This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft File: mXFUBuche_wTgSpHBMYq4JnnyP8.mft (raw, json) Hash identifier: ZJ54/Q4viMohbhXU0DGJLSaEkALK3DhV+DgB+qjbNUc= Subject key identifier: 56:DB:64:4A:65:FD:F8:BB:96:AB:C5:52:1F:6E:19:79:FB:1B:E1:12 Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF Certificate issuer: /CN=99715406e7217bfc13812a4704c62ae099e7c8ff Certificate serial: 019AF276E0307BB941CE65B4E6FC5185C979 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft Manifest number: 047F Signing time: Sat 06 Dec 2025 07:01:08 +0000 Manifest this update: Sat 06 Dec 2025 07:01:08 +0000 Manifest next update: Sun 07 Dec 2025 07:01:08 +0000 Files and hashes: 1: mXFUBuche_wTgSpHBMYq4JnnyP8.crl (hash: zBSAbe+8Y7QRfATx1UPVe0IroB769yCAhfLM+vtXgS4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:e0:30:7b:b9:41:ce:65:b4:e6:fc:51:85:c9:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff Validity Not Before: Dec 6 07:01:08 2025 GMT Not After : Dec 7 07:01:08 2025 GMT Subject: CN=56db644a65fdf8bb96abc5521f6e1979fb1be112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2b:fd:60:fc:9c:d5:0a:04:9c:5d:ae:47:b9: e5:3e:e5:f0:e4:0f:56:66:e5:47:08:51:67:64:70: 8a:0a:66:33:90:03:b8:24:bc:90:6f:f6:d9:5d:a4: 68:7d:90:64:2a:e5:fb:ee:41:69:7d:13:e2:4d:da: 52:7c:93:a5:37:24:c2:dd:25:15:72:28:73:f4:a1: 07:c4:d5:2a:25:68:48:e6:35:1f:df:8b:f2:ac:79: 47:de:82:d4:f7:d0:d9:bf:d5:c2:cc:49:a0:96:32: 81:96:ea:4e:48:ba:5f:a7:35:0d:44:f5:1f:98:d2: df:82:02:32:2c:0c:1a:f9:03:18:35:9e:9e:48:55: 5d:d1:8c:2e:9c:8f:4e:0d:04:6e:39:a5:e3:86:56: 03:ac:46:18:9f:32:35:d7:75:d4:69:56:ce:4d:5f: cc:de:db:be:11:ad:d0:01:82:1c:e8:84:6e:d6:57: 48:71:f8:76:c8:49:48:7b:5e:89:3c:3f:68:45:33: 16:7f:8f:93:c6:e3:63:58:86:61:ec:f7:1a:d1:14: 44:a4:b4:0b:4a:b4:41:aa:1c:6c:41:18:95:1a:3e: cd:74:cf:52:c7:ed:e9:da:3e:6b:2c:b2:8e:29:77: 1e:38:6d:21:a8:ed:ce:5f:10:e3:15:f4:ce:33:98: e2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DB:64:4A:65:FD:F8:BB:96:AB:C5:52:1F:6E:19:79:FB:1B:E1:12 X509v3 Authority Key Identifier: keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:73:42:fc:c3:dc:ab:6b:5a:8a:48:6d:fa:57:25:bf:63:27: 9c:e6:13:8b:6d:cf:5f:80:12:24:2f:2e:c1:d4:07:c6:89:ef: 81:f3:ff:e2:da:80:e3:cc:d8:33:ea:16:32:bd:7c:be:e1:89: