This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft File: mtVmfEEoFBE5zKfFBH_BclC_Y68.mft (raw, json) Hash identifier: qRFTkwP5cCSZI1oGef0XHHyN1ohWpX/sVyfs2xqV8bs= Subject key identifier: 62:43:91:F2:2E:F2:AE:BC:C0:9F:73:E7:0C:E8:48:04:28:34:7B:D8 Authority key identifier: 9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF Certificate issuer: /CN=9ad5667c4128141139cca7c5047fc17250bf63af Certificate serial: 019AF389587136A3B31BF07CC29730F81E6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 12:00:55 +0000 Manifest this update: Sat 06 Dec 2025 12:00:55 +0000 Manifest next update: Sun 07 Dec 2025 12:00:55 +0000 Files and hashes: 1: mtVmfEEoFBE5zKfFBH_BclC_Y68.crl (hash: 6Emee6nd2rzghhFoe1s2dgKUk+T4FXiGaW4udCi07WE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:58:71:36:a3:b3:1b:f0:7c:c2:97:30:f8:1e:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ad5667c4128141139cca7c5047fc17250bf63af Validity Not Before: Dec 6 12:00:55 2025 GMT Not After : Dec 7 12:00:55 2025 GMT Subject: CN=624391f22ef2aebcc09f73e70ce8480428347bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:df:d4:62:e1:b9:e8:3c:fd:b0:76:3f:86: af:9b:08:45:05:f2:07:c6:42:85:42:9c:0a:ed:57: fc:18:e4:4b:32:3d:29:24:5b:eb:8f:a7:d1:be:5f: 1c:3c:ce:d1:2f:68:a1:2e:b6:f9:d4:9d:70:f6:a0: 04:47:87:27:2e:69:d1:ae:f9:47:18:5d:15:b9:c6: 8e:97:6a:b8:cf:83:50:e7:ec:3a:31:70:2b:ad:b9: 08:7a:6c:e6:60:2c:8d:af:50:98:11:ec:70:1e:eb: de:b8:4f:51:f7:33:06:56:dd:33:2d:34:d3:ac:9d: 50:37:c6:cb:65:cd:bc:53:87:6a:19:cf:4b:99:ea: bd:80:44:6b:d5:23:d8:b4:24:92:bb:9d:ba:7f:ac: dd:4a:89:1b:29:f8:cf:d4:94:6a:2e:23:29:a7:7b: 8b:96:8d:67:45:50:f4:c2:fe:91:25:a1:0a:ab:c8: bb:5f:9a:28:c6:52:52:8c:05:46:60:32:01:04:5b: fa:36:ae:d1:78:4c:77:12:35:3e:85:70:8b:2c:a6: 94:70:cf:92:68:de:59:b7:7f:b9:6a:b7:45:d1:ad: 0d:22:9c:22:ce:91:ea:78:6b:bb:61:2e:3b:20:e9: 1c:6a:25:f5:23:f6:5d:1b:f2:02:a7:78:a6:73:62: 7f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:43:91:F2:2E:F2:AE:BC:C0:9F:73:E7:0C:E8:48:04:28:34:7B:D8 X509v3 Authority Key Identifier: keyid:9A:D5:66:7C:41:28:14:11:39:CC:A7:C5:04:7F:C1:72:50:BF:63:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mtVmfEEoFBE5zKfFBH_BclC_Y68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/579f0f-070e-443d-8ecd-6872355838a2/1/mtVmfEEoFBE5zKfFBH_BclC_Y68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:9b:3f:6e:f6:2b:92:71:f4:7a:bb:8d:dc:6c:97:a6:17:a7: 