This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json) Hash identifier: dpSGg1mMgdPZEbRE6Q2GX5M+uytJnTAJQlWmTJ7Ok8g= Subject key identifier: 96:55:AC:67:F2:15:8B:BD:05:55:3D:86:22:1C:4A:89:2F:74:0E:F2 Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06 Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06 Certificate serial: 019B4B4C605DECD8FBDF2A016C4B54036DC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft Manifest number: 0DCF Signing time: Tue 23 Dec 2025 13:00:55 +0000 Manifest this update: Tue 23 Dec 2025 13:00:55 +0000 Manifest next update: Wed 24 Dec 2025 13:00:55 +0000 Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: iiT3Pr6YbpntEib9veNulW2095wmkoiAsqCsnKTOe0g=) 2: U0OBxV0NmzWdhOROB_4XE_nOuxo.roa (hash: R0oHniHcgRLjr+xP295YEa+yjJ7+h87sW92ahFuO7CI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:4c:60:5d:ec:d8:fb:df:2a:01:6c:4b:54:03:6d:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06 Validity Not Before: Dec 23 13:00:55 2025 GMT Not After : Dec 24 13:00:55 2025 GMT Subject: CN=9655ac67f2158bbd05553d86221c4a892f740ef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:57:2c:9a:a7:56:b4:ef:82:2f:83:5a:44:f6: be:13:8b:c1:f6:9d:b5:74:35:70:01:74:9a:13:2e: 84:8a:8c:dd:1d:b7:e4:55:cb:95:a8:71:a0:ff:1b: ac:c3:6f:f9:f2:26:c2:9f:27:31:92:ba:58:80:5a: 09:82:08:5e:6e:9d:72:a2:f7:3a:6d:c3:e6:f4:dd: 98:52:a9:79:c5:1a:8e:02:a1:0b:d0:0c:74:ba:7c: 0d:5d:27:de:35:e4:55:04:11:bf:a0:4c:7f:43:52: 16:d4:9f:e0:62:8d:65:aa:46:52:6c:69:df:7d:48: bb:8e:93:92:01:ca:4e:43:66:67:0b:33:a2:a2:82: 0a:ed:6b:c9:62:8a:d4:0e:b4:6e:cd:bb:19:24:e0: c5:62:16:75:95:5f:d0:89:96:27:76:d3:e8:8f:89: 2f:ab:87:a4:1d:d4:c9:34:bf:ed:ae:ae:3d:dc:b2: 5e:5e:ad:5d:f7:a9:69:5f:6a:bd:15:49:b1:5d:f6: f9:47:41:ee:fc:87:0d:58:e2:a7:fe:6c:4c:62:67: 0d:41:9e:50:6e:3c:3c:b1:e8:67:25:5c:dd:2b:c4: d1:52:a3:e9:11:d1:13:c7:c5:e1:5f:11:6b:18:6c: 4b:9f:52:84:f8:63:cd:57:fb:36:49:99:d3:7e:f4: 5e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:55:AC:67:F2:15:8B:BD:05:55:3D:86:22:1C:4A:89:2F:74:0E:F2 X509v3 Authority Key Identifier: keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:31:71:7a:67:c4:15:f8:81:8a:9d:b6:46:8c:bf:4a:e7:67: 0c:9c:bd:a8:cf:44:d3:47:60:ab:0e:59:2d:00:9d:dc:b4:7a: c7:26:68:19:39:07:0b:88:f2:40:3d:51:96:d6:46:a2:0d:4b: 89:e3:53:56:b2:57:46:fb:4d:8a:3c:bb:d9:34:59:5b:5f:aa: 71:42:b4:e9:16:f1:a6:4d:08:db:2b:ba:a2:67:e3:84:0f:92: 35:a6:ff:40:f9:6c:55:63:e9:cc:6b:6a:6d:ff:62:7b:3c:bb: c0:f1:94:c5:84:6b:79:dd:23:12:d7:f4:6d:ba:31:9b:76:5e: 53:9a:e6:6e:31:ee:3c:fd:e4:a6:8e:36:e8:a5:fd:12:a2:17: 9b:5d:fe:fd:e5:58:c8:26:47:d4:62:e4:6a:2e:51:2e:d8:74: bd:a9:91:f3:d9:d5:cc:b4:76:c7:b8:4c:9b:d7:46:aa:36:e9: b1:02:c6:3d:d5:8b:fa:88:d9:d5:09:63:df:53:61:7e:7d:77: 63:ad:ee:0d:e0:ea:c9:be:9c:65:88:a9:b1:f2:d6:ae:04:e1: 2b:73:e6:5b:75:18:ba:10:59:04:32:e3:a2:d6:d1:90:fe:e8: 2b:85:e5:c1:1e:bd:c3:a8:c9:16:db:ac:96:d5:c0:ed:23:02: 4b:5d:ae:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLTGBd7Nj73yoBbEtUA23AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5NDRhYWFjN2YyZWJiMjk4MWMyNDc2M2ViM2Q2MDQ1ZWZi ZDZmMDYwHhcNMjUxMjIzMTMwMDU1WhcNMjUxMjI0MTMwMDU1WjAzMTEwLwYDVQQD Eyg5NjU1YWM2N2YyMTU4YmJkMDU1NTNkODYyMjFjNGE4OTJmNzQwZWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFcsmqdWtO+CL4NaRPa+E4vB9p21 dDVwAXSaEy6EiozdHbfkVcuVqHGg/xusw2/58ibCnycxkrpYgFoJgghebp1yovc6 bcPm9N2YUql5xRqOAqEL0Ax0unwNXSfeNeRVBBG/oEx/Q1IW1J/gYo1lqkZSbGnf fUi7jpOSAcpOQ2ZnCzOiooIK7WvJYorUDrRuzbsZJODFYhZ1lV/QiZYndtPoj4kv q4ekHdTJNL/trq493LJeXq1d96lpX2q9FUmxXfb5R0Hu/IcNWOKn/mxMYmcNQZ5Q bjw8sehnJVzdK8TRUqPpEdETx8XhXxFrGGxLn1KE+GPNV/s2SZnTfvRecQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJZVrGfyFYu9BVU9hiIcSokvdA7yMB8GA1UdIwQY MBaAFAlEqqx/LrspgcJHY+s9YEXvvW8GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS80MzQ4NDktODlkYS00M2FlLWIyYmUt NjZjZDAxOTYxZTQ2LzEvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS80MzQ4NDktODlkYS00M2FlLWIyYmUtNjZjZDAxOTYxZTQ2 LzEvQ1VTcXJIOHV1eW1Cd2tkajZ6MWdSZS05YndZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABTFxemfE FfiBip22Roy/SudnDJy9qM9E00dgqw5ZLQCd3LR6xyZoGTkHC4jyQD1RltZGog1L ieNTVrJXRvtNijy72TRZW1+qcUK06Rbxpk0I2yu6omfjhA+SNab/QPlsVWPpzGtq bf9iezy7wPGUxYRred0jEtf0bboxm3ZeU5rmbjHuPP3kpo426KX9EqIXm13+/eVY yCZH1GLkai5RLth0vamR89nVzLR2x7hMm9dGqjbpsQLGPdWL+ojZ1Qlj31Nhfn13 Y63uDeDqyb6cZYipsfLWrgThK3PmW3UYuhBZBDLjotbRkP7oK4XlwR69w6jJFtus ltXA7SMCS12u/w== -----END CERTIFICATE-----Generated at Tue Dec 23 18:57:51 2025 by rpki-client