This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft File: CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft (raw, json) Hash identifier: HQjC+g+Tu5MC8JEsDjI+EKN43b/BZ3qTDVRX3Kr/RW8= Subject key identifier: 63:DF:A3:78:50:BF:1A:77:A5:7A:A8:EC:BB:26:87:CF:EA:13:F3:92 Authority key identifier: 0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59 Certificate issuer: /CN=0a85d379726c8fc096d27e88fda117b3b2654e59 Certificate serial: 019AF352219059D718D17C5A833482012FE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft Manifest number: 055E Signing time: Sat 06 Dec 2025 11:00:37 +0000 Manifest this update: Sat 06 Dec 2025 11:00:37 +0000 Manifest next update: Sun 07 Dec 2025 11:00:37 +0000 Files and hashes: 1: CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl (hash: PDTm9BTxMYmFk98dr7gQmecsEpaXbhkuvDnLfpKl+Yg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:21:90:59:d7:18:d1:7c:5a:83:34:82:01:2f:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a85d379726c8fc096d27e88fda117b3b2654e59 Validity Not Before: Dec 6 11:00:37 2025 GMT Not After : Dec 7 11:00:37 2025 GMT Subject: CN=63dfa37850bf1a77a57aa8ecbb2687cfea13f392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5a:b2:f4:8e:64:48:54:d9:cb:c2:f5:fe:dc: cb:0b:e5:e8:d4:7d:59:15:e3:73:07:bb:b0:b3:72: e8:d9:72:1a:e4:73:f1:84:bc:78:dd:bb:41:8b:87: 28:92:13:9b:2b:84:86:8f:84:d0:86:4b:09:b7:a5: 52:02:e1:da:cf:6e:6a:0e:27:df:e3:f9:42:22:bc: 73:83:ce:0f:82:bf:36:02:77:79:1c:a3:27:18:9d: 6f:a4:fe:ed:a1:ca:76:c2:7a:31:7c:93:2d:af:41: 11:ca:91:05:60:6a:13:ca:ad:d2:22:67:a7:6a:4a: e9:04:8e:0f:d4:ec:c4:16:7e:f7:98:23:fe:72:c9: e2:8a:dd:33:fb:1f:9f:69:bd:6d:8a:6f:c0:c9:15: 5e:cb:72:3c:09:9c:db:2b:32:34:6a:02:e3:84:19: a9:2c:45:74:e7:e9:eb:45:c4:5a:fa:f2:48:7c:6a: d3:59:40:ef:d4:f1:83:a1:29:69:c4:5d:38:51:29: b4:ce:f8:70:c6:f8:3f:21:d5:30:7f:5a:c0:80:16: 86:3a:3a:a2:60:55:ae:6a:65:cd:9b:85:98:93:2a: 71:54:13:81:fc:51:9b:11:f9:1f:60:45:5a:8f:96: a0:97:b0:f2:ce:0f:41:1b:84:28:3f:1a:a0:c2:2a: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DF:A3:78:50:BF:1A:77:A5:7A:A8:EC:BB:26:87:CF:EA:13:F3:92 X509v3 Authority Key Identifier: keyid:0A:85:D3:79:72:6C:8F:C0:96:D2:7E:88:FD:A1:17:B3:B2:65:4E:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoXTeXJsj8CW0n6I_aEXs7JlTlk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d560-253b-4fe1-9c9d-5e92f4755904/1/CoXTeXJsj8CW0n6I_aEXs7JlTlk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3d:4e:bf:bf:d9:2f:ec:01:d2:c8:58:8a:05:cb:6e:28:b1: 