44:5f:d9:f4:e5:0c:e8:51:1d:de:18:38:92:bf:77:2f:f0:a5: c1:5c:82:13:b5:37:e4:7e:03:2b:2a:e4:2e:b3:6c:2c:04:b0: f6:3f:0a:8d:bc:e8:1f:4f:ee:e3:af:48:88:47:9d:dc:21:c6: dd:f7:7c:4e:8c:24:8c:27:25:3c:b3:4b:7d:5a:52:66:38:7f: 83:b7:9c:35:b0:91:42:1d:aa:80:5d:75:ff:54:7f:a1:52:b8: 51:6c:45:d7:e1:c9:c5:29:20:5e:67:99:a5:1d:8e:8a:d9:1a: df:84:fc:d7:35:48:67:78:31:02:be:19:a3:6b:8c:75:25:f1: 68:b6:b6:2a:55:fe:21:5f:d7:f9:30:e8:05:6d:6a:59:61:98: 70:7d:95:da:7e:c1:60:d4:72:a7:ea:84:a0:9e:63:c7:6f:b5: 22:92:b0:3a:40:2d:ec:50:a2:16:33:2b:41:5f:8c:62:2c:87: 49:ab:0b:82:47:3b:64:cf:86:50:f9:a6:b2:46:42:ca:c3:09: a5:2c:29:af:c8:ed:ae:06:32:7d:94:9f:3e:f3:0d:88:5a:9b: 7c:db:2f:69:97:ca:dd:f9:d0:e9:15:fb:e0:12:1b:82:cd:bd: 8f:9f:c8:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziVhxNqOzG/B8wpcw+B5tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZDU2NjdjNDEyODE0MTEzOWNjYTdjNTA0N2ZjMTcyNTBi ZjYzYWYwHhcNMjUxMjA2MTIwMDU1WhcNMjUxMjA3MTIwMDU1WjAzMTEwLwYDVQQD Eyg2MjQzOTFmMjJlZjJhZWJjYzA5ZjczZTcwY2U4NDgwNDI4MzQ3YmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwunf1GLhueg8/bB2P4avmwhFBfIH xkKFQpwK7Vf8GORLMj0pJFvrj6fRvl8cPM7RL2ihLrb51J1w9qAER4cnLmnRrvlH GF0VucaOl2q4z4NQ5+w6MXArrbkIemzmYCyNr1CYEexwHuveuE9R9zMGVt0zLTTT rJ1QN8bLZc28U4dqGc9Lmeq9gERr1SPYtCSSu526f6zdSokbKfjP1JRqLiMpp3uL lo1nRVD0wv6RJaEKq8i7X5ooxlJSjAVGYDIBBFv6Nq7ReEx3EjU+hXCLLKaUcM+S aN5Zt3+5ardF0a0NIpwizpHqeGu7YS47IOkcaiX1I/ZdG/ICp3imc2J/8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJDkfIu8q68wJ9z5wzoSAQoNHvYMB8GA1UdIwQY MBaAFJrVZnxBKBQROcynxQR/wXJQv2OvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXRWbWZFRW9GQkU1ektmRkJIX0JjbENfWTY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NzlmMGYtMDcwZS00NDNkLThlY2Qt Njg3MjM1NTgzOGEyLzEvbXRWbWZFRW9GQkU1ektmRkJIX0JjbENfWTY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS81NzlmMGYtMDcwZS00NDNkLThlY2QtNjg3MjM1NTgzOGEy LzEvbXRWbWZFRW9GQkU1ektmRkJIX0JjbENfWTY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM5s/bvYr knH0eruN3GyXphenRF/Z9OUM6FEd3hg4kr93L/ClwVyCE7U35H4DKyrkLrNsLASw 9j8KjbzoH0/u469IiEed3CHG3fd8TowkjCclPLNLfVpSZjh/g7ecNbCRQh2qgF11 /1R/oVK4UWxF1+HJxSkgXmeZpR2Oitka34T81zVIZ3gxAr4Zo2uMdSXxaLa2KlX+ IV/X+TDoBW1qWWGYcH2V2n7BYNRyp+qEoJ5jx2+1IpKwOkAt7FCiFjMrQV+MYiyH SasLgkc7ZM+GUPmmskZCysMJpSwpr8jtrgYyfZSfPvMNiFqbfNsvaZfK3fnQ6RX7 4BIbgs29j5/IGA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:16:41 2025 by rpki-client