This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json) Hash identifier: fFZcsOc3j99VJZ1HMeYTrE+E+DS70GTNf9ANFn2ncm4= Subject key identifier: 8E:F7:56:2D:C7:58:C8:ED:9C:CF:52:E5:06:31:AE:EC:F1:37:B7:5A Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d Certificate serial: 019AF208D820763630E857F55024519F9E61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft Manifest number: 79 Signing time: Sat 06 Dec 2025 05:00:57 +0000 Manifest this update: Sat 06 Dec 2025 05:00:57 +0000 Manifest next update: Sun 07 Dec 2025 05:00:57 +0000 Files and hashes: 1: 2EqRaIm0ahFzSQziRWxNhuiDeiY.roa (hash: 5jZKlaOwWZIRRP1zoyFgUhrGBnHTFy4tV4SJl+5yoHI=) 2: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: tR6+ZSusSqiK5CAAP6zuUPyIC5eh6F8Xj9qSlkd+Pfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:d8:20:76:36:30:e8:57:f5:50:24:51:9f:9e:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d Validity Not Before: Dec 6 05:00:57 2025 GMT Not After : Dec 7 05:00:57 2025 GMT Subject: CN=8ef7562dc758c8ed9ccf52e50631aeecf137b75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:1d:76:23:16:ac:14:62:73:0c:0e:6f:5d: 48:c1:98:1e:34:76:18:d7:cd:10:3a:50:0e:e2:9d: 65:39:77:7d:3f:9c:0a:8a:a9:85:06:53:96:f2:06: fb:98:47:42:af:c0:05:a3:bb:eb:b7:16:d2:80:92: 47:7a:2d:96:ec:81:8c:f9:07:a7:c7:0b:f0:ff:6d: 36:a1:8c:27:2c:b5:bc:c3:f4:1d:49:3a:3c:43:8f: 75:75:76:ac:83:86:7e:4d:1e:e9:c5:26:4f:ff:bf: bb:1f:92:ec:f4:8a:07:ec:a5:bf:a8:a8:99:0c:7e: 08:41:9f:cf:45:55:d0:9c:42:1b:4a:df:1c:d0:b2: a9:11:94:22:7c:59:e9:32:f3:b9:63:0d:54:65:88: 10:a5:04:ca:3e:d6:f8:6c:42:55:35:5f:30:a9:0a: 75:18:34:65:39:a2:dd:1e:41:f2:4a:34:b0:e6:10: 11:a9:76:f4:7f:5d:68:74:99:08:ef:83:01:c2:7c: e7:1a:60:15:80:22:94:cd:ce:85:ca:75:ee:9d:a0: 43:3c:bf:4f:87:ba:a3:6b:23:19:16:b9:a3:74:78: 24:d6:e2:f0:c5:79:b8:fa:73:39:d7:04:82:30:1a: 5f:e1:d8:24:9e:17:c1:97:2c:b5:14:20:c1:c4:31: 5a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F7:56:2D:C7:58:C8:ED:9C:CF:52:E5:06:31:AE:EC:F1:37:B7:5A X509v3 Authority Key Identifier: keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:f8:25:41:c9:a4:33:c6:f5:21:bd:3f:f3:66:13:b2:eb:04: 7d:24:17:99:40:d7:a7:c8:ae:90:50:71:78:73:cd:ff:32:07: 52:6c:ef:1f:f4:7b:be:3a:61:6f:42:31:4f:9d:f6:9f:6b:9f: 2b:61:df:a5:95:18:df:0f:c1:b8:7e:34:2b:a6:d6:fd:9e:e1: a2:5c:08:cc:9a:5f:88:65:49:bf:09:1a:4d:1b:8c:86:5c:5e: 6f:e5:50:5c:37:13:50:7b:93:92:a2:4a:af:b1:df:51:a0:8f: 53:ac:bb:2d:05:33:83:d2:8a:c9:39:27:e6:39:c1:60:fc:ce: db:12:50:fe:04:63:8e:12:dc:10:fc:08:87:93:1b:53:16:7c: 98:88:3b:9b:69:a3:d2:c9:7a:67:dc:98:90:e2:cb:32:dc:59: 62:2a:7e:31:7b:2a:65:b4:ec:b1:11:42:8f:67:e3:c2:2b:c3: 26:b4:ca:c6:f9:c2:74:1d:b7:33:89:6e:63:12:48:20:a9:75: f9:76:0a:11:2c:d3:dd:37:00:55:65:a7:22:35:bc:50:7a:a3: 35:56:64:5b:5f:80:d7:37:57:81:15:9c:ab:5e:64:22:c1:03: a9:46:81:51:0d:14:b5:33:ac:48:a5:a8:6c:10:63:60:14:32: be:33:52:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCNggdjYw6Ff1UCRRn55hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxZDhiMDk3NTczMzMxMjZkZmI1ODM0ODBlYThlMmQzZDM0 NmMwOGQwHhcNMjUxMjA2MDUwMDU3WhcNMjUxMjA3MDUwMDU3WjAzMTEwLwYDVQQD Eyg4ZWY3NTYyZGM3NThjOGVkOWNjZjUyZTUwNjMxYWVlY2YxMzdiNzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVAddiMWrBRicwwOb11IwZgeNHYY 180QOlAO4p1lOXd9P5wKiqmFBlOW8gb7mEdCr8AFo7vrtxbSgJJHei2W7IGM+Qen xwvw/202oYwnLLW8w/QdSTo8Q491dXasg4Z+TR7pxSZP/7+7H5Ls9IoH7KW/qKiZ DH4IQZ/PRVXQnEIbSt8c0LKpEZQifFnpMvO5Yw1UZYgQpQTKPtb4bEJVNV8wqQp1 GDRlOaLdHkHySjSw5hARqXb0f11odJkI74MBwnznGmAVgCKUzc6FynXunaBDPL9P h7qjayMZFrmjdHgk1uLwxXm4+nM51wSCMBpf4dgknhfBlyy1FCDBxDFaMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI73Vi3HWMjtnM9S5QYxruzxN7daMB8GA1UdIwQY MBaAFHHYsJdXMzEm37WDSA6o4tPTRsCNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEt YjAwMmYzNWJlNzM5LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy82Yjk2MjYtZmIxYS00NDVlLWI5NWEtYjAwMmYzNWJlNzM5 LzEvY2Rpd2wxY3pNU2JmdFlOSURxamkwOU5Hd0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlfglQcmk M8b1Ib0/82YTsusEfSQXmUDXp8iukFBxeHPN/zIHUmzvH/R7vjphb0IxT532n2uf K2HfpZUY3w/BuH40K6bW/Z7holwIzJpfiGVJvwkaTRuMhlxeb+VQXDcTUHuTkqJK r7HfUaCPU6y7LQUzg9KKyTkn5jnBYPzO2xJQ/gRjjhLcEPwIh5MbUxZ8mIg7m2mj 0sl6Z9yYkOLLMtxZYip+MXsqZbTssRFCj2fjwivDJrTKxvnCdB23M4luYxJIIKl1 +XYKESzT3TcAVWWnIjW8UHqjNVZkW1+A1zdXgRWcq15kIsEDqUaBUQ0UtTOsSKWo bBBjYBQyvjNSaA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:03:15 2025 by rpki-client