d9:c1:e3:b3:0a:d1:c1:d9:6a:d3:1c:e4:e2:58:a5:d0:34:69: 9c:f3:c9:db:65:18:dd:2f:3d:cd:7b:73:20:c2:93:ba:d2:84: 5a:a4:81:86:ab:dd:fb:7a:36:5a:f8:5e:28:8d:3b:c6:b2:9c: cb:b6:e4:14:e4:8e:61:ce:63:45:98:94:b7:58:29:3d:68:ed: c7:6b:84:32:fd:32:5b:3b:e6:05:73:4e:e7:0b:d5:00:15:e1: 16:59:0e:bf:4b:1c:a1:06:e0:e7:36:51:d6:d9:56:6f:58:b8: ec:e1:5a:2b:84:2d:17:6f:2a:b4:35:17:8a:0d:f1:e3:ef:30: fe:b3:4f:b6:f2:ea:3f:ab:b7:7c:17:9b:46:90:1a:28:45:30: 7b:24:9c:0c:ee:81:1a:54:ef:2c:cb:36:8f:af:46:dc:1b:b0: 9d:89:47:2e:df:92:41:1c:58:40:8b:26:c8:89:9f:98:1b:55: 1b:01:6d:0c:01:4f:9d:33:51:b9:0d:22:0f:ee:38:f9:21:bc: f3:7c:cd:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryduAwe7lBzmW05vxRhcl5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5NzE1NDA2ZTcyMTdiZmMxMzgxMmE0NzA0YzYyYWUwOTll N2M4ZmYwHhcNMjUxMjA2MDcwMTA4WhcNMjUxMjA3MDcwMTA4WjAzMTEwLwYDVQQD Eyg1NmRiNjQ0YTY1ZmRmOGJiOTZhYmM1NTIxZjZlMTk3OWZiMWJlMTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCv9YPyc1QoEnF2uR7nlPuXw5A9W ZuVHCFFnZHCKCmYzkAO4JLyQb/bZXaRofZBkKuX77kFpfRPiTdpSfJOlNyTC3SUV cihz9KEHxNUqJWhI5jUf34vyrHlH3oLU99DZv9XCzEmgljKBlupOSLpfpzUNRPUf mNLfggIyLAwa+QMYNZ6eSFVd0YwunI9ODQRuOaXjhlYDrEYYnzI113XUaVbOTV/M 3tu+Ea3QAYIc6IRu1ldIcfh2yElIe16JPD9oRTMWf4+TxuNjWIZh7Pca0RREpLQL SrRBqhxsQRiVGj7NdM9Sx+3p2j5rLLKOKXceOG0hqO3OXxDjFfTOM5jimQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFbbZEpl/fi7lqvFUh9uGXn7G+ESMB8GA1UdIwQY MBaAFJlxVAbnIXv8E4EqRwTGKuCZ58j/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVhGVUJ1Y2hlX3dUZ1NwSEJNWXE0Sm5ueVA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS80ZTllMzctNmU2Ni00MWIxLWFhOTkt MTUxNmI2ZDgyZTJkLzEvbVhGVUJ1Y2hlX3dUZ1NwSEJNWXE0Sm5ueVA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS80ZTllMzctNmU2Ni00MWIxLWFhOTktMTUxNmI2ZDgyZTJk LzEvbVhGVUJ1Y2hlX3dUZ1NwSEJNWXE0Sm5ueVA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAinNC/MPc q2taikht+lclv2MnnOYTi23PX4ASJC8uwdQHxonvgfP/4tqA48zYM+oWMr18vuGJ 2cHjswrRwdlq0xzk4lil0DRpnPPJ22UY3S89zXtzIMKTutKEWqSBhqvd+3o2Wvhe KI07xrKcy7bkFOSOYc5jRZiUt1gpPWjtx2uEMv0yWzvmBXNO5wvVABXhFlkOv0sc oQbg5zZR1tlWb1i47OFaK4QtF28qtDUXig3x4+8w/rNPtvLqP6u3fBebRpAaKEUw eyScDO6BGlTvLMs2j69G3BuwnYlHLt+SQRxYQIsmyImfmBtVGwFtDAFPnTNRuQ0i D+44+SG883zNFA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:26:36 2025 by rpki-client