This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft File: FLcYAN3cSX9g-e23gzyUlzq33Bw.mft (raw, json) Hash identifier: l7L5tRQA4KWNBGQPc+J3cGfNMwxDGErksmnr8yFYGg8= Subject key identifier: B3:3D:1E:19:4F:0C:9D:9C:36:63:4E:0A:8C:61:71:B4:78:B3:25:57 Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c Certificate serial: 019B0E5BA65473F194822D0474E348CA1E2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft Manifest number: 165C Signing time: Thu 11 Dec 2025 17:00:45 +0000 Manifest this update: Thu 11 Dec 2025 17:00:45 +0000 Manifest next update: Fri 12 Dec 2025 17:00:45 +0000 Files and hashes: 1: FLcYAN3cSX9g-e23gzyUlzq33Bw.crl (hash: RSs436CpO5G6x2pO68/Zh9oNPdKJDvZtEktXmyDI324=) 2: jh-TOxpxIUBWeRHqyE_TsQ3xZPw.roa (hash: h4140lmsN13+jNtLubDuYn8kTL6T4/sAQ4MD0yMdaVw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:a6:54:73:f1:94:82:2d:04:74:e3:48:ca:1e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c Validity Not Before: Dec 11 17:00:45 2025 GMT Not After : Dec 12 17:00:45 2025 GMT Subject: CN=b33d1e194f0c9d9c36634e0a8c6171b478b32557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b3:da:28:08:f5:6f:07:9c:e7:ca:e2:9d:66: 33:7a:db:2e:2b:d4:46:bc:ea:0f:76:c3:67:af:6d: d1:d9:39:bf:a1:a2:a0:6c:6d:73:b5:52:e2:0c:a7: dd:46:91:01:7f:e0:a5:fc:c5:e1:0a:3b:37:eb:e0: 98:b2:71:39:a7:3b:0d:9e:ce:4e:f5:aa:e8:59:56: f4:5e:88:44:1f:5e:e7:a1:51:0b:e7:b5:a2:cc:58: 0f:7e:9b:f7:4c:33:43:c8:1b:17:9d:3f:89:c3:22: 9b:4a:a4:d6:e6:79:f1:ba:55:c8:22:54:26:a1:74: fb:35:af:ba:b6:05:bc:32:e5:8d:d9:2d:d2:32:51: 59:84:52:cf:21:b1:b9:7c:97:e9:73:ff:47:71:e2: bf:7e:92:d9:f8:4a:2f:6f:80:76:f0:7b:80:55:b8: 11:f2:f0:76:76:a1:23:69:0b:4b:83:dd:af:ad:eb: 8b:94:4d:d7:f8:e5:ea:5b:34:ca:d2:e7:99:2d:76: 2b:63:80:5c:7e:f0:8e:58:d6:b3:7b:73:fa:b2:1c: 95:f1:56:a1:33:a9:01:82:f4:2d:a3:38:78:9b:aa: 7a:22:02:16:30:9b:48:07:26:c3:b1:33:b6:f9:1a: 6d:60:43:8d:0c:3e:37:0e:b1:d1:20:bf:ff:89:8a: 73:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3D:1E:19:4F:0C:9D:9C:36:63:4E:0A:8C:61:71:B4:78:B3:25:57 X509v3 Authority Key Identifier: keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:e8:f1:ab:cc:69:78:ac:6b:9c:a3:25:2e:41:a4:80:9f:ce: 55:e4:1c:cc:7d:3e:f5:06:20:d1:14:09:74:0b:8e:1e:1b:21: a1:a0:6e:10:a0:4f:3b:bd:75:91:30:2f:e6:e1:67:22:c2:5b: 0d:70:36:9c:30:ad:ac:d2:92:e2:4f:d1:a6:96:ce:bd:b3:97: 0a:0f:62:e1:f7:e9:2b:1f:83:cc:5e:7d:e3:8a:3c:2b:d2:4e: a2:d0:c0:0c:66:14:96:1e:9a:84:49:69:51:5d:86:06:7f:40: 13:db:61:fd:21:a1:98:a0:0a:f2:f5:65:12:40:32:2f:66:38: da:0b:d7:12:d2:80:cb:34:7f:12:00:ab:f0:f1:9e:5c:76:47: 98:e7:4a:50:9e:5d:37:c6:f1:e4:26:38:27:2e:31:3e:22:26: a2:ec:df:03:7b:42:a7:17:60:92:7f:34:a3:5d:c3:2d:0d:5a: e2:70:24:85:0b:eb:fa:63:54:2b:f7:9e:ef:88:92:48:db:d7: cb:01:99:28:db:9d:10:92:e4:87:90:23:05:0b:0d:21:5c:80: 27:3c:ff:6a:28:c9:08:6e:98:7d:eb:cc:cf:1c:64:5b:52:ba: 3f:b8:7f:dc:2e:74:44:20:05:b2:bb:25:62:d4:6b:5d:9f:17: 08:c3:d0:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW6ZUc/GUgi0EdONIyh4tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YjcxODAwZGRkYzQ5N2Y2MGY5ZWRiNzgzM2M5NDk3M2Fi N2RjMWMwHhcNMjUxMjExMTcwMDQ1WhcNMjUxMjEyMTcwMDQ1WjAzMTEwLwYDVQQD EyhiMzNkMWUxOTRmMGM5ZDljMzY2MzRlMGE4YzYxNzFiNDc4YjMyNTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnrPaKAj1bwec58rinWYzetsuK9RG vOoPdsNnr23R2Tm/oaKgbG1ztVLiDKfdRpEBf+Cl/MXhCjs36+CYsnE5pzsNns5O 9aroWVb0XohEH17noVEL57WizFgPfpv3TDNDyBsXnT+JwyKbSqTW5nnxulXIIlQm oXT7Na+6tgW8MuWN2S3SMlFZhFLPIbG5fJfpc/9HceK/fpLZ+Eovb4B28HuAVbgR 8vB2dqEjaQtLg92vreuLlE3X+OXqWzTK0ueZLXYrY4BcfvCOWNaze3P6shyV8Vah M6kBgvQtozh4m6p6IgIWMJtIBybDsTO2+RptYEONDD43DrHRIL//iYpzhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLM9HhlPDJ2cNmNOCoxhcbR4syVXMB8GA1UdIwQY MBaAFBS3GADd3El/YPntt4M8lJc6t9wcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQt ZGRmMGI4YjA5NjE2LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy80MTVkNGItZjdhNi00OWQ2LWE3YWQtZGRmMGI4YjA5NjE2 LzEvRkxjWUFOM2NTWDlnLWUyM2d6eVVsenEzM0J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwujxq8xp eKxrnKMlLkGkgJ/OVeQczH0+9QYg0RQJdAuOHhshoaBuEKBPO711kTAv5uFnIsJb DXA2nDCtrNKS4k/RppbOvbOXCg9i4ffpKx+DzF5944o8K9JOotDADGYUlh6ahElp UV2GBn9AE9th/SGhmKAK8vVlEkAyL2Y42gvXEtKAyzR/EgCr8PGeXHZHmOdKUJ5d N8bx5CY4Jy4xPiImouzfA3tCpxdgkn80o13DLQ1a4nAkhQvr+mNUK/ee74iSSNvX ywGZKNudEJLkh5AjBQsNIVyAJzz/aijJCG6YfevMzxxkW1K6P7h/3C50RCAFsrsl YtRrXZ8XCMPQFA== -----END CERTIFICATE-----Generated at Thu Dec 11 23:00:53 2025 by rpki-client