This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json) Hash identifier: XoiGV5+DawcVhPQ5ePvzW+Je8FhPgNGH7pSP4sxK0WY= Subject key identifier: D1:63:79:5C:60:DB:6B:30:45:49:46:48:29:B5:B7:88:99:8E:6F:EE Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e Certificate serial: 019B44387B865D3B8068F4107DF32E673356 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft Manifest number: 0761 Signing time: Mon 22 Dec 2025 04:01:50 +0000 Manifest this update: Mon 22 Dec 2025 04:01:50 +0000 Manifest next update: Tue 23 Dec 2025 04:01:50 +0000 Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: L/dWtb+K1vKRRV+rZwlU9+agfTNWWSvtJmASgbqLt3c=) 2: t0ukQ5CSEan3v8t7w6xA6LKAlPA.roa (hash: 0NRhgZITCHjsjwAYQth1zntdOiq0gcrilmGiiV4E8WI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 04:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:38:7b:86:5d:3b:80:68:f4:10:7d:f3:2e:67:33:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e Validity Not Before: Dec 22 04:01:50 2025 GMT Not After : Dec 23 04:01:50 2025 GMT Subject: CN=d163795c60db6b304549464829b5b788998e6fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c8:1c:c6:f1:5f:4f:f9:d1:8b:2a:db:6b:19: 31:71:1b:d7:a6:0d:ee:17:8e:e0:76:99:ee:5f:43: 8a:13:0a:0c:1f:00:3c:d9:8d:1a:5d:82:c7:99:5d: 94:fe:a8:18:8d:32:d8:77:54:91:fa:99:55:bf:2a: 50:07:15:4e:f1:a4:48:aa:08:41:bd:32:56:be:51: e9:3e:44:f0:fc:04:68:ba:03:d3:c6:49:e2:58:5b: e9:94:58:d8:ac:e7:f9:6a:e9:85:cc:34:b5:70:42: cd:86:5f:cb:0b:cd:5d:64:a9:4f:2b:fe:b5:2c:9b: 92:b9:b6:ab:81:93:37:a4:e1:15:ec:57:3a:42:21: df:69:8e:25:3f:0a:fd:07:7e:63:ca:a0:e1:79:88: 60:9d:04:75:ea:ab:76:5f:80:6e:3e:a7:10:ba:fd: 36:05:8d:80:2a:4c:88:93:0d:6c:53:b9:f7:d0:07: be:13:44:7d:92:f0:f8:94:37:e2:b9:6d:0a:17:0b: 0d:54:05:05:00:8b:1f:ad:4a:4c:b0:ca:7b:0b:30: a6:24:23:58:db:33:ed:ac:34:96:51:d0:c9:e5:b9: 35:4c:23:21:01:53:2f:a9:b5:b8:cb:ac:f5:9a:8d: 40:d9:6a:8d:9d:5b:8b:c4:7e:2d:06:5f:57:6a:7c: c3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:63:79:5C:60:DB:6B:30:45:49:46:48:29:B5:B7:88:99:8E:6F:EE X509v3 Authority Key Identifier: keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:ad:99:28:53:fc:a6:96:b3:09:ad:26:32:e3:e2:0e:da:33: e7:dc:84:92:d2:ef:41:20:6b:10:68:3b:be:9f:94:74:24:21: d9:c7:9e:ed:02:2e:b9:5d:87:33:b5:a2:f7:e3:61:e4:6a:db: c3:5a:67:90:a4:15:a9:26:b7:11:49:ad:67:1c:dd:06:d3:f0: 3b:f5:cf:d9:f7:79:b8:e7:4e:de:34:7b:7e:f0:55:b0:96:c4: 0d:01:a5:8f:32:f6:33:28:78:5f:b9:44:18:b3:f4:db:f5:9e: 2f:22:0e:20:4e:85:ed:4c:d0:d6:2a:ed:37:8a:d1:8b:76:f0: 74:d3:86:f1:c3:23:77:45:78:a7:c8:81:35:0e:2b:eb:b7:9b: 0a:db:9f:60:82:11:85:87:e3:ca:af:2f:3c:01:53:7f:7a:ff: 7e:5b:53:3e:94:90:11:15:1b:3a:09:25:1d:c3:c0:24:c3:b3: 26:38:42:16:15:ea:d1:78:24:dd:76:a4:50:73:a7:23:e7:ca: 6e:6a:ad:79:d9:59:e5:f9:07:f3:32:22:cf:08:0f:cc:cc:f0: 36:c1:33:64:38:80:fe:6b:78:61:f4:70:58:7a:98:87:5d:21: 31:b1:bd:8c:ef:0e:57:1a:c9:e3:b2:1b:0b:9e:88:21:b1:21: 67:4e:f3:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOHuGXTuAaPQQffMuZzNWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZTZmZDIyNzFkZGUxMDg4NmQ5N2ZmMTQ3MDNlNTgxYTIw NGI2NWUwHhcNMjUxMjIyMDQwMTUwWhcNMjUxMjIzMDQwMTUwWjAzMTEwLwYDVQQD EyhkMTYzNzk1YzYwZGI2YjMwNDU0OTQ2NDgyOWI1Yjc4ODk5OGU2ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsgcxvFfT/nRiyrbaxkxcRvXpg3u F47gdpnuX0OKEwoMHwA82Y0aXYLHmV2U/qgYjTLYd1SR+plVvypQBxVO8aRIqghB vTJWvlHpPkTw/ARougPTxkniWFvplFjYrOf5aumFzDS1cELNhl/LC81dZKlPK/61 LJuSubargZM3pOEV7Fc6QiHfaY4lPwr9B35jyqDheYhgnQR16qt2X4BuPqcQuv02 BY2AKkyIkw1sU7n30Ae+E0R9kvD4lDfiuW0KFwsNVAUFAIsfrUpMsMp7CzCmJCNY 2zPtrDSWUdDJ5bk1TCMhAVMvqbW4y6z1mo1A2WqNnVuLxH4tBl9XanzDPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNFjeVxg22swRUlGSCm1t4iZjm/uMB8GA1UdIwQY MBaAFHLm/SJx3eEIhtl/8UcD5YGiBLZeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgt NmFmMjE1YmZmMWNlLzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgtNmFmMjE1YmZmMWNl LzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHK2ZKFP8 ppazCa0mMuPiDtoz59yEktLvQSBrEGg7vp+UdCQh2cee7QIuuV2HM7Wi9+Nh5Grb w1pnkKQVqSa3EUmtZxzdBtPwO/XP2fd5uOdO3jR7fvBVsJbEDQGljzL2Myh4X7lE GLP02/WeLyIOIE6F7UzQ1irtN4rRi3bwdNOG8cMjd0V4p8iBNQ4r67ebCtufYIIR hYfjyq8vPAFTf3r/fltTPpSQERUbOgklHcPAJMOzJjhCFhXq0Xgk3XakUHOnI+fK bmqtedlZ5fkH8zIizwgPzMzwNsEzZDiA/mt4YfRwWHqYh10hMbG9jO8OVxrJ47Ib C56IIbEhZ07zsA== -----END CERTIFICATE-----Generated at Mon Dec 22 09:03:20 2025 by rpki-client