This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json) Hash identifier: pyG+WxP0iaNG45PXpro4j7pT55K1bSe+AjP5JMdG8WY= Subject key identifier: 35:BE:58:AA:94:05:84:55:C4:A5:8D:FB:41:E0:FD:3C:5E:E7:73:EC Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Certificate serial: 019B1FF4BDD923CE30C6557776F4359ADA9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft Manifest number: 09E3 Signing time: Mon 15 Dec 2025 03:01:31 +0000 Manifest this update: Mon 15 Dec 2025 03:01:31 +0000 Manifest next update: Tue 16 Dec 2025 03:01:31 +0000 Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: Q8dDVEw2o4HOx/nhiUZs4iLKLjFCjyS9UEsyAMv/dIQ=) 2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 03:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:f4:bd:d9:23:ce:30:c6:55:77:76:f4:35:9a:da:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Validity Not Before: Dec 15 03:01:31 2025 GMT Not After : Dec 16 03:01:31 2025 GMT Subject: CN=35be58aa94058455c4a58dfb41e0fd3c5ee773ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6d:1c:87:01:47:ca:d5:f8:d3:54:bc:59:68: b3:a9:54:aa:27:62:1a:29:c2:91:3b:c3:4a:40:62: 7f:27:21:b8:ac:4c:de:a6:f0:1a:29:c2:c2:e8:29: 20:79:99:22:8c:ee:9f:81:81:df:52:f1:1c:41:97: 17:d8:57:48:64:f2:b9:a4:4c:2a:15:8c:9c:3a:24: ed:47:ba:a3:85:4e:df:8a:e5:fe:d4:1b:b4:47:b9: 72:b4:da:52:4e:36:6e:97:be:2b:c5:8b:d8:9f:6e: 33:86:46:23:86:16:67:b9:69:07:44:85:d0:11:3c: 27:0d:2e:4e:9e:41:7c:88:6d:00:0b:ad:61:fb:df: e4:7c:67:2e:a6:bd:0d:2c:4c:36:3a:3c:73:99:bf: 23:81:69:e5:50:4d:e0:a9:24:cb:43:62:5e:de:70: e2:91:0a:d3:d6:c0:58:f6:26:fb:27:72:40:f3:ee: f4:35:16:53:2e:d0:a2:46:f4:04:50:c7:16:4f:21: 10:e0:dc:d6:d5:66:36:1e:f2:2c:83:ad:8e:02:83: 0a:5f:3d:35:72:31:c4:0f:f3:45:21:8f:b9:0c:94: 94:d1:4a:61:f1:1c:37:14:cf:ef:1a:9d:fd:78:42: 4e:14:2e:ab:c7:2b:ca:fd:1e:8a:62:d0:27:a3:72: 57:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BE:58:AA:94:05:84:55:C4:A5:8D:FB:41:E0:FD:3C:5E:E7:73:EC X509v3 Authority Key Identifier: keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:49:1b:20:8a:89:c2:13:6a:f5:a4:7d:ea:3b:86:81:6a:9d: 54:10:ef:c0:ee:ed:ad:fa:2e:b2:c2:79:7c:71:bc:02:56:5a: ae:3b:67:43:f9:d9:8f:81:08:8a:4b:ce:3c:96:48:24:c2:7c: a6:c9:c2:03:02:ad:03:fb:0e:fc:92:2c:a0:ac:ba:d7:5d:ee: 8a:5c:46:8d:a1:89:3b:84:75:10:9e:d6:04:c4:c8:fb:2b:d7: 1e:7b:8a:f6:c9:19:e7:35:7e:89:3c:8b:13:89:a6:61:21:84: bf:f1:45:dc:ea:b8:69:60:c1:9b:28:53:d1:49:f3:94:0a:2f: f8:8c:eb:98:4f:b5:03:4e:3b:95:17:7b:10:51:5e:59:0f:86: 4d:00:2d:c0:e2:69:06:a1:8a:ff:a9:79:73:7e:3f:0b:29:1b: 6b:c3:4f:8a:88:7f:2d:27:24:18:8f:f3:b3:3f:3d:af:ef:8c: e5:b8:bb:e7:2d:e7:97:de:82:fc:51:08:b3:f5:64:63:83:76: dc:2c:ee:63:bc:eb:d0:25:44:bd:09:1f:6d:ea:aa:06:2a:f6: b0:a7:51:cf:1b:d4:6e:49:d4:6a:f6:55:f2:aa:62:00:84:08: 75:c8:46:5c:54:9d:08:3f:7d:8c:46:11:d9:39:10:cc:8c:cf: e2:bf:a2:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsf9L3ZI84wxlV3dvQ1mtqbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWFkYzdhN2VjZTQ3N2Q1ZjRkNzc3MjQzYjYwZjJiYmJi NzU2MDMwHhcNMjUxMjE1MDMwMTMxWhcNMjUxMjE2MDMwMTMxWjAzMTEwLwYDVQQD EygzNWJlNThhYTk0MDU4NDU1YzRhNThkZmI0MWUwZmQzYzVlZTc3M2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqm0chwFHytX401S8WWizqVSqJ2Ia KcKRO8NKQGJ/JyG4rEzepvAaKcLC6CkgeZkijO6fgYHfUvEcQZcX2FdIZPK5pEwq FYycOiTtR7qjhU7fiuX+1Bu0R7lytNpSTjZul74rxYvYn24zhkYjhhZnuWkHRIXQ ETwnDS5OnkF8iG0AC61h+9/kfGcupr0NLEw2Ojxzmb8jgWnlUE3gqSTLQ2Je3nDi kQrT1sBY9ib7J3JA8+70NRZTLtCiRvQEUMcWTyEQ4NzW1WY2HvIsg62OAoMKXz01 cjHED/NFIY+5DJSU0Uph8Rw3FM/vGp39eEJOFC6rxyvK/R6KYtAno3JXcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDW+WKqUBYRVxKWN+0Hg/Txe53PsMB8GA1UdIwQY MBaAFHLq3Hp+zkd9X013ckO2Dyu7t1YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjkt NDczODUxNzA5YzU4LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS9jMDljNjQtMGJhZi00YjA3LThkMjktNDczODUxNzA5YzU4 LzEvY3VyY2VuN09SMzFmVFhkeVE3WVBLN3UzVmdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMkkbIIqJ whNq9aR96juGgWqdVBDvwO7trfoussJ5fHG8AlZarjtnQ/nZj4EIikvOPJZIJMJ8 psnCAwKtA/sO/JIsoKy6113uilxGjaGJO4R1EJ7WBMTI+yvXHnuK9skZ5zV+iTyL E4mmYSGEv/FF3Oq4aWDBmyhT0UnzlAov+IzrmE+1A047lRd7EFFeWQ+GTQAtwOJp BqGK/6l5c34/Cykba8NPioh/LSckGI/zsz89r++M5bi75y3nl96C/FEIs/VkY4N2 3CzuY7zr0CVEvQkfbeqqBir2sKdRzxvUbknUavZV8qpiAIQIdchGXFSdCD99jEYR 2TkQzIzP4r+iVw== -----END CERTIFICATE-----Generated at Mon Dec 15 13:19:03 2025 by rpki-client