2d:35:b4:e0:1c:76:76:63:9a:b3:3b:bb:89:65:9a:e2:25:98: 80:91:59:2e:a5:1b:ad:ee:9d:33:8d:5a:d0:aa:41:d7:8f:fc: 8b:b0:f7:2b:e9:e9:81:62:21:06:c1:2e:28:31:f3:2d:9b:e8: b0:aa:d3:ef:f3:90:51:10:dd:74:d9:58:1f:9e:a5:0d:91:f3: 33:bf:ce:a0:d7:21:1e:86:5c:7f:a1:dd:4f:fa:57:1a:83:4c: 3e:d6:0e:74:15:c8:ec:d8:02:a1:fd:9c:6d:57:4e:40:30:71: b8:61:e5:cb:d0:6d:29:73:7f:ce:5a:28:cc:48:fa:1c:b8:e8: 30:c9:e4:c6:30:71:96:f6:79:55:3f:4a:55:51:9f:52:9b:5c: 73:a4:43:d5:0f:76:6c:69:20:3b:d8:f5:7c:e1:9e:c9:65:11: 24:ff:ed:96:a5:03:c7:4d:47:cd:f3:71:42:94:d6:82:b1:40: 26:a5:7a:46:e5:9f:e6:25:e7:b6:e1:4b:0e:0f:af:cf:9c:12: 0f:1c:6b:1b:b6:94:45:3c:43:9f:cf:c4:70:b2:9e:3b:09:71: f0:91:fc:11:14:d7:34:c6:5d:6f:ba:23:f3:e5:57:e1:31:ae: ae:73:ba:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUiGQWdcY0XxagzSCAS/jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhODVkMzc5NzI2YzhmYzA5NmQyN2U4OGZkYTExN2IzYjI2 NTRlNTkwHhcNMjUxMjA2MTEwMDM3WhcNMjUxMjA3MTEwMDM3WjAzMTEwLwYDVQQD Eyg2M2RmYTM3ODUwYmYxYTc3YTU3YWE4ZWNiYjI2ODdjZmVhMTNmMzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1qy9I5kSFTZy8L1/tzLC+Xo1H1Z FeNzB7uws3Lo2XIa5HPxhLx43btBi4cokhObK4SGj4TQhksJt6VSAuHaz25qDiff 4/lCIrxzg84Pgr82And5HKMnGJ1vpP7tocp2wnoxfJMtr0ERypEFYGoTyq3SImen akrpBI4P1OzEFn73mCP+csniit0z+x+fab1tim/AyRVey3I8CZzbKzI0agLjhBmp LEV05+nrRcRa+vJIfGrTWUDv1PGDoSlpxF04USm0zvhwxvg/IdUwf1rAgBaGOjqi YFWuamXNm4WYkypxVBOB/FGbEfkfYEVaj5agl7Dyzg9BG4QoPxqgwiqYjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPfo3hQvxp3pXqo7Lsmh8/qE/OSMB8GA1UdIwQY MBaAFAqF03lybI/AltJ+iP2hF7OyZU5ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ29YVGVYSnNqOENXMG42SV9hRVhzN0psVGxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yM2Q1NjAtMjUzYi00ZmUxLTljOWQt NWU5MmY0NzU1OTA0LzEvQ29YVGVYSnNqOENXMG42SV9hRVhzN0psVGxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8yM2Q1NjAtMjUzYi00ZmUxLTljOWQtNWU5MmY0NzU1OTA0 LzEvQ29YVGVYSnNqOENXMG42SV9hRVhzN0psVGxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGj1Ov7/Z L+wB0shYigXLbiixLTW04Bx2dmOaszu7iWWa4iWYgJFZLqUbre6dM41a0KpB14/8 i7D3K+npgWIhBsEuKDHzLZvosKrT7/OQURDddNlYH56lDZHzM7/OoNchHoZcf6Hd T/pXGoNMPtYOdBXI7NgCof2cbVdOQDBxuGHly9BtKXN/zloozEj6HLjoMMnkxjBx lvZ5VT9KVVGfUptcc6RD1Q92bGkgO9j1fOGeyWURJP/tlqUDx01HzfNxQpTWgrFA JqV6RuWf5iXntuFLDg+vz5wSDxxrG7aURTxDn8/EcLKeOwlx8JH8ERTXNMZdb7oj 8+VX4TGurnO6TA== -----END CERTIFICATE-----Generated at Sat Dec 6 15:57:45 2025 by rpki-client