This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft File: FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft (raw, json) Hash identifier: z6B0ixlIxTbckLzCSLGJUkp8ENwqlFmDW80WgILDs/U= Subject key identifier: B5:5F:01:A2:86:1C:03:43:EF:B9:99:FA:1F:D4:78:7F:B3:CA:23:10 Authority key identifier: 16:17:D0:AF:EA:BB:F3:39:B0:6D:B2:83:C4:B8:E0:27:A0:4A:BC:AE Certificate issuer: /CN=1617d0afeabbf339b06db283c4b8e027a04abcae Certificate serial: 019B5A522397DB831C1ED33EB4BBD03E2D21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft Manifest number: 0546 Signing time: Fri 26 Dec 2025 11:01:30 +0000 Manifest this update: Fri 26 Dec 2025 11:01:30 +0000 Manifest next update: Sat 27 Dec 2025 11:01:30 +0000 Files and hashes: 1: FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl (hash: UjykkRPVJzm7GaRxpql07XlcLnq/O0xUP1S5R2PdMW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:52:23:97:db:83:1c:1e:d3:3e:b4:bb:d0:3e:2d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1617d0afeabbf339b06db283c4b8e027a04abcae Validity Not Before: Dec 26 11:01:30 2025 GMT Not After : Dec 27 11:01:30 2025 GMT Subject: CN=b55f01a2861c0343efb999fa1fd4787fb3ca2310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0f:0b:96:58:2e:c1:b8:e2:76:35:dc:d7:4f: f8:ab:9c:93:7e:db:d2:86:83:18:09:4a:56:cf:c7: 75:c5:3e:59:3f:53:08:ed:1d:da:02:d6:18:84:64: 58:91:db:6c:4a:7c:b0:bf:25:31:87:ab:f3:0f:68: 25:ff:56:db:3e:15:b1:f8:0a:24:13:ac:0d:94:de: a5:40:47:70:83:4c:31:59:3a:f1:9c:d9:a1:b0:be: a4:d5:69:62:c7:17:81:28:cd:c7:6e:58:db:8a:b4: e0:f3:6e:61:84:ab:1e:78:cb:fc:5b:d1:76:fb:5b: cc:46:8c:a6:35:ed:95:28:8f:e8:48:d3:79:20:7f: 30:fc:92:b9:b0:4d:2b:9e:48:81:da:ab:13:c6:da: db:85:f0:d6:6a:4b:b1:9c:59:bd:ec:58:65:73:3c: 57:7e:fe:9b:2b:95:f1:ab:f5:24:81:55:67:a5:1b: 71:bd:d9:1b:0f:97:d2:d5:1b:62:2d:c8:80:4c:c8: 12:34:ef:65:08:fd:59:31:18:b8:36:2b:90:d1:6b: 86:45:8f:40:37:7b:2a:24:16:99:12:78:0b:37:73: b2:c1:fe:12:f0:d4:95:40:85:22:f4:b9:a3:d6:c8: 9f:63:75:72:84:75:bd:90:2d:54:b5:f4:50:f6:69: bc:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5F:01:A2:86:1C:03:43:EF:B9:99:FA:1F:D4:78:7F:B3:CA:23:10 X509v3 Authority Key Identifier: keyid:16:17:D0:AF:EA:BB:F3:39:B0:6D:B2:83:C4:B8:E0:27:A0:4A:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FhfQr-q78zmwbbKDxLjgJ6BKvK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/a4a2cd-5dbf-4029-a8a1-d7f21fc1350e/1/FhfQr-q78zmwbbKDxLjgJ6BKvK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:ca:2e:82:03:1c:61:3f:cd:ea:32:5d:7e:64:90:37:a9:f3: