This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft File: ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft (raw, json) Hash identifier: atKSz1HXR84nE2jLrK1KRiXpJsZ2u9QOKdjE2lXuu5k= Subject key identifier: 11:B7:4D:4F:F2:6A:37:0A:7C:56:C3:76:F3:10:1C:71:F6:26:6A:27 Authority key identifier: 01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2 Certificate issuer: /CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2 Certificate serial: 019B34C558E858CE0B6A8BE336F291D945F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft Manifest number: 13BB Signing time: Fri 19 Dec 2025 04:01:47 +0000 Manifest this update: Fri 19 Dec 2025 04:01:47 +0000 Manifest next update: Sat 20 Dec 2025 04:01:47 +0000 Files and hashes: 1: ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl (hash: ZBUMtyFWShtkhk9NCnDndqbk6BXu/ykbn7aRNROTdJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:58:e8:58:ce:0b:6a:8b:e3:36:f2:91:d9:45:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=011463ff99c24c0937a4065d1fccfeb908fc3ad2 Validity Not Before: Dec 19 04:01:47 2025 GMT Not After : Dec 20 04:01:47 2025 GMT Subject: CN=11b74d4ff26a370a7c56c376f3101c71f6266a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:bb:f3:88:53:9f:46:a3:ed:e0:63:02:ca: b9:bd:34:e3:7a:39:22:82:b9:b9:a1:24:c2:7c:4d: 9f:dc:05:ec:d4:2b:e1:7f:3d:64:cf:70:b2:b4:68: ab:e6:73:dc:24:cf:b1:7a:73:b4:1b:c9:ff:c4:9c: 4f:71:8b:4a:0b:0b:22:cf:ec:c1:36:35:dd:aa:0f: a4:77:3a:8f:0c:b0:c6:a3:31:f6:ec:5c:a6:0c:c4: f8:70:cc:ca:3d:5c:c8:94:09:2c:29:f2:88:f0:8c: 56:03:6b:c4:80:e5:33:a2:68:b3:d0:a8:8d:b4:76: d6:65:ca:2a:ea:f7:7a:a8:06:28:c2:fe:8a:f4:f9: bc:6f:b6:f8:10:f6:c9:62:c5:f1:7e:cb:ef:89:9e: c6:18:7c:5e:2c:67:01:c6:31:c3:a6:a8:f1:9e:91: 31:4f:6c:cc:ac:bf:5d:d4:c8:c7:dc:02:97:7a:95: 05:ad:d2:e3:6a:26:de:48:0d:2d:74:4b:f1:46:65: 73:65:10:15:e7:40:a3:84:1e:be:a9:59:fc:73:73: a9:6d:39:32:50:cd:b9:f5:a9:ee:f9:bd:e7:d5:b9: 7f:5c:bf:2e:a6:86:7a:2b:b8:2f:02:8d:e1:0e:a6: 50:d9:47:d7:f8:76:25:17:8e:79:94:d8:12:bb:bd: b2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B7:4D:4F:F2:6A:37:0A:7C:56:C3:76:F3:10:1C:71:F6:26:6A:27 X509v3 Authority Key Identifier: keyid:01:14:63:FF:99:C2:4C:09:37:A4:06:5D:1F:CC:FE:B9:08:FC:3A:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARRj_5nCTAk3pAZdH8z-uQj8OtI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/240024-f433-4241-b40d-d1e84cfa478f/1/ARRj_5nCTAk3pAZdH8z-uQj8OtI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a7:4b:c9:bc:1b:30:43:32:61:11:41:e5:7d:d1:fc:50:d9: 