This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft File: tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft (raw, json) Hash identifier: sFieGWJrNf8e8b4n1BWyqNQbeNyw14wc1ISE5THKP2U= Subject key identifier: 6C:3E:73:CB:BA:25:FE:D6:DD:55:D1:C0:93:BF:16:09:B5:29:F1:ED Authority key identifier: B5:1F:4F:D2:F4:EB:47:E4:A0:9E:9A:0A:0A:91:EC:C4:A5:A9:30:F5 Certificate issuer: /CN=b51f4fd2f4eb47e4a09e9a0a0a91ecc4a5a930f5 Certificate serial: 019B593ED33162858E78F65BFB3AF058244C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft Manifest number: 43 Signing time: Fri 26 Dec 2025 06:00:48 +0000 Manifest this update: Fri 26 Dec 2025 06:00:48 +0000 Manifest next update: Sat 27 Dec 2025 06:00:48 +0000 Files and hashes: 1: tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl (hash: y+LtBLLoTkdjQsF6j9F6JLnc1gAuaRk39zFzICyRSso=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:d3:31:62:85:8e:78:f6:5b:fb:3a:f0:58:24:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b51f4fd2f4eb47e4a09e9a0a0a91ecc4a5a930f5 Validity Not Before: Dec 26 06:00:48 2025 GMT Not After : Dec 27 06:00:48 2025 GMT Subject: CN=6c3e73cbba25fed6dd55d1c093bf1609b529f1ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a6:51:49:54:55:65:75:1d:77:52:fa:e2:0f: 55:19:2d:a2:b2:d6:e2:82:b1:6c:50:ba:01:27:f0: b2:a6:fd:b4:82:04:6a:e5:4d:74:e5:02:6b:df:a5: 71:18:66:47:3a:3c:ed:93:2e:f2:f2:ce:5d:02:a6: 61:b9:e7:3d:ae:2b:00:6a:9d:3f:71:0b:79:67:c3: 09:8b:fe:a0:dc:94:70:e9:4f:79:27:f9:41:11:27: 4a:a5:b4:ba:62:8e:3c:00:dd:66:d2:58:7b:48:9e: d5:99:b3:a1:b9:9e:2e:97:76:a8:fc:bd:4b:b5:5c: ee:a7:ae:e1:f9:e3:80:bf:d0:1a:2a:06:d1:07:dd: 09:79:5f:f7:c0:86:dc:93:77:7d:6e:07:c7:ed:bb: d1:24:c6:9d:9b:aa:b9:e8:5d:2c:68:3e:09:7a:0f: 1a:c9:b7:66:b2:03:85:d6:a9:88:9a:4c:47:63:31: c2:4c:9b:fe:07:48:be:66:91:6a:b6:68:7c:6b:a6: c4:20:81:8b:ca:f9:c2:fa:bc:ad:4e:89:34:27:9d: 8f:58:b5:84:ac:f3:88:6e:11:c0:82:a6:b0:c6:db: 1d:38:04:40:c1:95:b9:3a:88:78:ca:07:c5:d4:9e: f6:5d:ca:c6:2c:70:4e:50:b0:14:94:22:e1:e0:bc: 64:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3E:73:CB:BA:25:FE:D6:DD:55:D1:C0:93:BF:16:09:B5:29:F1:ED X509v3 Authority Key Identifier: keyid:B5:1F:4F:D2:F4:EB:47:E4:A0:9E:9A:0A:0A:91:EC:C4:A5:A9:30:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:fb:80:a4:c5:10:10:e7:d3:f6:17:59:8c:c7:b2:58:36:d9: 90:86:05:39:39:c5:f1:7e:3e:c4:73:b0:93:53:b7:6c:4a:e7: 