This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json) Hash identifier: UzUvJ90d71Bk/XKGvWLqTONdexYdl5rI6NITgu32Bqk= Subject key identifier: A3:AF:09:48:4C:C0:37:0A:61:0B:2E:D4:F0:B0:CB:FD:BF:64:A7:15 Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba Certificate serial: 019AF12E7BFCFECE4C322DDAB8F87D00E4EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft Manifest number: 100E Signing time: Sat 06 Dec 2025 01:02:26 +0000 Manifest this update: Sat 06 Dec 2025 01:02:26 +0000 Manifest next update: Sun 07 Dec 2025 01:02:26 +0000 Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: 4lOVydLGo8cX3nOIsVd4zTbHMDMGIIi8apS1fGVVpxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:7b:fc:fe:ce:4c:32:2d:da:b8:f8:7d:00:e4:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba Validity Not Before: Dec 6 01:02:26 2025 GMT Not After : Dec 7 01:02:26 2025 GMT Subject: CN=a3af09484cc0370a610b2ed4f0b0cbfdbf64a715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:53:3b:28:1f:0a:ff:53:c3:ff:3c:39:d4:04: 7d:ac:7b:22:85:d6:83:91:96:d9:3e:c6:51:dd:56: 56:14:bf:3d:9e:e1:b8:32:3d:0b:96:c5:5c:99:5a: be:5d:eb:96:cf:00:e0:dc:59:17:2e:3f:64:22:32: 12:56:11:e8:81:33:35:d4:44:05:ff:48:f9:cd:fe: cd:bf:2a:e1:3c:8e:8d:70:b6:18:ab:b8:6e:b3:10: 83:62:03:99:e7:49:4a:27:6e:0f:01:6f:4d:07:ed: e0:bd:e4:42:23:29:51:07:44:f6:4c:d1:fa:39:0d: 12:8f:b9:5d:bb:40:e9:5c:8b:72:00:9a:30:6b:85: 54:7b:83:8c:49:a4:ee:22:83:61:96:08:38:60:65: 8b:b8:b4:ef:46:70:c8:b2:8e:31:05:78:9f:17:0a: eb:5d:52:13:05:c2:cc:73:4d:9e:e6:3f:c0:02:ad: e9:20:ec:91:ee:7a:0b:05:e3:a3:db:06:f9:bb:c2: 90:06:cd:62:df:fe:fb:08:f0:d8:7c:cf:94:46:86: e4:88:ef:44:38:18:4b:83:73:14:bb:65:9e:1c:92: a3:ea:3d:0c:a3:9e:9a:d7:80:9c:a3:4d:47:3f:e3: 36:a8:76:d3:d7:a8:4b:7e:2a:39:6a:04:55:53:5d: ba:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AF:09:48:4C:C0:37:0A:61:0B:2E:D4:F0:B0:CB:FD:BF:64:A7:15 X509v3 Authority Key Identifier: keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b8:3d:a0:57:37:2b:2e:02:53:55:1c:16:51:80:15:bc:5c: 09:a1:51:cc:f0:7b:6b:1b:8c:be:73:23:4a:04:1c:fc:1c:ef: 2e:40:a0:64:59:2e:0f:7e:b3:33:f4:d5:d3:bb:9d:cb:3c:cc: 15:35:20:b8:0a:0e:5a:4a:b4:7e:9d:81:04:26:9e:02:d9:0d: f1:ab:c5:26:21:49:45:af:54:1c:a9:02:a5:98:fc:b4:08:66: 89:21:ac:78:56:37:b4:0c:20:8e:7d:fc:ab:ae:d8:05:65:92: e7:0b:6a:e9:ea:95:7f:7a:c0:ec:4a:dc:48:26:fb:09:d3:43: 8e:f8:2e:25:b6:e6:58:f5:bf:c6:7b:33:81:f8:25:52:67:45: ca:99:eb:d7:72:b2:3f:41:ed:9a:75:0e:37:b0:1b:0e:f3:1c: 4f:e1:8d:c9:50:44:95:b9:c5:6b:c7:69:9d:37:9d:eb:2b:f5: d6:3b:df:87:ae:27:7a:4b:e6:44:36:77:dc:25:a5:d8:08:cd: 28:a8:e0:c0:4a:23:25:b4:63:6c:16:9e:b9:b3:04:1a:57:0a: 36:3f:af:c5:65:d0:2e:03:ae:24:54:fc:b6:4f:be:a4:37:fe: 87:10:c0:13:fb:e4:3b:26:60:98:13:b5:69:71:ad:ba:b6:ee: c6:20:3b:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLnv8/s5MMi3auPh9AOTrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3M2FkM2U5ODc5ZTgxODYyMzE2YTEwODA4YmI1YzQyMTI5 NTRjYmEwHhcNMjUxMjA2MDEwMjI2WhcNMjUxMjA3MDEwMjI2WjAzMTEwLwYDVQQD EyhhM2FmMDk0ODRjYzAzNzBhNjEwYjJlZDRmMGIwY2JmZGJmNjRhNzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVM7KB8K/1PD/zw51AR9rHsihdaD kZbZPsZR3VZWFL89nuG4Mj0LlsVcmVq+XeuWzwDg3FkXLj9kIjISVhHogTM11EQF /0j5zf7NvyrhPI6NcLYYq7husxCDYgOZ50lKJ24PAW9NB+3gveRCIylRB0T2TNH6 OQ0Sj7ldu0DpXItyAJowa4VUe4OMSaTuIoNhlgg4YGWLuLTvRnDIso4xBXifFwrr XVITBcLMc02e5j/AAq3pIOyR7noLBeOj2wb5u8KQBs1i3/77CPDYfM+URobkiO9E OBhLg3MUu2WeHJKj6j0Mo56a14Cco01HP+M2qHbT16hLfio5agRVU126pwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKOvCUhMwDcKYQsu1PCwy/2/ZKcVMB8GA1UdIwQY MBaAFEc60+mHnoGGIxahCAi7XEISlUy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYt YjZjMzlhZDk4M2RkLzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYtYjZjMzlhZDk4M2Rk LzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7g9oFc3 Ky4CU1UcFlGAFbxcCaFRzPB7axuMvnMjSgQc/BzvLkCgZFkuD36zM/TV07udyzzM FTUguAoOWkq0fp2BBCaeAtkN8avFJiFJRa9UHKkCpZj8tAhmiSGseFY3tAwgjn38 q67YBWWS5wtq6eqVf3rA7ErcSCb7CdNDjvguJbbmWPW/xnszgfglUmdFypnr13Ky P0HtmnUON7AbDvMcT+GNyVBElbnFa8dpnTed6yv11jvfh64nekvmRDZ33CWl2AjN KKjgwEojJbRjbBaeubMEGlcKNj+vxWXQLgOuJFT8tk++pDf+hxDAE/vkOyZgmBO1 aXGturbuxiA71Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:28 2025 by rpki-client