:28:05:7b:13:53:38:f0:01:8a: e1:c7:cc:96:2c:df:0c:ed:33:ad:72:09:69:c2:14: 67:81:a4:8f:9a:f3:24:03:66:3f:9f:cd:48:de:17: d0:5e:b2:20:51:ab:1a:4c:a5:db:10:25:77:6f:5e: 4d:6a:72:e8:c8:70:fd:ed:9a:0a:fd:ec:5b:0a:7e: d5:74:f7:e6:25:07:37:1e:c4:66:0e:34:67:c0:db: 57:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:30:4D:F4:EC:4D:46:57:45:1A:30:75:E8:52:28:D3:61:8B:83:FD X509v3 Authority Key Identifier: keyid:E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:af:b0:60:74:44:fd:20:bb:8a:ab:1b:5d:e6:15:3e:50:5e: 6d:7e:6a:7e:92:72:b7:d5:de:7f:b3:e2:3e:d5:38:ce:c9:ad: 3a:a9:e8:91:43:03:57:8e:09:34:19:37:05:5b:c2:7e:1f:8d: dd:bc:06:bf:c2:ad:df:77:23:ed:1e:91:bc:5a:a7:82:b1:74: 4a:e5:ba:64:f7:88:f4:31:a9:4c:44:f8:59:5e:55:16:ef:76: 94:bd:72:32:bb:84:01:68:f9:ec:ff:93:0b:60:74:8b:46:3e: d0:a9:0b:3c:a4:d7:37:18:ce:c4:06:42:8b:93:6a:e7:7c:6f: 33:74:47:43:08:d0:bb:cd:d6:f7:f0:cf:2e:fe:75:62:88:b0: 3f:a8:f2:3e:cd:57:dd:4f:b7:4e:a3:ea:a2:a9:de:75:a5:be: 77:17:68:9b:81:3d:66:ca:65:2e:cb:6d:94:42:3e:6e:fd:98: 79:4a:e7:53:75:49:23:d7:24:8f:c1:3e:43:bc:7e:1d:3a:85: 35:28:88:92:3f:8e:64:7f:2b:64:31:25:49:dd:ed:3e:91:79: 82:9f:5d:97:ac:27:5d:6a:8b:32:a1:86:2a:a8:fc:b8:d5:55: 07:6d:26:99:20:f9:9c:fb:00:b4:0e:51:8e:2b:9c:e0:d0:93: c5:28:d5:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskrOkb3jiMyu3hmjNXmhoPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxM2RkNGI4MWYxZmM3OWRkNGRhNjQyOGY5YzJhMDI3MzQ1 N2ZmMDYwHhcNMjUxMjE2MDEwMTEwWhcNMjUxMjE3MDEwMTEwWjAzMTEwLwYDVQQD EyhlODMwNGRmNGVjNGQ0NjU3NDUxYTMwNzVlODUyMjhkMzYxOGI4M2ZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdWhJnY0mGCcNa4VG4j5DBnUixbX 62tf8TnVCY/M3+Xvs/+/myChZNbjSXEWAKeOai6VotjaddZwzWJ/nTApOB7Ccsx3 KM3ztDZi+IRtgaK1J8a7V9s03+XAfuHVrHP10XHYNBwwvGG4RmaCxJCDYmEx7jNx O3Mm4JZyhkTb4Yu2JGw246PXZlNDSC7ik2RFldAirvNHYPbUExgetWHzRKdDOU8P 0WRUFwooBXsTUzjwAYrhx8yWLN8M7TOtcglpwhRngaSPmvMkA2Y/n81I3hfQXrIg UasaTKXbECV3b15NanLoyHD97ZoK/exbCn7VdPfmJQc3HsRmDjRnwNtXtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOgwTfTsTUZXRRowdehSKNNhi4P9MB8GA1UdIwQY MBaAFOE91LgfH8ed1NpkKPnCoCc0V/8GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNFQzVXVCOGZ4NTNVMm1Rby1jS2dKelJYX3dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8wYjViZDctNjAzYi00YTVjLThhOTgt ZDU2Mzk1OWQyNzdkLzEvNFQzVXVCOGZ4NTNVMm1Rby1jS2dKelJYX3dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8wYjViZDctNjAzYi00YTVjLThhOTgtZDU2Mzk1OWQyNzdk LzEvNFQzVXVCOGZ4NTNVMm1Rby1jS2dKelJYX3dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdq+wYHRE /SC7iqsbXeYVPlBebX5qfpJyt9Xef7PiPtU4zsmtOqnokUMDV44JNBk3BVvCfh+N 3bwGv8Kt33cj7R6RvFqngrF0SuW6ZPeI9DGpTET4WV5VFu92lL1yMruEAWj57P+T C2B0i0Y+0KkLPKTXNxjOxAZCi5Nq53xvM3RHQwjQu83W9/DPLv51YoiwP6jyPs1X 3U+3TqPqoqnedaW+dxdom4E9ZsplLsttlEI+bv2YeUrnU3VJI9ckj8E+Q7x+HTqF NSiIkj+OZH8rZDElSd3tPpF5gp9dl6wnXWqLMqGGKqj8uNVVB20mmSD5nPsAtA5R jiuc4NCTxSjVjA== -----END CERTIFICATE-----Generated at Tue Dec 16 06:26:52 2025 by rpki-client