This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json) Hash identifier: VEwdq7V++zCA6D4eS3Z3UxstvOVgVFC/qlhqQORJcPI= Subject key identifier: 70:90:76:96:F7:9D:AA:55:1A:12:0E:2E:22:77:7B:6E:C4:EA:70:BC Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82 Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282 Certificate serial: 019B25512066B4741E351C245D6AC3DC5227 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft Manifest number: 0314 Signing time: Tue 16 Dec 2025 04:00:32 +0000 Manifest this update: Tue 16 Dec 2025 04:00:32 +0000 Manifest next update: Wed 17 Dec 2025 04:00:32 +0000 Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: AvyS6lo2Rb5lX4TQLuLrOZ0Jj/sDBbcUM5C0t4yHn3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:51:20:66:b4:74:1e:35:1c:24:5d:6a:c3:dc:52:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282 Validity Not Before: Dec 16 04:00:32 2025 GMT Not After : Dec 17 04:00:32 2025 GMT Subject: CN=70907696f79daa551a120e2e22777b6ec4ea70bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ca:ed:e6:4c:3a:70:78:c6:33:9c:c2:83:76: d0:63:04:49:b6:2f:e8:3d:d5:33:bf:18:2c:ef:6d: e8:0d:71:35:09:68:8f:42:43:3a:16:24:a8:ba:2c: 9f:95:4f:ed:7f:90:ea:24:23:1e:ab:1e:ef:4f:ea: a4:e8:03:42:ec:6d:d9:b2:6b:b4:d7:fc:b0:3b:40: f5:a1:ed:8a:18:67:81:45:88:f5:ea:61:b3:ba:f9: 1e:ac:ae:fe:59:45:ee:13:fa:fe:ed:1b:66:c7:9e: 21:ff:a3:c3:14:77:da:86:44:17:65:36:4a:f5:43: 7c:af:b3:d1:a0:ca:37:84:90:cb:5f:a4:1f:f4:ce: 0e:c8:18:d0:c1:6d:fc:76:b2:27:40:8b:fe:52:b9: 07:4f:71:f6:59:dd:9e:70:99:53:af:3e:17:63:46: 02:12:33:b4:c3:12:53:4c:b9:67:0a:70:74:6e:c8: 69:f9:49:db:de:08:3a:5f:a2:69:8a:71:43:5e:3c: 7d:f2:a3:01:eb:37:14:59:91:74:7f:a3:65:11:8c: 44:f8:1d:fc:36:fe:b7:d7:b9:8f:35:94:24:fd:2c: d6:3a:83:e2:ae:1c:f4:b5:54:27:b7:01:4b:5d:5a: 02:68:00:28:82:79:c0:ab:86:9f:f2:e2:5a:5c:54: 01:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:90:76:96:F7:9D:AA:55:1A:12:0E:2E:22:77:7B:6E:C4:EA:70:BC X509v3 Authority Key Identifier: keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:cf:b3:c8:83:f4:e8:1f:1a:4f:16:54:99:10:de:e1:84:a2: a2:d8:58:e6:87:e2:4a:06:ae:5b:7a:55:95:12:66:26:1e:13: dd:1a:32:51:29:d9:8b:86:7f:96:96:5e:9c:b5:a1:ec:85:2b: 77:8f:35:8d:9d:cd:be:c3:de:01:a8:c9:32:a1:ec:c9:6c:5c: a9:92:b7:96:d2:64:53:ce:bc:89:9e:bb:61:bf:2f:37:be:db: cd:f2:71:1b:8a:a5:b8:91:bf:31:bc:8e:3b:f0:51:a4:89:51: 47:76:02:f9:75:2c:a0:f1:4a:2e:ac:3f:c3:ab:86:c3:b5:f0: 86:9a:1b:f0:cf:42:59:73:a0:ed:6e:4b:4b:74:ca:59:b8:a7: e0:32:09:69:3c:80:3c:89:f6:45:d0:f2:10:2f:6b:d5:b2:51: 46:8c:95:f6:fa:d0:05:5d:fa:44:b8:30:0b:e8:7e:c2:5b:6d: c5:35:28:80:5e:c0:2f:f0:3d:ab:a8:82:77:9d:e6:c4:ae:af: a0:77:22:8c:69:84:4d:d3:07:00:84:23:9b:eb:39:5e:45:4d: 6f:10:11:79:4c:b4:f7:36:09:5d:70:38:49:2a:87:5b:21:eb: 5d:a9:06:76:5c:48:05:4b:af:82:04:b4:e3:34:35:d7:37:b0: 8b:f2:ba:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUSBmtHQeNRwkXWrD3FInMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNzM5OGM5YjE2ZWE5OGQyMjJhNGMyOWNhZjdiMmViYzk4 NGYyODIwHhcNMjUxMjE2MDQwMDMyWhcNMjUxMjE3MDQwMDMyWjAzMTEwLwYDVQQD Eyg3MDkwNzY5NmY3OWRhYTU1MWExMjBlMmUyMjc3N2I2ZWM0ZWE3MGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsrt5kw6cHjGM5zCg3bQYwRJti/o PdUzvxgs723oDXE1CWiPQkM6FiSouiyflU/tf5DqJCMeqx7vT+qk6ANC7G3Zsmu0 1/ywO0D1oe2KGGeBRYj16mGzuvkerK7+WUXuE/r+7Rtmx54h/6PDFHfahkQXZTZK 9UN8r7PRoMo3hJDLX6Qf9M4OyBjQwW38drInQIv+UrkHT3H2Wd2ecJlTrz4XY0YC EjO0wxJTTLlnCnB0bshp+Unb3gg6X6JpinFDXjx98qMB6zcUWZF0f6NlEYxE+B38 Nv6317mPNZQk/SzWOoPirhz0tVQntwFLXVoCaAAognnAq4af8uJaXFQB+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHCQdpb3napVGhIOLiJ3e27E6nC8MB8GA1UdIwQY MBaAFHJzmMmxbqmNIipMKcr3suvJhPKCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3Njkt NWEwN2UyNmZiODIyLzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC8zYzYwNGUtZTZhOC00ZTRlLWI3NjktNWEwN2UyNmZiODIy LzEvY25PWXliRnVxWTBpS2t3cHl2ZXk2OG1FOG9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvc+zyIP0 6B8aTxZUmRDe4YSiothY5ofiSgauW3pVlRJmJh4T3RoyUSnZi4Z/lpZenLWh7IUr d481jZ3NvsPeAajJMqHsyWxcqZK3ltJkU868iZ67Yb8vN77bzfJxG4qluJG/MbyO O/BRpIlRR3YC+XUsoPFKLqw/w6uGw7Xwhpob8M9CWXOg7W5LS3TKWbin4DIJaTyA PIn2RdDyEC9r1bJRRoyV9vrQBV36RLgwC+h+wlttxTUogF7AL/A9q6iCd53mxK6v oHcijGmETdMHAIQjm+s5XkVNbxAReUy09zYJXXA4SSqHWyHrXakGdlxIBUuvggS0 4zQ11zewi/K6rA== -----END CERTIFICATE-----Generated at Tue Dec 16 06:25:58 2025 by rpki-client