This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json) Hash identifier: UT8iN7Dvei9tVIlxhKDWiS9mgyK9uNZaCl4VcAgiYKk= Subject key identifier: B0:EF:76:66:D3:BE:D2:A4:D9:A9:20:AB:69:5F:BF:BC:4A:48:A5:99 Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13 Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13 Certificate serial: 019AF19B400E893A605300ED063107ABAC66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft Manifest number: 0ED1 Signing time: Sat 06 Dec 2025 03:01:14 +0000 Manifest this update: Sat 06 Dec 2025 03:01:14 +0000 Manifest next update: Sun 07 Dec 2025 03:01:14 +0000 Files and hashes: 1: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: wQpWzbVk+GRCwJFM1z/wltnHYZorHSHXUgcKum2mv7A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:40:0e:89:3a:60:53:00:ed:06:31:07:ab:ac:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13 Validity Not Before: Dec 6 03:01:14 2025 GMT Not After : Dec 7 03:01:14 2025 GMT Subject: CN=b0ef7666d3bed2a4d9a920ab695fbfbc4a48a599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:6a:61:91:34:f5:13:cb:76:17:f7:2f:3e:52: 44:31:03:a0:3b:45:7d:4c:cf:53:f3:6c:95:41:33: 2b:34:31:2e:90:29:1a:4b:bb:59:37:eb:71:6e:62: 26:91:a1:f1:6b:a2:98:d4:73:7b:f8:ff:ab:4d:00: 67:56:76:9d:88:bc:00:47:18:f3:0e:50:e4:11:3a: c8:32:00:ce:b2:d2:b6:fe:6a:8d:6d:9e:4d:07:70: 7c:53:7c:73:8d:74:41:1a:ed:07:20:83:23:97:c3: a2:b4:2d:d9:2b:95:36:df:93:82:9d:19:14:11:20: aa:a7:fd:28:5a:0a:a6:4d:54:09:06:57:16:3f:7f: e5:91:e8:a7:84:06:6b:1a:1c:e7:94:87:ff:3e:fc: 58:2a:d7:3a:1b:9a:7a:09:91:5d:46:ca:ca:03:c2: 8b:78:ec:c6:15:57:e9:c1:ac:9f:49:ad:e6:2e:04: f4:06:fb:47:26:e4:3a:8a:c9:28:19:67:5b:4a:fb: db:6a:14:ea:02:ef:d7:50:80:31:b4:ea:69:04:f9: b6:5e:51:ec:d8:fb:40:e4:69:94:9e:ec:b9:f9:ad: 91:38:54:bb:6b:9a:f5:42:9b:18:9b:40:c7:60:47: 10:45:09:41:0b:c1:7e:12:03:cc:aa:73:1a:bc:7e: 41:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:EF:76:66:D3:BE:D2:A4:D9:A9:20:AB:69:5F:BF:BC:4A:48:A5:99 X509v3 Authority Key Identifier: keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:e1:1b:3f:9d:c0:d4:d6:69:14:f7:30:aa:b5:08:1c:29:da: 44:81:56:42:95:c2:66:10:6a:36:8d:6e:6c:20:10:db:bf:03: 43:ef:62:38:29:f1:a2:c8:6e:ac:ea:a5:21:ca:c4:d5:fa:e8: 9c:c7:e8:b6:80:f7:2d:c0:ef:9e:19:c7:f2:b0:6d:66:15:f2: 9d:93:cf:38:ea:e4:f4:35:4e:ff:6b:4e:09:dd:c6:f9:7b:69: 0c:a9:19:52:f6:35:df:73:8d:02:61:b8:87:f7:8b:26:2e:4f: f5:d9:0e:90:12:36:6e:8e:c2:b0:fd:c1:a7:35:76:41:b8:8a: e3:4d:ef:5c:ef:49:f9:6d:81:70:bc:c8:0f:9f:42:8b:6b:0b: ad:3f:f4:86:c9:ab:dd:48:fd:18:6e:6e:67:ec:a2:5f:33:84: 88:df:8e:ff:01:e1:5d:48:e9:7f:82:0c:0f:c8:8a:48:79:a7: 2f:a4:93:56:49:7b:fa:2e:20:8b:d0:a7:97:76:0e:b9:29:6d: be:d1:3b:2a:0e:b0:d5:42:c4:41:12:ba:17:15:40:b8:36:3b: 7c:3e:b3:a6:42:e1:16:a4:fa:55:07:c8:65:bc:d5:75:07:a8: 80:cd:f0:bc:cb:91:ca:48:bc:ce:44:cc:90:1a:cc:22:73:1d: 9b:e9:20:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0AOiTpgUwDtBjEHq6xmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkMzg1YTYxNjM5OGU0MTZjNzBkY2IzMjI1NjZmOTNlM2Qy ZmJmMTMwHhcNMjUxMjA2MDMwMTE0WhcNMjUxMjA3MDMwMTE0WjAzMTEwLwYDVQQD EyhiMGVmNzY2NmQzYmVkMmE0ZDlhOTIwYWI2OTVmYmZiYzRhNDhhNTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9GphkTT1E8t2F/cvPlJEMQOgO0V9 TM9T82yVQTMrNDEukCkaS7tZN+txbmImkaHxa6KY1HN7+P+rTQBnVnadiLwARxjz DlDkETrIMgDOstK2/mqNbZ5NB3B8U3xzjXRBGu0HIIMjl8OitC3ZK5U235OCnRkU ESCqp/0oWgqmTVQJBlcWP3/lkeinhAZrGhznlIf/PvxYKtc6G5p6CZFdRsrKA8KL eOzGFVfpwayfSa3mLgT0BvtHJuQ6iskoGWdbSvvbahTqAu/XUIAxtOppBPm2XlHs 2PtA5GmUnuy5+a2ROFS7a5r1QpsYm0DHYEcQRQlBC8F+EgPMqnMavH5BVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDvdmbTvtKk2akgq2lfv7xKSKWZMB8GA1UdIwQY MBaAFP04WmFjmOQWxw3LMiVm+T49L78TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMt MzQzMDRmNWNkYTk4LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8yNTdmZDctYTlmNy00Mjg0LWFjZjMtMzQzMDRmNWNkYTk4 LzEvX1RoYVlXT1k1QmJIRGNzeUpXYjVQajB2dnhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ+EbP53A 1NZpFPcwqrUIHCnaRIFWQpXCZhBqNo1ubCAQ278DQ+9iOCnxoshurOqlIcrE1fro nMfotoD3LcDvnhnH8rBtZhXynZPPOOrk9DVO/2tOCd3G+XtpDKkZUvY133ONAmG4 h/eLJi5P9dkOkBI2bo7CsP3BpzV2QbiK403vXO9J+W2BcLzID59Ci2sLrT/0hsmr 3Uj9GG5uZ+yiXzOEiN+O/wHhXUjpf4IMD8iKSHmnL6STVkl7+i4gi9Cnl3YOuSlt vtE7Kg6w1ULEQRK6FxVAuDY7fD6zpkLhFqT6VQfIZbzVdQeogM3wvMuRyki8zkTM kBrMInMdm+kg2g== -----END CERTIFICATE-----Generated at Sat Dec 6 06:59:21 2025 by rpki-client