This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft File: urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft (raw, json) Hash identifier: QWsfcuJD/Ykl7chJI3v1iTVf90y026c+2s2Va7NsD1c= Subject key identifier: E6:CB:B3:AD:77:D7:8D:3C:93:E3:76:F7:74:55:5F:5D:13:82:2F:74 Authority key identifier: BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B Certificate issuer: /CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b Certificate serial: 019AF31B3AA0589371B71E974F7FBA6E0327 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft Manifest number: 0C7F Signing time: Sat 06 Dec 2025 10:00:39 +0000 Manifest this update: Sat 06 Dec 2025 10:00:39 +0000 Manifest next update: Sun 07 Dec 2025 10:00:39 +0000 Files and hashes: 1: urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl (hash: ofSlHpx8gjsr9XQ6pvcDuCNNegz4q9XQ48MY/hNEGx8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:3a:a0:58:93:71:b7:1e:97:4f:7f:ba:6e:03:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b Validity Not Before: Dec 6 10:00:39 2025 GMT Not After : Dec 7 10:00:39 2025 GMT Subject: CN=e6cbb3ad77d78d3c93e376f774555f5d13822f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c0:fb:1a:99:49:83:07:c0:90:c9:1e:07:bd: 3d:98:d4:22:fa:7f:af:25:c3:10:e4:37:19:a1:39: 05:d0:38:27:f4:f2:ee:6d:14:b0:79:23:94:6f:0d: 3c:88:34:57:7f:db:95:61:1b:d4:ee:e9:6a:09:39: 74:90:4a:59:fd:76:5e:ba:13:ef:98:4c:52:8f:56: 92:3b:d2:70:88:6a:69:56:39:7e:44:07:96:f1:d2: b9:a7:58:22:18:84:31:a5:ad:70:f4:1e:af:66:0d: 7b:2d:d0:9e:2f:89:3c:a2:ee:18:82:c8:ac:11:29: e9:7d:0b:03:d0:65:1c:4b:05:df:f5:bb:eb:15:76: 71:6d:bf:e0:57:7e:9c:50:99:e1:f0:b5:01:d0:ed: 11:a5:3f:ff:44:cf:7d:c1:17:1f:55:d0:ab:31:eb: f6:f1:d2:03:cf:62:0d:37:6c:ea:33:17:fe:fa:06: 39:e4:ba:63:f6:93:91:60:3e:b5:a2:c2:b8:db:68: 98:88:23:42:d0:87:e7:64:94:c7:f9:e1:ec:26:b3: 76:33:07:a3:ec:ea:82:fd:cf:71:d1:bf:e8:7f:b8: 9b:c0:f9:a2:35:a1:ee:15:e8:7b:c5:30:59:17:f8: 58:5a:7d:3d:7a:50:e9:af:8c:e7:ce:88:ee:fe:1b: 5a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CB:B3:AD:77:D7:8D:3C:93:E3:76:F7:74:55:5F:5D:13:82:2F:74 X509v3 Authority Key Identifier: keyid:BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:77:57:a0:f6:1f:95:4b:65:8f:fb:ec:64:de:69:7d:07:68: 27:04:83:d7:13:40:ce:b4:06:06:85:c2:cf:a8:28:db:08:6d: 04:9b:ce:0f:44:5a:f2:9c:2f:39:dc:62:77:24:c8:a2:22:57: e7:ad:b9:a1:67:de:56:28:90:9d:0d:f5:bf:29:06:fc:2c:a8: 8c:41:03:fe:61:70:28:b3:57:00:97:c2:12:4e:b1:9b:83:6c: 4e:0b:5d:50:24:d7:36:9d:28:0c:3d:ac:8b:d7:eb:ef:ca:36: 44:65:f6:7c:7d:ca:34:2f:4a:7e:21:3b:8d:c5:5b:88:9b:e0: 9b:31:59:e4:c9:77:85:75:39:37:c0:92:0c:df:83:4e:f4:c1: 5e:af:88:d2:22:90:3b:67:5a:73:38:ad:6a:59:8d:61:c9:50: 05:8f:a2:e3:6d:00:f6:17:44:d0:8e:98:49:1c:2e:76:64:3d: df:17:8a:dc:8d:c3:00:d4:63:8a:73:64:30:be:d9:f8:af:a1: 86:df:6c:3a:92:01:7e:66:7e:82:49:fd:f9:27:c2:43:8f:1f: 85:3d:eb:c3:ad:06:87:3f:4d:8d:54:59:96:1f:ac:ff:02:94: 4a:5f:16:96:34:5b:64:c8:60:d3:89:cb:88:8a:54:91:db:c7: 61:b8:ac:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGzqgWJNxtx6XT3+6bgMnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYjliYmMyNGU5YWMzZDllYzdlMTBiZjk1NzQ3ZGFiNWM0 NWRkMmIwHhcNMjUxMjA2MTAwMDM5WhcNMjUxMjA3MTAwMDM5WjAzMTEwLwYDVQQD EyhlNmNiYjNhZDc3ZDc4ZDNjOTNlMzc2Zjc3NDU1NWY1ZDEzODIyZjc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsD7GplJgwfAkMkeB709mNQi+n+v JcMQ5DcZoTkF0Dgn9PLubRSweSOUbw08iDRXf9uVYRvU7ulqCTl0kEpZ/XZeuhPv mExSj1aSO9JwiGppVjl+RAeW8dK5p1giGIQxpa1w9B6vZg17LdCeL4k8ou4Ygsis ESnpfQsD0GUcSwXf9bvrFXZxbb/gV36cUJnh8LUB0O0RpT//RM99wRcfVdCrMev2 8dIDz2INN2zqMxf++gY55Lpj9pORYD61osK422iYiCNC0IfnZJTH+eHsJrN2Mwej 7OqC/c9x0b/of7ibwPmiNaHuFeh7xTBZF/hYWn09elDpr4znzoju/htaNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFObLs6131408k+N293RVX10Tgi90MB8GA1UdIwQY MBaAFLq5u8JOmsPZ7H4Qv5V0fatcRd0rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXJtN3drNmF3OW5zZmhDX2xYUjlxMXhGM1NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8yODI5ZmEtYzBhMi00YTc4LTkyNjIt MmViYzY0NDhmNjAyLzEvdXJtN3drNmF3OW5zZmhDX2xYUjlxMXhGM1NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8yODI5ZmEtYzBhMi00YTc4LTkyNjItMmViYzY0NDhmNjAy LzEvdXJtN3drNmF3OW5zZmhDX2xYUjlxMXhGM1NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAondXoPYf lUtlj/vsZN5pfQdoJwSD1xNAzrQGBoXCz6go2whtBJvOD0Ra8pwvOdxidyTIoiJX 5625oWfeViiQnQ31vykG/CyojEED/mFwKLNXAJfCEk6xm4NsTgtdUCTXNp0oDD2s i9fr78o2RGX2fH3KNC9KfiE7jcVbiJvgmzFZ5Ml3hXU5N8CSDN+DTvTBXq+I0iKQ O2daczitalmNYclQBY+i420A9hdE0I6YSRwudmQ93xeK3I3DANRjinNkML7Z+K+h ht9sOpIBfmZ+gkn9+SfCQ48fhT3rw60Ghz9NjVRZlh+s/wKUSl8WljRbZMhg04nL iIpUkdvHYbiscA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:51 2025 by rpki-client