This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft File: sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft (raw, json) Hash identifier: i5CQUtOuHwQ+Pej7ehFdPy3LXIqwQwclP3i60nXVezQ= Subject key identifier: 63:8E:8A:5D:8A:40:D6:EA:37:10:CD:71:3D:C3:AC:98:D2:8A:C2:CF Authority key identifier: B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E Certificate issuer: /CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e Certificate serial: 019B2B53B2AA8DA1024C6DBB8060623AA385 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft Manifest number: 177B Signing time: Wed 17 Dec 2025 08:01:04 +0000 Manifest this update: Wed 17 Dec 2025 08:01:04 +0000 Manifest next update: Thu 18 Dec 2025 08:01:04 +0000 Files and hashes: 1: sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl (hash: P17U7Uv8ewNz0iTbLdMPRb0aojsjAomTBmLSgY0Db9Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:53:b2:aa:8d:a1:02:4c:6d:bb:80:60:62:3a:a3:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e Validity Not Before: Dec 17 08:01:04 2025 GMT Not After : Dec 18 08:01:04 2025 GMT Subject: CN=638e8a5d8a40d6ea3710cd713dc3ac98d28ac2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:68:20:40:6e:cd:87:b8:f2:5c:ab:c0:c0:92: 9b:12:c9:7e:32:ce:85:53:5a:48:6f:94:66:83:b5: e0:b0:e5:81:08:4a:dd:02:bf:84:fc:ed:a9:ab:82: cd:75:68:9c:ea:90:44:c5:16:23:81:47:44:61:2f: e6:68:db:b2:0c:13:87:a1:7a:3f:c4:5e:d5:d8:da: 54:29:ca:16:91:fc:32:ca:68:44:bb:bd:e3:8b:00: 38:c9:d1:74:38:79:2f:d5:24:ad:90:45:07:ac:23: 1f:02:fa:a0:aa:bc:9e:f6:32:54:58:5a:ca:ca:a0: 04:3d:ad:be:c0:48:95:de:de:66:5a:01:c2:0e:35: b2:8b:ba:a7:1c:8f:72:d8:f4:ef:04:ed:14:8e:7c: 94:0b:2d:36:e2:18:e4:aa:12:da:c9:38:e1:38:19: d9:25:b6:f1:f0:93:77:62:ca:1d:4f:86:6e:ea:81: c0:23:0a:b8:8f:d9:d3:0b:cb:d1:de:f5:2a:07:f9: 7f:48:e9:af:78:7f:58:e8:e8:8f:fb:5d:6d:06:32: a2:70:08:aa:48:7d:e8:62:66:bc:69:31:9d:a9:5f: 58:59:27:a6:93:92:8b:f1:ed:c5:4c:82:5b:b4:27: 66:c9:c5:53:44:b5:bf:f3:2b:47:e3:d4:79:01:32: 49:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:8E:8A:5D:8A:40:D6:EA:37:10:CD:71:3D:C3:AC:98:D2:8A:C2:CF X509v3 Authority Key Identifier: keyid:B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:ce:be:34:7a:72:e0:0e:c2:a1:69:b0:4e:4b:44:ce:ce:69: 7a:88:7b:89:4e:ae:09:d4:cc:b3:4c:51:bb:d0:59:b2:19:a1: a8:0b:99:31:ff:7d:de:f0:62:b0:b1:dc:6d:f6:8e:a4:17:68: ab:a6:1e:27:d1:58:cc:36:77:c4:19:94:05:15:59:79:c4:05: 22:bb:72:da:21:72:ed:ab:38:a3:a0:7b:b1:60:79:e8:e4:90: f4:58:41:d7:97:3a:8b:96:c9:6e:db:2f:51:2a:ef:6d:99:f6: 6f:87:a0:7b:f5:0c:eb:d3:a5:cc:2e:a9:92:63:2f:4d:50:bb: 19:c8:80:a9:b4:a4:02:a1:df:1c:f9:de:3d:39:aa:a9:8e:e5: c1:ef:a2:dd:12:b3:c2:1e:51:a8:de:f6:69:06:bd:34:39:a4: 3f:66:d5:b6:1e:be:34:2e:4f:5c:94:fe:4a:7c:ab:7c:ab:78: be:ef:94:9d:e6:d6:3f:97:f2:c9:d6:26:51:ef:03:2d:f1:2b: 8d:be:33:95:42:df:4c:56:76:85:ab:68:90:c1:5a:68:1a:e4: f6:2f:68:f6:a7:3e:09:a7:38:13:11:ce:c6:69:b9:f7:6a:2e: 16:3e:6e:56:69:20:54:a7:c9:61:ae:01:4a:f0:b8:2e:3e:fb: 1b:d5:12:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrU7KqjaECTG27gGBiOqOFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwN2ZkZjQzN2M2ZjViYzczYzdkY2Q1NWNlNThjZDkyZTQ5 ZDYwMmUwHhcNMjUxMjE3MDgwMTA0WhcNMjUxMjE4MDgwMTA0WjAzMTEwLwYDVQQD Eyg2MzhlOGE1ZDhhNDBkNmVhMzcxMGNkNzEzZGMzYWM5OGQyOGFjMmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02ggQG7Nh7jyXKvAwJKbEsl+Ms6F U1pIb5Rmg7XgsOWBCErdAr+E/O2pq4LNdWic6pBExRYjgUdEYS/maNuyDBOHoXo/ xF7V2NpUKcoWkfwyymhEu73jiwA4ydF0OHkv1SStkEUHrCMfAvqgqrye9jJUWFrK yqAEPa2+wEiV3t5mWgHCDjWyi7qnHI9y2PTvBO0UjnyUCy024hjkqhLayTjhOBnZ Jbbx8JN3YsodT4Zu6oHAIwq4j9nTC8vR3vUqB/l/SOmveH9Y6OiP+11tBjKicAiq SH3oYma8aTGdqV9YWSemk5KL8e3FTIJbtCdmycVTRLW/8ytH49R5ATJJrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGOOil2KQNbqNxDNcT3DrJjSisLPMB8GA1UdIwQY MBaAFLB/30N8b1vHPH3NVc5YzZLknWAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0hfZlEzeHZXOGM4ZmMxVnpsak5rdVNkWUM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9iYjBhNDItNmExOS00NTc3LTk5ZDIt YTc4Yjk3ZWVhNWMxLzEvc0hfZlEzeHZXOGM4ZmMxVnpsak5rdVNkWUM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9iYjBhNDItNmExOS00NTc3LTk5ZDItYTc4Yjk3ZWVhNWMx LzEvc0hfZlEzeHZXOGM4ZmMxVnpsak5rdVNkWUM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe86+NHpy 4A7CoWmwTktEzs5peoh7iU6uCdTMs0xRu9BZshmhqAuZMf993vBisLHcbfaOpBdo q6YeJ9FYzDZ3xBmUBRVZecQFIrty2iFy7as4o6B7sWB56OSQ9FhB15c6i5bJbtsv USrvbZn2b4ege/UM69OlzC6pkmMvTVC7GciAqbSkAqHfHPnePTmqqY7lwe+i3RKz wh5RqN72aQa9NDmkP2bVth6+NC5PXJT+SnyrfKt4vu+UnebWP5fyydYmUe8DLfEr jb4zlULfTFZ2hatokMFaaBrk9i9o9qc+Cac4ExHOxmm592ouFj5uVmkgVKfJYa4B SvC4Lj77G9USIA== -----END CERTIFICATE-----Generated at Wed Dec 17 18:34:00 2025 by rpki-client