2e:24:14:4e:81:88:b3:a4:56:b7:a3:96:a6:ab:96:de:09:2b: af:15:e3:18:96:77:21:74:a2:f1:45:d8:b2:d3:e7:16:05:d0: 76:b3:3a:13:e1:a0:42:3a:95:2b:7e:9a:8f:af:2f:06:0b:92: ef:ae:80:49:28:d3:6e:b0:31:36:3f:8f:33:fc:83:1a:ff:ed: 3d:44:96:77:d6:80:7a:87:ea:ea:1e:4c:4d:a9:b1:f7:94:20: 2d:e6:11:69:54:55:cd:f6:62:ee:67:29:5f:6c:2d:a5:c0:63: 9f:25:2c:2b:6d:d2:2d:a3:9b:25:7b:fc:4e:0e:1c:9f:50:9c: 1e:7c:c9:26:59:07:b2:2c:cc:77:c2:30:19:3b:39:64:15:15: 24:aa:65:e7:96:87:84:50:65:af:53:6b:b3:d5:0e:ac:b7:bd: 23:f4:9b:a8:94:97:ab:c1:29:52:3f:e5:c1:d9:6f:cc:76:b3: d1:a1:d8:d6:0d:1a:8a:4c:04:f0:61:e0:d8:db:4d:e5:e4:b0: 8c:0f:29:fc:14:c7:d9:39:c5:bb:9c:cd:f4:3b:1d:34:e7:39: ad:81:a4:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPtMxYoWOePZb+zrwWCRMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1MWY0ZmQyZjRlYjQ3ZTRhMDllOWEwYTBhOTFlY2M0YTVh OTMwZjUwHhcNMjUxMjI2MDYwMDQ4WhcNMjUxMjI3MDYwMDQ4WjAzMTEwLwYDVQQD Eyg2YzNlNzNjYmJhMjVmZWQ2ZGQ1NWQxYzA5M2JmMTYwOWI1MjlmMWVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaZRSVRVZXUdd1L64g9VGS2istbi grFsULoBJ/Cypv20ggRq5U105QJr36VxGGZHOjztky7y8s5dAqZhuec9risAap0/ cQt5Z8MJi/6g3JRw6U95J/lBESdKpbS6Yo48AN1m0lh7SJ7VmbOhuZ4ul3ao/L1L tVzup67h+eOAv9AaKgbRB90JeV/3wIbck3d9bgfH7bvRJMadm6q56F0saD4Jeg8a ybdmsgOF1qmImkxHYzHCTJv+B0i+ZpFqtmh8a6bEIIGLyvnC+rytTok0J52PWLWE rPOIbhHAgqawxtsdOARAwZW5Ooh4ygfF1J72XcrGLHBOULAUlCLh4LxkwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGw+c8u6Jf7W3VXRwJO/Fgm1KfHtMB8GA1UdIwQY MBaAFLUfT9L060fkoJ6aCgqR7MSlqTD1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFI5UDB2VHJSLVNnbnBvS0NwSHN4S1dwTVBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS82NTUwMmYtNWFmNi00MDU2LTg4YmQt MWVjY2QxYTgzMmUyLzEvdFI5UDB2VHJSLVNnbnBvS0NwSHN4S1dwTVBVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS82NTUwMmYtNWFmNi00MDU2LTg4YmQtMWVjY2QxYTgzMmUy LzEvdFI5UDB2VHJSLVNnbnBvS0NwSHN4S1dwTVBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/uApMUQ EOfT9hdZjMeyWDbZkIYFOTnF8X4+xHOwk1O3bErnLiQUToGIs6RWt6OWpquW3gkr rxXjGJZ3IXSi8UXYstPnFgXQdrM6E+GgQjqVK36aj68vBguS766ASSjTbrAxNj+P M/yDGv/tPUSWd9aAeofq6h5MTamx95QgLeYRaVRVzfZi7mcpX2wtpcBjnyUsK23S LaObJXv8Tg4cn1CcHnzJJlkHsizMd8IwGTs5ZBUVJKpl55aHhFBlr1Nrs9UOrLe9 I/SbqJSXq8EpUj/lwdlvzHaz0aHY1g0aikwE8GHg2NtN5eSwjA8p/BTH2TnFu5zN 9DsdNOc5rYGkRQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:38 2025 by rpki-client