This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft File: J2zuYEMhsPEryjZ7VMBzmqil8To.mft (raw, json) Hash identifier: T125VtU4lTNvXY9SIj3JrZir0JGjgW29g26GbSS2SAg= Subject key identifier: 51:47:76:03:AE:CE:62:4E:1E:FB:D7:99:44:43:F0:0D:E9:4C:CF:30 Authority key identifier: 27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A Certificate issuer: /CN=276cee604321b0f12bca367b54c0739aa8a5f13a Certificate serial: 019AF31C8A69F232426863CA753A0DDFBD03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft Manifest number: 10B4 Signing time: Sat 06 Dec 2025 10:02:05 +0000 Manifest this update: Sat 06 Dec 2025 10:02:05 +0000 Manifest next update: Sun 07 Dec 2025 10:02:05 +0000 Files and hashes: 1: J2zuYEMhsPEryjZ7VMBzmqil8To.crl (hash: RirowavW1SzLckEPXasf5PFqsDG5WbVnvs2xDHQXQkU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.crl rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:8a:69:f2:32:42:68:63:ca:75:3a:0d:df:bd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=276cee604321b0f12bca367b54c0739aa8a5f13a Validity Not Before: Dec 6 10:02:05 2025 GMT Not After : Dec 7 10:02:05 2025 GMT Subject: CN=51477603aece624e1efbd7994443f00de94ccf30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:52:b1:a3:5b:2b:58:3a:6a:5a:44:0b:14:5c: 60:42:3c:b4:0b:ef:3b:46:18:54:0a:92:e7:54:1b: 1d:2f:11:70:da:c1:22:7a:59:fb:17:01:d8:47:fb: b2:60:50:95:d6:97:c3:0f:a0:86:4d:fa:26:db:04: 92:28:53:32:bf:6b:8b:b4:5a:60:4a:76:92:15:f6: fa:67:3a:5e:4f:f6:ea:3c:46:86:ba:17:d7:8f:a1: d8:b0:98:0e:23:68:47:db:e7:ee:54:29:cf:d8:28: 59:6f:e7:6f:33:bf:d9:06:9f:6d:ef:8c:cc:85:11: 89:b2:57:fe:2a:ae:38:e2:e2:92:d2:d6:33:de:d4: e4:a4:c4:90:78:5c:7f:72:6b:bd:2f:f0:07:2f:c1: f6:d2:bd:67:f6:21:c4:32:dc:dc:9f:09:aa:ba:f0: 43:fc:9e:45:bc:5d:56:98:94:96:ac:99:7e:76:67: e1:4f:3c:cb:d6:99:29:77:69:09:05:03:95:a1:c8: 63:75:46:5c:7e:23:a6:00:1e:6a:69:c9:61:63:64: 40:20:44:9d:9e:8e:7f:6c:0b:94:c9:05:77:a3:a7: 85:05:57:ab:5b:15:2d:c3:0a:ee:43:c9:b1:51:5b: 01:10:7d:c1:97:17:26:4a:21:7e:14:95:d7:09:8c: 0c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:47:76:03:AE:CE:62:4E:1E:FB:D7:99:44:43:F0:0D:E9:4C:CF:30 X509v3 Authority Key Identifier: keyid:27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:bb:9e:bf:25:4d:49:9a:a8:c7:6f:a1:ec:18:6b:e4:28:9e: fa:3e:e3:5c:93:d2:e8:d1:22:e0:4d:2a:c1:b8:63:c0:90:99: