This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft File: rIpdP4uUYpQnOEoSDHdHYFY611o.mft (raw, json) Hash identifier: S/CagG07pnLaXhYC5L4YMQEr6y2b6LDnSbjmWepSR/s= Subject key identifier: 53:97:BB:38:C5:50:1A:9C:AA:F5:4A:CD:65:7E:FE:09:B5:4B:3A:13 Authority key identifier: AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A Certificate issuer: /CN=ac8a5d3f8b94629427384a120c774760563ad75a Certificate serial: 019B2EF9BB40D7779F6BF339BB6979E0AF0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft Manifest number: 115E Signing time: Thu 18 Dec 2025 01:01:16 +0000 Manifest this update: Thu 18 Dec 2025 01:01:16 +0000 Manifest next update: Fri 19 Dec 2025 01:01:16 +0000 Files and hashes: 1: rIpdP4uUYpQnOEoSDHdHYFY611o.crl (hash: GA/fnrA00Adaui0yQ0w/ifPuTDfF1pScRbpU2DDtQwM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2e:f9:bb:40:d7:77:9f:6b:f3:39:bb:69:79:e0:af:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac8a5d3f8b94629427384a120c774760563ad75a Validity Not Before: Dec 18 01:01:16 2025 GMT Not After : Dec 19 01:01:16 2025 GMT Subject: CN=5397bb38c5501a9caaf54acd657efe09b54b3a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cb:89:78:8b:88:c7:e8:90:12:e5:d7:94:a1: d4:0a:ce:17:c5:fc:34:f8:57:fe:cc:c1:23:f3:db: 10:05:14:87:f6:bb:24:56:bf:a6:ba:b0:41:35:51: b3:50:9a:f9:cf:f1:d9:9c:2d:ef:c0:e1:e9:10:e2: 57:26:f7:97:45:02:2b:ea:a0:f0:03:1a:bb:b6:c3: 47:5e:ca:d2:f3:33:82:9d:49:66:9c:ea:d4:2d:6a: 76:b8:60:b4:c6:ce:17:ac:e3:c4:4f:c0:4a:e0:38: df:c4:a3:bc:73:c3:09:bc:a2:d2:7b:1e:fc:97:34: 68:4c:7e:75:f2:d7:3b:0a:0f:18:7f:18:32:f1:86: f3:31:27:14:37:54:6a:a1:b6:5c:2d:3d:63:dd:c2: 12:b6:04:53:ab:b6:b6:6e:e3:73:b2:bd:4e:53:08: 66:ed:b8:3d:45:d1:51:9b:d3:f8:10:85:d0:b7:ce: 30:87:3a:c6:cf:92:26:55:79:09:c4:42:1d:85:89: 81:e6:8d:06:b1:11:75:ff:97:f0:89:7d:d1:20:ab: 8c:c3:9e:b2:fd:96:e7:28:1d:63:d7:6c:c1:dd:f0: 86:69:f7:e0:6e:ee:b7:e1:bd:f8:36:27:97:e9:eb: 02:6b:42:cc:84:dc:72:79:d1:73:53:5f:3e:23:65: 5c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:97:BB:38:C5:50:1A:9C:AA:F5:4A:CD:65:7E:FE:09:B5:4B:3A:13 X509v3 Authority Key Identifier: keyid:AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:bb:4b:74:3d:fd:c7:72:be:33:12:da:94:49:d7:49:31:5b: fd:cb:93:d6:08:a0:8c:da:e8:72:83:63:53:4b:ee:1c:da:dd: 9c:77:7a:01:20:d1:ed:8f:fe:7a:bd:fb:2d:64:a0:a1:1f:51: e3:bd:ae:1d:62:24:e9:ec:62:1b:7d:f0:f8:86:7c:98:e8:e5: a9:a7:49:d6:94:42:03:89:9b:21:92:3b:1a:f7:d0:f6:f7:d8: 4e:68:1d:b7:32:cc:6e:06:2e:aa:47:7a:ef:47:3c:e6:54:72: 60:1d:5d:29:8f:0f:24:f8:52:06:1f:4f:ef:73:85:1f:74:13: 8b:a8:76:34:bb:eb:ec:73:2d:ef:ef:ad:14:14:6c:4e:94:1d: 14:05:f9:72:cc:e1:da:1e:cc:9f:ff:06:f0:36:19:c8:27:dc: ec:8d:fb:76:58:6f:15:72:1c:e4:37:a8:07:2a:30:b8:6b:e5: e0:c6:35:79:99:45:1b:b6:27:fb:45:73:c3:17:63:ef:bd:d3: 57:7d:5b:68:cb:06:f8:95:f3:96:3a:c0:75:2c:17:52:36:67: ba:2c:7d:b2:fe:94:79:13:a9:91:c8:92:48:05:0c:e1:7b:12: 25:c9:bb:ab:42:d2:18:1c:a5:92:b8:f6:de:df:8b:2d:4a:2c: d0:ea:0f:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsu+btA13efa/M5u2l54K8PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjOGE1ZDNmOGI5NDYyOTQyNzM4NGExMjBjNzc0NzYwNTYz YWQ3NWEwHhcNMjUxMjE4MDEwMTE2WhcNMjUxMjE5MDEwMTE2WjAzMTEwLwYDVQQD Eyg1Mzk3YmIzOGM1NTAxYTljYWFmNTRhY2Q2NTdlZmUwOWI1NGIzYTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscuJeIuIx+iQEuXXlKHUCs4Xxfw0 +Ff+zMEj89sQBRSH9rskVr+murBBNVGzUJr5z/HZnC3vwOHpEOJXJveXRQIr6qDw Axq7tsNHXsrS8zOCnUlmnOrULWp2uGC0xs4XrOPET8BK4DjfxKO8c8MJvKLSex78 lzRoTH518tc7Cg8Yfxgy8YbzMScUN1RqobZcLT1j3cIStgRTq7a2buNzsr1OUwhm 7bg9RdFRm9P4EIXQt84whzrGz5ImVXkJxEIdhYmB5o0GsRF1/5fwiX3RIKuMw56y /ZbnKB1j12zB3fCGaffgbu634b34NieX6esCa0LMhNxyedFzU18+I2VcMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFOXuzjFUBqcqvVKzWV+/gm1SzoTMB8GA1UdIwQY MBaAFKyKXT+LlGKUJzhKEgx3R2BWOtdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lMjRiYjYtNzM2My00NDQyLWI1Njgt YzgwZGVjODdjZDA5LzEvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9lMjRiYjYtNzM2My00NDQyLWI1NjgtYzgwZGVjODdjZDA5 LzEvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoLtLdD39 x3K+MxLalEnXSTFb/cuT1gigjNrocoNjU0vuHNrdnHd6ASDR7Y/+er37LWSgoR9R 472uHWIk6exiG33w+IZ8mOjlqadJ1pRCA4mbIZI7GvfQ9vfYTmgdtzLMbgYuqkd6 70c85lRyYB1dKY8PJPhSBh9P73OFH3QTi6h2NLvr7HMt7++tFBRsTpQdFAX5cszh 2h7Mn/8G8DYZyCfc7I37dlhvFXIc5DeoByowuGvl4MY1eZlFG7Yn+0Vzwxdj773T V31baMsG+JXzljrAdSwXUjZnuix9sv6UeROpkciSSAUM4XsSJcm7q0LSGBylkrj2 3t+LLUos0OoP6w== -----END CERTIFICATE-----Generated at Thu Dec 18 03:45:03 2025 by rpki-client