08:1d:43:1b:e0:8b:c5:78:18:df:72:f1:83:d0:2a:83:d2:09: c9:df:c2:71:b7:b3:a9:43:2a:6b:ee:39:9e:35:7b:d0:75:b5: 33:e7:b7:44:16:e1:53:c6:30:39:05:90:1f:0b:65:6f:e3:3a: a3:26:f3:e6:9c:50:6b:e5:c7:13:da:fb:fb:42:8c:8d:40:58: ce:24:d1:69:c0:8d:19:61:69:44:c1:b1:78:23:8e:a4:62:77: 39:f5:f3:db:ca:4a:dd:d3:9d:dc:a9:30:40:a7:b2:5b:c8:ea: 48:2b:a5:95:f7:49:86:5b:c5:66:95:c4:4b:59:f5:32:6d:7e: ee:b2:d0:a1:04:28:51:8b:1b:4b:f2:bd:9e:38:f5:19:4a:00: 04:ff:bc:c0:db:d3:98:c5:56:fd:d3:eb:70:fa:29:72:42:8d: 94:91:84:5f:14:c0:1a:6a:90:1a:46:a3:46:a3:ea:30:11:6b: e8:c1:b2:8d:07:56:83:9c:cd:49:f1:2c:ab:91:c6:58:27:f8: f5:47:c2:1b:08:e2:cf:55:cd:d3:8e:45:c5:b6:cb:e9:2e:ed: 6b:71:1d:43:34:a6:20:a6:c6:33:bc:2a:22:1c:35:78:f2:c7: 97:33:ed:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xVjoWM4LaovjNvKR2UX3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxMTQ2M2ZmOTljMjRjMDkzN2E0MDY1ZDFmY2NmZWI5MDhm YzNhZDIwHhcNMjUxMjE5MDQwMTQ3WhcNMjUxMjIwMDQwMTQ3WjAzMTEwLwYDVQQD EygxMWI3NGQ0ZmYyNmEzNzBhN2M1NmMzNzZmMzEwMWM3MWY2MjY2YTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U6784hTn0aj7eBjAsq5vTTjejki grm5oSTCfE2f3AXs1Cvhfz1kz3CytGir5nPcJM+xenO0G8n/xJxPcYtKCwsiz+zB NjXdqg+kdzqPDLDGozH27FymDMT4cMzKPVzIlAksKfKI8IxWA2vEgOUzomiz0KiN tHbWZcoq6vd6qAYowv6K9Pm8b7b4EPbJYsXxfsvviZ7GGHxeLGcBxjHDpqjxnpEx T2zMrL9d1MjH3AKXepUFrdLjaibeSA0tdEvxRmVzZRAV50CjhB6+qVn8c3OpbTky UM259anu+b3n1bl/XL8upoZ6K7gvAo3hDqZQ2UfX+HYlF455lNgSu72ymQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBG3TU/yajcKfFbDdvMQHHH2JmonMB8GA1UdIwQY MBaAFAEUY/+ZwkwJN6QGXR/M/rkI/DrSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVJSal81bkNUQWszcEFaZEg4ei11UWo4T3RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yNDAwMjQtZjQzMy00MjQxLWI0MGQt ZDFlODRjZmE0NzhmLzEvQVJSal81bkNUQWszcEFaZEg4ei11UWo4T3RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yNDAwMjQtZjQzMy00MjQxLWI0MGQtZDFlODRjZmE0Nzhm LzEvQVJSal81bkNUQWszcEFaZEg4ei11UWo4T3RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX6dLybwb MEMyYRFB5X3R/FDZCB1DG+CLxXgY33Lxg9Aqg9IJyd/CcbezqUMqa+45njV70HW1 M+e3RBbhU8YwOQWQHwtlb+M6oybz5pxQa+XHE9r7+0KMjUBYziTRacCNGWFpRMGx eCOOpGJ3OfXz28pK3dOd3KkwQKeyW8jqSCullfdJhlvFZpXES1n1Mm1+7rLQoQQo UYsbS/K9njj1GUoABP+8wNvTmMVW/dPrcPopckKNlJGEXxTAGmqQGkajRqPqMBFr 6MGyjQdWg5zNSfEsq5HGWCf49UfCGwjiz1XN045FxbbL6S7ta3EdQzSmIKbGM7wq Ihw1ePLHlzPtZw== -----END CERTIFICATE-----Generated at Fri Dec 19 07:46:16 2025 by rpki-client