f2:75:93:62:eb:25:79:f3:b0:bc:9f:37:4a:3b:85:bd:df:0d: 30:81:55:66:c5:de:51:47:c3:07:78:dc:3b:74:0f:19:d4:4a: 21:18:79:be:42:2b:6c:f3:ed:80:b8:fb:dd:3e:41:d1:f6:97: 70:23:be:95:d2:0a:4e:0e:d5:55:34:bc:aa:2f:fd:ca:05:bf: c9:c0:5c:39:c2:ac:43:ed:45:a8:57:63:b6:95:28:11:16:8d: 52:3d:b2:b0:39:a6:04:b4:cf:ce:2f:d8:58:d2:01:76:70:2e: 78:29:8b:99:97:80:ff:98:d2:55:07:36:95:3c:2b:64:af:84: d7:63:d1:0b:aa:34:91:f8:82:80:84:c7:f8:cb:7c:de:7c:eb: 0e:ff:66:b1:25:db:a1:f3:3f:6a:01:79:a2:9b:ce:61:82:64: 9a:f0:d4:e6:11:42:d6:b0:e9:02:6f:e8:e5:ad:89:f0:74:a8: 25:c4:dc:6f:da:4e:aa:19:1d:c3:00:3e:1d:cf:93:1a:03:ed: d9:d1:e8:13:70:53:2a:12:e2:6e:7d:93:09:e1:44:a8:5f:4a: 78:a1:e7:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHIpp8jJCaGPKdToN370DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3NmNlZTYwNDMyMWIwZjEyYmNhMzY3YjU0YzA3MzlhYThh NWYxM2EwHhcNMjUxMjA2MTAwMjA1WhcNMjUxMjA3MTAwMjA1WjAzMTEwLwYDVQQD Eyg1MTQ3NzYwM2FlY2U2MjRlMWVmYmQ3OTk0NDQzZjAwZGU5NGNjZjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFKxo1srWDpqWkQLFFxgQjy0C+87 RhhUCpLnVBsdLxFw2sEieln7FwHYR/uyYFCV1pfDD6CGTfom2wSSKFMyv2uLtFpg SnaSFfb6ZzpeT/bqPEaGuhfXj6HYsJgOI2hH2+fuVCnP2ChZb+dvM7/ZBp9t74zM hRGJslf+Kq444uKS0tYz3tTkpMSQeFx/cmu9L/AHL8H20r1n9iHEMtzcnwmquvBD /J5FvF1WmJSWrJl+dmfhTzzL1pkpd2kJBQOVochjdUZcfiOmAB5qaclhY2RAIESd no5/bAuUyQV3o6eFBVerWxUtwwruQ8mxUVsBEH3BlxcmSiF+FJXXCYwMvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFFHdgOuzmJOHvvXmURD8A3pTM8wMB8GA1UdIwQY MBaAFCds7mBDIbDxK8o2e1TAc5qopfE6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjJ6dVlFTWhzUEVyeWpaN1ZNQnptcWlsOFRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9hNTk5NTUtODZjZi00NjU1LWExZjgt MjU4OTU0YjRmZTVhLzEvSjJ6dVlFTWhzUEVyeWpaN1ZNQnptcWlsOFRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9hNTk5NTUtODZjZi00NjU1LWExZjgtMjU4OTU0YjRmZTVh LzEvSjJ6dVlFTWhzUEVyeWpaN1ZNQnptcWlsOFRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP7uevyVN SZqox2+h7Bhr5Cie+j7jXJPS6NEi4E0qwbhjwJCZ8nWTYuslefOwvJ83SjuFvd8N MIFVZsXeUUfDB3jcO3QPGdRKIRh5vkIrbPPtgLj73T5B0faXcCO+ldIKTg7VVTS8 qi/9ygW/ycBcOcKsQ+1FqFdjtpUoERaNUj2ysDmmBLTPzi/YWNIBdnAueCmLmZeA /5jSVQc2lTwrZK+E12PRC6o0kfiCgITH+Mt83nzrDv9msSXbofM/agF5opvOYYJk mvDU5hFC1rDpAm/o5a2J8HSoJcTcb9pOqhkdwwA+Hc+TGgPt2dHoE3BTKhLibn2T CeFEqF9KeKHnGA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:56:09 2025 by rpki-client