This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft File: pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json) Hash identifier: sIyF6bLPMchGQo+0ppL/kfiJbXMbjPLWgcyVIr6NSEs= Subject key identifier: 9C:9C:18:93:99:A7:88:92:1F:27:B3:82:52:43:7C:CB:AB:E1:F1:BA Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92 Certificate issuer: /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92 Certificate serial: 019AF12E35305C78A0DF68E675751DB41CE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft Manifest number: 125E Signing time: Sat 06 Dec 2025 01:02:08 +0000 Manifest this update: Sat 06 Dec 2025 01:02:08 +0000 Manifest next update: Sun 07 Dec 2025 01:02:08 +0000 Files and hashes: 1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: vGes38vw2iDrRrinyiE/eS0qLbEYsaf/Q3bV8s2PEpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:35:30:5c:78:a0:df:68:e6:75:75:1d:b4:1c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92 Validity Not Before: Dec 6 01:02:08 2025 GMT Not After : Dec 7 01:02:08 2025 GMT Subject: CN=9c9c189399a788921f27b38252437ccbabe1f1ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:3f:81:17:83:68:0d:c6:21:ed:f7:61:af: 59:09:70:7a:3b:e5:73:f5:be:b4:07:ed:9f:23:c3: fd:5c:69:0f:7b:05:40:a0:48:65:31:dd:d4:8f:d9: 8f:e4:70:7e:ad:db:58:3a:ea:45:67:a9:24:32:5b: 1d:5f:4f:ad:41:00:f1:46:94:ee:5d:5e:8d:92:d2: c9:a7:5d:36:10:b3:cd:d1:59:10:a4:53:83:74:1c: 91:7c:1f:08:e4:0e:4a:8b:26:ec:dc:9e:aa:7c:7b: 33:ca:fe:85:94:31:4f:be:2d:7b:92:2a:ec:fb:70: ed:3f:b3:54:57:b2:3f:c0:0d:5f:98:49:83:2e:5a: 67:72:0e:f7:07:b6:ff:24:0c:af:10:4e:9d:44:40: 9e:49:01:9f:2d:2d:d3:28:67:1e:7f:a5:5e:29:8f: ae:d2:43:06:21:2f:69:6d:d7:5c:6d:be:da:bf:73: 76:b7:31:00:33:c9:f2:ab:79:dc:24:37:5a:7b:c0: 48:6d:be:0f:e8:f8:8f:33:29:f0:f9:29:90:fc:5e: 42:37:d1:62:68:9a:bb:60:86:e9:89:b0:82:3e:cb: 16:8c:11:3b:74:75:7d:23:03:b3:80:5f:32:a9:5e: 79:b7:ab:93:94:93:cf:bd:c9:20:5e:24:93:85:fc: a2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9C:18:93:99:A7:88:92:1F:27:B3:82:52:43:7C:CB:AB:E1:F1:BA X509v3 Authority Key Identifier: keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:72:d8:32:d8:a9:39:52:79:b9:ea:c5:47:59:63:2d:b8:69: 14:7c:c8:c8:d1:14:9a:c2:f7:63:0c:f5:d3:30:05:2f:7b:35: 13:ba:22:3a:da:43:e7:78:bd:78:0a:46:39:5d:ae:76:01:da: 13:98:be:5a:23:68:d2:af:aa:20:01:50:a4:f4:61:f3:d4:11: 0e:91:24:57:6d:63:a4:98:5e:26:4a:4b:75:84:0e:5d:85:f5: 8c:b5:73:2a:6e:59:14:2b:a5:0f:0c:57:f1:31:c6:ba:57:ec: 84:c7:0e:90:2b:60:aa:6f:30:0d:60:5a:5c:04:2c:a7:d6:fb: 1d:a9:01:ff:84:ad:ef:2f:91:2b:04:01:ba:18:06:b4:6e:17: cf:82:ff:54:f5:f4:a0:e3:8a:7c:26:98:19:0a:99:b5:20:d2: e4:3b:79:83:6c:b8:9b:4b:46:2c:b0:66:91:9a:46:0f:bf:cb: 04:3f:d3:70:4c:c6:fc:57:b8:1c:3e:1b:69:5e:fd:e4:b4:5a: 7f:0b:a9:d6:fc:8e:fb:74:7d:dd:ee:ec:8e:09:e3:2f:9a:5f: 70:aa:e6:d8:e7:6a:5f:95:1d:33:ec:90:8a:f6:85:c6:c8:cc: 51:4a:db:f8:41:3f:08:0a:31:76:57:12:a3:94:28:30:4c:88: 0d:2b:de:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLjUwXHig32jmdXUdtBzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OGVmZDEwOGQ0YzViMGY0ZjlhODhhZTUzYmI3ZmVjOWQ1 OTRiOTIwHhcNMjUxMjA2MDEwMjA4WhcNMjUxMjA3MDEwMjA4WjAzMTEwLwYDVQQD Eyg5YzljMTg5Mzk5YTc4ODkyMWYyN2IzODI1MjQzN2NjYmFiZTFmMWJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw50/gReDaA3GIe33Ya9ZCXB6O+Vz 9b60B+2fI8P9XGkPewVAoEhlMd3Uj9mP5HB+rdtYOupFZ6kkMlsdX0+tQQDxRpTu XV6NktLJp102ELPN0VkQpFODdByRfB8I5A5Kiybs3J6qfHszyv6FlDFPvi17kirs +3DtP7NUV7I/wA1fmEmDLlpncg73B7b/JAyvEE6dRECeSQGfLS3TKGcef6VeKY+u 0kMGIS9pbddcbb7av3N2tzEAM8nyq3ncJDdae8BIbb4P6PiPMynw+SmQ/F5CN9Fi aJq7YIbpibCCPssWjBE7dHV9IwOzgF8yqV55t6uTlJPPvckgXiSThfyi2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJycGJOZp4iSHyezglJDfMur4fG6MB8GA1UdIwQY MBaAFKWO/RCNTFsPT5qIrlO7f+ydWUuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUt MTVjYzVkYTA3ODI2LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUtMTVjYzVkYTA3ODI2 LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfXLYMtip OVJ5uerFR1ljLbhpFHzIyNEUmsL3Ywz10zAFL3s1E7oiOtpD53i9eApGOV2udgHa E5i+WiNo0q+qIAFQpPRh89QRDpEkV21jpJheJkpLdYQOXYX1jLVzKm5ZFCulDwxX 8THGulfshMcOkCtgqm8wDWBaXAQsp9b7HakB/4St7y+RKwQBuhgGtG4Xz4L/VPX0 oOOKfCaYGQqZtSDS5Dt5g2y4m0tGLLBmkZpGD7/LBD/TcEzG/Fe4HD4baV795LRa fwup1vyO+3R93e7sjgnjL5pfcKrm2OdqX5UdM+yQivaFxsjMUUrb+EE/CAoxdlcS o5QoMEyIDSveRg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:39 2025 by rpki-client