This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json) Hash identifier: LahCKq/ILDZr4BrSKpRsf2NjfjWru30Ocqd1tmi58QM= Subject key identifier: FB:47:59:23:EF:73:70:C2:58:A1:78:77:44:1D:99:9B:24:BC:1D:28 Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d Certificate serial: 019AF23FC1EEB54E10366BECBD73D68E7AE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft Manifest number: 09DB Signing time: Sat 06 Dec 2025 06:00:55 +0000 Manifest this update: Sat 06 Dec 2025 06:00:55 +0000 Manifest next update: Sun 07 Dec 2025 06:00:55 +0000 Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: r/bTH2LwDdUqD9Z2jUWnXNWZnMBYa1YhfkaDanyxg4U=) 2: eScdjGWs1U9IpMmrjPWOhIIwqvU.roa (hash: x3okkqhpjy6dpCXY46GTivoDmGIYftmyUmWz/IE8R4c=) 3: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=) 4: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:c1:ee:b5:4e:10:36:6b:ec:bd:73:d6:8e:7a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d Validity Not Before: Dec 6 06:00:55 2025 GMT Not After : Dec 7 06:00:55 2025 GMT Subject: CN=fb475923ef7370c258a17877441d999b24bc1d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:16:e1:15:10:24:db:69:a4:c8:3b:44:ac:3c: 7f:c5:0e:41:ef:3f:22:84:1d:9f:67:18:27:a9:61: 7c:d0:55:4e:09:e4:92:23:4a:9d:34:e8:91:cf:a5: 08:48:dd:85:d1:b1:63:30:c6:2d:71:0e:a6:3d:dd: dd:71:a3:b8:30:5f:ed:c9:7d:15:37:f7:af:72:f4: 51:db:cc:4c:f3:2c:25:68:1d:97:02:ed:45:c2:46: f3:d4:a2:21:9a:a1:99:52:af:06:d6:7e:39:bc:42: a7:d9:5d:2a:bf:09:61:5a:4f:47:46:40:12:ed:5e: cb:f4:ed:c2:5f:a0:cd:ef:f8:0c:81:b3:f0:54:e8: 16:7f:b8:e2:e8:72:18:f1:74:11:c9:7f:62:58:63: 6e:b8:2d:87:6a:57:9a:c6:00:e6:d2:a5:0b:bd:f0: 1d:ff:19:3a:c0:76:c5:1b:a5:e5:3f:d8:d4:44:43: b8:31:28:40:19:f3:f9:9d:f2:86:d6:8f:fc:bb:3b: b2:44:66:5b:8c:b4:79:6f:d9:e6:8f:42:de:6d:e0: c4:c6:cb:0f:f2:2d:3e:b0:a4:92:26:46:49:04:0f: 3f:39:36:a0:c6:9f:d8:1a:f8:a8:0c:b7:17:45:33: ea:da:fa:01:06:da:ab:f1:20:fc:cb:30:08:c7:c0: 0b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:47:59:23:EF:73:70:C2:58:A1:78:77:44:1D:99:9B:24:BC:1D:28 X509v3 Authority Key Identifier: keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:85:42:40:a8:08:32:9e:77:90:8d:5b:60:a9:38:1c:c1:c5: d2:66:d9:66:31:22:07:32:99:84:b0:f1:d1:6a:e5:e6:ac:5e: 56:7d:70:c2:91:2e:cb:2f:cd:01:30:95:eb:8b:85:54:90:17: f2:b5:6f:83:65:47:ad:c6:08:64:72:09:ee:5d:c5:28:d3:7e: 2c:d5:24:53:4a:98:5d:04:0a:d7:f2:bb:98:42:91:4d:18:52: d2:aa:ea:ec:8f:ce:d7:e9:c2:35:95:c1:d8:09:e0:7f:df:76: 96:a6:9b:31:16:b9:e9:76:18:2f:14:7e:c8:fd:c7:75:c9:4c: 05:07:72:0d:ca:64:d3:3e:ce:91:6d:45:12:4e:64:3c:ce:d3: bb:dd:2e:12:ca:00:f2:0f:99:eb:e0:33:05:c5:c6:7d:13:f3: d4:fc:96:b9:6c:1a:40:e2:51:c3:fb:9e:ce:2f:38:52:6c:17: 96:78:7d:4c:bf:08:4c:23:5b:0f:05:6d:e0:53:1a:02:ea:16: 0f:2e:fb:b6:23:9a:b9:06:df:0e:1f:f6:0f:f9:c7:12:14:66: bd:c2:43:c6:84:13:99:5d:76:dc:2b:ce:b7:45:bc:c2:1c:6c: 9f:5c:de:16:7e:b6:66:a0:8c:fb:ac:08:20:05:bd:19:f0:c4: 6b:7e:e4:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP8HutU4QNmvsvXPWjnrpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjY4Y2RlZDM5ZTNlYzU0Y2VlMjIzMzI1MmVmMzkzN2Jh OTgyOGQwHhcNMjUxMjA2MDYwMDU1WhcNMjUxMjA3MDYwMDU1WjAzMTEwLwYDVQQD EyhmYjQ3NTkyM2VmNzM3MGMyNThhMTc4Nzc0NDFkOTk5YjI0YmMxZDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBbhFRAk22mkyDtErDx/xQ5B7z8i hB2fZxgnqWF80FVOCeSSI0qdNOiRz6UISN2F0bFjMMYtcQ6mPd3dcaO4MF/tyX0V N/evcvRR28xM8ywlaB2XAu1Fwkbz1KIhmqGZUq8G1n45vEKn2V0qvwlhWk9HRkAS 7V7L9O3CX6DN7/gMgbPwVOgWf7ji6HIY8XQRyX9iWGNuuC2HaleaxgDm0qULvfAd /xk6wHbFG6XlP9jUREO4MShAGfP5nfKG1o/8uzuyRGZbjLR5b9nmj0LebeDExssP 8i0+sKSSJkZJBA8/OTagxp/YGvioDLcXRTPq2voBBtqr8SD8yzAIx8ALywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPtHWSPvc3DCWKF4d0QdmZskvB0oMB8GA1UdIwQY MBaAFHD2jN7Tnj7FTO4iMyUu85N7qYKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYt MjlkZjRlMjYxMWYxLzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9mMGNjNDEtYjNlNy00NmZmLWE5NzYtMjlkZjRlMjYxMWYx LzEvY1BhTTN0T2VQc1ZNN2lJekpTN3prM3VwZ28wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkoVCQKgI Mp53kI1bYKk4HMHF0mbZZjEiBzKZhLDx0Wrl5qxeVn1wwpEuyy/NATCV64uFVJAX 8rVvg2VHrcYIZHIJ7l3FKNN+LNUkU0qYXQQK1/K7mEKRTRhS0qrq7I/O1+nCNZXB 2Angf992lqabMRa56XYYLxR+yP3HdclMBQdyDcpk0z7OkW1FEk5kPM7Tu90uEsoA 8g+Z6+AzBcXGfRPz1PyWuWwaQOJRw/uezi84UmwXlnh9TL8ITCNbDwVt4FMaAuoW Dy77tiOauQbfDh/2D/nHEhRmvcJDxoQTmV123CvOt0W8whxsn1zeFn62ZqCM+6wI IAW9GfDEa37kww== -----END CERTIFICATE-----Generated at Sat Dec 6 09:44:00 2025 by rpki-client