c1:09:fa:f3:0c:63:f4:bf:ce:31:ab:61:ed:7e:4e:1e:d1:f6: 47:ca:85:95:82:aa:29:40:87:07:72:2a:93:22:22:d1:39:fa: 48:f0:2b:8d:78:e5:61:df:1c:19:26:a7:3a:59:2e:5d:fe:81: ec:10:16:19:5f:d8:8d:a7:b1:bb:a9:05:96:40:7f:44:7b:ab: 99:8b:6f:0e:94:87:02:f4:ae:fa:b9:16:ba:66:45:11:0b:08: f0:ff:c4:fe:2c:da:da:41:04:69:7a:60:63:11:15:4e:2f:9b: d4:23:37:9c:72:83:2d:d3:3c:30:99:6b:bf:99:47:53:a5:ec: 03:ad:49:b2:65:e9:b9:3c:ef:23:73:25:03:21:f7:f0:62:c3: a3:06:e0:c7:2b:c0:47:01:36:ff:c4:c3:72:21:61:38:49:cf: dd:7b:2d:4a:f7:3a:59:59:75:81:18:d7:1b:73:4d:cc:d0:b0: 44:51:86:2f:10:85:9d:5d:7d:9d:ff:c9:0b:7c:64:a9:f3:2b: fc:25:fc:65:13:87:cc:bf:b8:67:15:b1:3f:6f:9f:7e:03:4e: f8:a2:71:17:5b:b9:12:82:ef:4d:8b:77:b4:2c:79:9f:9e:d3: ea:1a:60:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUiOX24McHtM+tLvQPi0hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MTdkMGFmZWFiYmYzMzliMDZkYjI4M2M0YjhlMDI3YTA0 YWJjYWUwHhcNMjUxMjI2MTEwMTMwWhcNMjUxMjI3MTEwMTMwWjAzMTEwLwYDVQQD EyhiNTVmMDFhMjg2MWMwMzQzZWZiOTk5ZmExZmQ0Nzg3ZmIzY2EyMzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoA8LllguwbjidjXc10/4q5yTftvS hoMYCUpWz8d1xT5ZP1MI7R3aAtYYhGRYkdtsSnywvyUxh6vzD2gl/1bbPhWx+Aok E6wNlN6lQEdwg0wxWTrxnNmhsL6k1WlixxeBKM3HbljbirTg825hhKseeMv8W9F2 +1vMRoymNe2VKI/oSNN5IH8w/JK5sE0rnkiB2qsTxtrbhfDWakuxnFm97FhlczxX fv6bK5Xxq/UkgVVnpRtxvdkbD5fS1RtiLciATMgSNO9lCP1ZMRi4NiuQ0WuGRY9A N3sqJBaZEngLN3Oywf4S8NSVQIUi9Lmj1sifY3VyhHW9kC1UtfRQ9mm8PwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLVfAaKGHAND77mZ+h/UeH+zyiMQMB8GA1UdIwQY MBaAFBYX0K/qu/M5sG2yg8S44CegSryuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9hNGEyY2QtNWRiZi00MDI5LWE4YTEt ZDdmMjFmYzEzNTBlLzEvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9hNGEyY2QtNWRiZi00MDI5LWE4YTEtZDdmMjFmYzEzNTBl LzEvRmhmUXItcTc4em13YmJLRHhMamdKNkJLdks0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlcouggMc YT/N6jJdfmSQN6nzwQn68wxj9L/OMath7X5OHtH2R8qFlYKqKUCHB3IqkyIi0Tn6 SPArjXjlYd8cGSanOlkuXf6B7BAWGV/Yjaexu6kFlkB/RHurmYtvDpSHAvSu+rkW umZFEQsI8P/E/iza2kEEaXpgYxEVTi+b1CM3nHKDLdM8MJlrv5lHU6XsA61JsmXp uTzvI3MlAyH38GLDowbgxyvARwE2/8TDciFhOEnP3XstSvc6WVl1gRjXG3NNzNCw RFGGLxCFnV19nf/JC3xkqfMr/CX8ZROHzL+4ZxWxP2+ffgNO+KJxF1u5EoLvTYt3 tCx5n57T6hpghw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:19 2025 by rpki-client