This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json) Hash identifier: xqabPWKC5+AMpBMbg8dWBbVAprIuMYoewFzlLITFwEk= Subject key identifier: 06:E7:83:61:BD:0B:0B:0B:C2:52:F9:7B:97:23:E3:63:2C:6C:2A:1E Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d Certificate serial: 019B1012FDC8703C0EF7053FC3A858F1A014 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft Manifest number: 031E Signing time: Fri 12 Dec 2025 01:00:38 +0000 Manifest this update: Fri 12 Dec 2025 01:00:38 +0000 Manifest next update: Sat 13 Dec 2025 01:00:38 +0000 Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: flmASIbYt6rV6jK4VKc3qryH6TpDd845AXN1u1whLeE=) 2: DyBY2wfHB6a4dl33U3SXwgLJDGU.roa (hash: WRQJvvPjJahE1qm/vBTCrYOROs7sZwpvslZhT6hCk+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:12:fd:c8:70:3c:0e:f7:05:3f:c3:a8:58:f1:a0:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d Validity Not Before: Dec 12 01:00:38 2025 GMT Not After : Dec 13 01:00:38 2025 GMT Subject: CN=06e78361bd0b0b0bc252f97b9723e3632c6c2a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:79:47:d8:00:85:a0:66:fd:2e:b7:21:b6:f4: 5d:4a:5f:37:14:04:7f:0e:f6:ef:c7:e4:f3:1f:8c: da:05:2e:dc:7e:80:c9:6c:c9:5b:07:92:40:e1:91: c7:3d:77:81:b2:b5:7f:98:41:c3:af:7f:de:e5:11: 9c:6f:01:52:68:70:1c:04:99:30:3a:1a:fc:d9:3c: a4:f1:66:ce:f1:6a:84:5a:e8:6b:b7:1b:4f:71:20: a9:b7:da:d7:96:89:68:67:c2:68:3d:1a:2d:01:4f: c0:64:cc:5b:0f:d2:fe:43:c7:30:ad:ab:e8:23:c2: ac:bf:93:03:f6:a1:7b:dd:6a:71:c9:31:82:c5:b8: 5f:2c:86:92:dd:69:e6:74:80:e2:a6:16:13:87:cb: 66:9f:64:ab:d0:43:c1:61:38:dd:73:69:fd:9a:5e: 09:07:63:53:46:bd:9e:84:bc:9c:62:c7:e2:1d:b4: 67:59:f5:8c:57:b2:6e:24:70:6e:d1:24:04:40:54: 42:f9:4d:1a:6c:8a:3c:17:01:26:ee:33:1b:d0:f4: 05:03:db:19:d0:28:86:d8:6b:1b:65:70:33:77:b5: 07:e6:dc:f3:83:22:d2:75:ec:ed:0b:ce:04:73:c6: 43:cb:61:79:6e:8d:2b:50:53:f5:b8:43:f9:df:8c: 50:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E7:83:61:BD:0B:0B:0B:C2:52:F9:7B:97:23:E3:63:2C:6C:2A:1E X509v3 Authority Key Identifier: keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:05:6a:99:a3:09:8b:0a:7c:22:b2:ba:3a:fe:43:ae:a7:0d: 15:cc:2c:3b:2d:e6:fe:d3:a4:dd:7f:32:4c:96:ca:be:0b:1d: 0a:a3:b7:f8:07:ec:d2:0f:97:f2:e9:f0:47:0c:5c:ad:51:a0: f9:50:14:e9:43:80:b2:d5:4d:bd:2f:a8:fb:ad:eb:51:30:2b: 34:fe:02:dc:1a:ca:d5:9d:d5:b4:e0:0e:27:8a:57:c4:48:e2: e6:d8:d1:16:c4:95:36:3f:10:69:6c:a9:c6:da:d9:76:2a:e2: c6:00:bd:90:b5:bc:59:c6:ca:2e:36:e9:be:14:fd:c9:87:5e: a9:09:78:4a:df:d0:d6:3c:30:2d:f6:12:46:f9:b1:bf:8e:30: 04:fa:58:fd:6c:fe:dd:fd:f9:47:f0:88:64:2b:29:57:50:cc: 16:2a:5f:53:e1:7c:1d:b4:9d:27:7c:40:09:d1:fd:f2:29:56: e3:e7:e0:29:9f:60:ee:79:f0:ce:1c:06:f1:f9:6c:e4:3c:c1: 64:09:a9:a4:ca:0e:73:71:22:53:7f:c6:7c:e8:b6:00:b9:8e: 49:03:f2:df:c4:76:ad:a6:38:90:d5:91:3a:41:4e:41:64:cd: 95:42:65:96:45:94:6f:22:d7:83:91:10:9b:ab:ae:ba:33:1d: 7c:4f:e9:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQEv3IcDwO9wU/w6hY8aAUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk ZGI4MWQwHhcNMjUxMjEyMDEwMDM4WhcNMjUxMjEzMDEwMDM4WjAzMTEwLwYDVQQD EygwNmU3ODM2MWJkMGIwYjBiYzI1MmY5N2I5NzIzZTM2MzJjNmMyYTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHlH2ACFoGb9LrchtvRdSl83FAR/ Dvbvx+TzH4zaBS7cfoDJbMlbB5JA4ZHHPXeBsrV/mEHDr3/e5RGcbwFSaHAcBJkw Ohr82Tyk8WbO8WqEWuhrtxtPcSCpt9rXloloZ8JoPRotAU/AZMxbD9L+Q8cwravo I8Ksv5MD9qF73WpxyTGCxbhfLIaS3WnmdIDiphYTh8tmn2Sr0EPBYTjdc2n9ml4J B2NTRr2ehLycYsfiHbRnWfWMV7JuJHBu0SQEQFRC+U0abIo8FwEm7jMb0PQFA9sZ 0CiG2GsbZXAzd7UH5tzzgyLSdeztC84Ec8ZDy2F5bo0rUFP1uEP534xQEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAbng2G9CwsLwlL5e5cj42MsbCoeMB8GA1UdIwQY MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAogVqmaMJ iwp8IrK6Ov5DrqcNFcwsOy3m/tOk3X8yTJbKvgsdCqO3+Afs0g+X8unwRwxcrVGg +VAU6UOAstVNvS+o+63rUTArNP4C3BrK1Z3VtOAOJ4pXxEji5tjRFsSVNj8QaWyp xtrZdirixgC9kLW8WcbKLjbpvhT9yYdeqQl4St/Q1jwwLfYSRvmxv44wBPpY/Wz+ 3f35R/CIZCspV1DMFipfU+F8HbSdJ3xACdH98ilW4+fgKZ9g7nnwzhwG8fls5DzB ZAmppMoOc3EiU3/GfOi2ALmOSQPy38R2raY4kNWROkFOQWTNlUJllkWUbyLXg5EQ m6uuujMdfE/pNg== -----END CERTIFICATE-----Generated at Fri Dec 12 06:39:05 2025 by rpki-client