This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft File: MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json) Hash identifier: 2bp+WJmnK3TedmgtTlOVEazw4opu9hLsIu2NnveI/Sc= Subject key identifier: F3:E6:6C:0E:6D:73:60:31:3C:1A:E7:4D:ED:44:4B:BA:1A:8C:7B:E7 Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31 Certificate issuer: /CN=30c3add7bd3472ba16804c490b66a1097659bd31 Certificate serial: 019AF209A0D565025C0A8864DAD21200ECC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft Manifest number: 0D14 Signing time: Sat 06 Dec 2025 05:01:48 +0000 Manifest this update: Sat 06 Dec 2025 05:01:48 +0000 Manifest next update: Sun 07 Dec 2025 05:01:48 +0000 Files and hashes: 1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: IQm6LOSTboJMY99ZPy/ptF25Hu47fE4qI5d/rXGete4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:a0:d5:65:02:5c:0a:88:64:da:d2:12:00:ec:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31 Validity Not Before: Dec 6 05:01:48 2025 GMT Not After : Dec 7 05:01:48 2025 GMT Subject: CN=f3e66c0e6d7360313c1ae74ded444bba1a8c7be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0f:a5:27:1e:bf:5f:92:95:e7:40:c7:18:ae: 52:ca:d0:9a:4f:80:2e:ac:9f:12:43:d1:89:3c:23: 97:1a:0c:ae:4f:e3:41:59:70:98:93:0f:ab:13:16: b8:ca:c9:b1:b7:75:71:1f:31:7c:13:60:56:f8:c2: 2b:9a:a9:40:c7:6d:c9:e8:2a:18:e9:f6:28:ee:2e: 5e:ab:84:20:e2:e0:25:99:47:eb:11:cc:83:8e:fb: 7f:bb:54:d5:de:46:19:e1:31:a6:07:51:7f:bf:b0: e5:c3:7e:e9:95:79:45:16:91:0b:5c:08:f2:98:4f: 81:8e:d9:13:fa:c4:44:9d:ca:07:1c:ea:72:45:46: ca:ff:64:7a:4c:7d:52:fd:4f:05:32:cd:ab:b3:ba: 49:ab:31:f2:13:de:f2:8f:21:d1:83:9f:14:1e:d6: b4:31:55:8f:27:00:a0:8f:a6:22:4a:8e:be:de:c1: 10:be:84:b9:65:c0:5c:3b:60:af:12:d5:4f:da:8b: df:2d:58:f2:ab:ea:3d:e2:d0:3e:69:ed:9d:0a:fe: 0b:cb:f7:f2:61:ae:e3:bf:b6:f2:d4:7a:9b:35:9d: ea:d6:6c:29:dc:e2:ce:11:d8:86:71:36:00:80:05: d1:d1:32:7e:ae:57:e5:86:67:74:c5:77:06:f4:29: e7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E6:6C:0E:6D:73:60:31:3C:1A:E7:4D:ED:44:4B:BA:1A:8C:7B:E7 X509v3 Authority Key Identifier: keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:3f:d9:80:1d:4d:16:b2:a4:21:2f:e2:50:09:4d:ed:66:25: 38:8e:80:22:9d:f5:43:91:6f:65:13:e7:6e:3b:5f:8a:88:c5: e6:2d:5a:6f:81:4a:d5:2e:21:ca:4b:6d:34:56:1c:0b:36:74: 01:88:dc:56:85:9e:88:47:72:4f:29:fe:f3:54:46:da:0a:f9: 0e:a3:ed:f8:b2:a4:dd:d3:02:8f:a5:42:94:81:18:b4:b3:c8: 69:da:32:1a:bf:cb:e3:3f:f6:e0:7c:b0:04:e9:01:03:1e:6e: 9e:10:47:0f:38:c7:de:48:69:70:5c:dd:ba:aa:db:80:09:89: 35:87:82:0b:44:65:15:52:a1:ef:25:28:f1:08:f1:7a:58:f6: 33:7a:61:ce:a8:e4:68:8d:1c:9e:ec:f3:f5:41:3a:7d:08:90: a9:dc:d9:c8:d8:1e:08:7d:6f:2e:b5:cb:12:47:68:47:0a:94: 6a:b3:b7:27:69:e7:9d:76:9f:9e:5d:ad:fd:f3:cc:db:9d:31: 6a:3a:53:00:68:90:ba:56:9b:66:e0:39:0f:77:f4:ff:27:a9: c7:fe:3f:71:af:49:3a:ab:2a:61:83:bd:e4:69:36:dd:cd:7b: 47:bb:2a:d9:2e:b0:d2:21:f3:5a:19:b8:2c:1b:32:2a:73:47: 3d:d3:04:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCaDVZQJcCohk2tISAOzFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzNhZGQ3YmQzNDcyYmExNjgwNGM0OTBiNjZhMTA5NzY1 OWJkMzEwHhcNMjUxMjA2MDUwMTQ4WhcNMjUxMjA3MDUwMTQ4WjAzMTEwLwYDVQQD EyhmM2U2NmMwZTZkNzM2MDMxM2MxYWU3NGRlZDQ0NGJiYTFhOGM3YmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjw+lJx6/X5KV50DHGK5SytCaT4Au rJ8SQ9GJPCOXGgyuT+NBWXCYkw+rExa4ysmxt3VxHzF8E2BW+MIrmqlAx23J6CoY 6fYo7i5eq4Qg4uAlmUfrEcyDjvt/u1TV3kYZ4TGmB1F/v7Dlw37plXlFFpELXAjy mE+BjtkT+sREncoHHOpyRUbK/2R6TH1S/U8FMs2rs7pJqzHyE97yjyHRg58UHta0 MVWPJwCgj6YiSo6+3sEQvoS5ZcBcO2CvEtVP2ovfLVjyq+o94tA+ae2dCv4Ly/fy Ya7jv7by1HqbNZ3q1mwp3OLOEdiGcTYAgAXR0TJ+rlflhmd0xXcG9CnnnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPmbA5tc2AxPBrnTe1ES7oajHvnMB8GA1UdIwQY MBaAFDDDrde9NHK6FoBMSQtmoQl2Wb0xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2Ut OTVjZDY5MjRhYjRlLzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2UtOTVjZDY5MjRhYjRl LzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmj/ZgB1N FrKkIS/iUAlN7WYlOI6AIp31Q5FvZRPnbjtfiojF5i1ab4FK1S4hykttNFYcCzZ0 AYjcVoWeiEdyTyn+81RG2gr5DqPt+LKk3dMCj6VClIEYtLPIadoyGr/L4z/24Hyw BOkBAx5unhBHDzjH3khpcFzduqrbgAmJNYeCC0RlFVKh7yUo8Qjxelj2M3phzqjk aI0cnuzz9UE6fQiQqdzZyNgeCH1vLrXLEkdoRwqUarO3J2nnnXafnl2t/fPM250x ajpTAGiQulabZuA5D3f0/yepx/4/ca9JOqsqYYO95Gk23c17R7sq2S6w0iHzWhm4 LBsyKnNHPdME0w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:53 2025 by rpki-client